why not match such URI ?

**creatxr** · Feb 24th, 2005, 12:16 AM

why not match such URI ?

[DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
[DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
[DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is /xfile/menu.jsp ; matched=false
[DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is /xfile/menu.jsp ; matched=false
[DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
[DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
[DEBUG] [2005-02-24 14:14:31,355] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally
[DEBUG] [2005-02-24 14:14:31,355] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally

===============================

<bean id="filterInvocationInterceptor" class="net.sf.acegisecurity.intercept.web.FilterSe curityInterceptor">
<property name="authenticationManager"><ref bean="authenticationManager"/></property>
<property name="accessDecisionManager"><ref local="httpRequestAccessDecisionManager"/></property>
<property name="objectDefinitionSource">
<value>
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
\A/secure/super.*\Z=ROLE_WE_DONT_HAVE
\A/secure/.*\Z=ROLE_SUPERVISOR,ROLE_USER
\A/xfile/.*\Z = ROLE_USER
</value>
</property>
</bean>

**creatxr** · Feb 24th, 2005, 12:46 AM

[DEBUG] [2005-02-24 14:44:00,569] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
[DEBUG] [2005-02-24 14:44:00,569] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
[DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/*.\Z ; matched=false
[DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/*.\Z ; matched=false
[DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
[DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
[DEBUG] [2005-02-24 14:44:01,991] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally
[DEBUG] [2005-02-24 14:44:01,991] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally

**creatxr** · Feb 24th, 2005, 01:08 AM

can't visit

[DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
[DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
[DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/.*\Z ; matched=false
[DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/.*\Z ; matched=false
[DEBUG] [2005-02-24 15:06:48,587] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
[DEBUG] [2005-02-24 15:06:48,587] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
[DEBUG] [2005-02-24 15:06:48,857] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally
[DEBUG] [2005-02-24 15:06:48,857] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally

======================================

<bean id="filterInvocationInterceptor" class="net.sf.acegisecurity.intercept.web.FilterSe curityInterceptor">
<property name="authenticationManager">
<ref bean="authenticationManager" />
</property>

<property name="accessDecisionManager">
<ref local="httpRequestAccessDecisionManager" />
</property>

<property name="objectDefinitionSource">
<value>
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
\A/xfile/.*\Z = ROLE_USER
</value>
</property>
</bean>

**Ben Alex** · Feb 24th, 2005, 01:12 AM

Just a hunch.... Try removing the spaces before and after the equals sign in your objectDefinitionSource property. Please let me know if that works.

**creatxr** · Feb 24th, 2005, 12:06 PM

I've removed the spaces . it still can't work.

**creatxr** · Feb 24th, 2005, 02:30 PM

set

\A/xfile/*.*\Z = ROLE_USER

it works now.

but, what's the matter with

\A/xfile/*\Z = ROLE_USER

**Ben Alex** · Feb 24th, 2005, 03:12 PM

I'd encourage you to use Ant Paths, as they're far more forgiving and apparent as to what they mean. See http://acegisecurity.sourceforge.net...lterinvocation.

**creatxr** · Feb 27th, 2005, 04:05 AM

ant path?

what 'e mean, please?

**Ben Alex** · Mar 2nd, 2005, 03:18 PM

As shown in the reference guide, you can use either Regular Expressions OR Ant Paths to express your URIs. The benefit of Ant Paths is they're a lot simpler and clearer. Here's an example mapping:

Code:

<bean id="filterInvocationInterceptor" class="net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor">
  <property name="authenticationManager"><ref bean="authenticationManager"/></property>
  <property name="accessDecisionManager"><ref bean="accessDecisionManager"/></property>
  <property name="runAsManager"><ref bean="runAsManager"/></property>
  <property name="objectDefinitionSource">
    <value>
      CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
      PATTERN_TYPE_APACHE_ANT
      /secure/super/**=ROLE_WE_DONT_HAVE
      /secure/**=ROLE_SUPERVISOR,ROLE_TELLER
    </value>
  </property>
</bean>

Thread: why not match such URI ?

Thread Tools

Display

why not match such URI ?

Similar Threads

Strange iBatis error... parsing XPath '/sqlMapConfig/sqlMap'

FilterSecurityInterceptor can't match URL parameters

Events That Don't Match Sent To Default State??

Simple Configuration not working?? (Tomcat)

how to match to method name

Posting Permissions