tags:

views:

45

answers:

2
Q: 

Using Nuxeo, how do I lock down a page so that it redirects to the login page if the user is unauthenticated?

I have been put on to a project using Nuxeo, late in it's lifecycle and need to change a few things before it goes live.

I am having trouble finding out where I need to look to lock down a Nuxeo based application so that a user is redirected to the login page if they are unauthorised and access a restricted page.

Can someone please shoot my some direction on where this sort of logic is kept or defined?

A: 

A good option for wrapping security around an existing application is Spring Security. It's implemented as a serious of filters, doesn't require the application itself to use Spring, and has a very flexible API for integrating with your application's own security infrastructure.

skaffman  2009-08-17 18:33:02
Thanks for the reply. I'm experienced in Spring Security but in this case this is not going to work. Nuxeo is an open source framework, built on JBoss Seam, for creating applications and as I mentioned I have come in close to the end of the project so we are not about to implement a new technology at this point in time. Plus, I don't think Spring Security is a good solution for this scenario as Nuxeo has it's own security model implemented in it. I'm really after someone that understands how to use that. Thanks again for your reply though.
Aaron Chambers  2009-08-18 05:59:26
A: 

I have never used Nuxeo before, but if it is a normal seam application, that would be done in pages.xml:

<pages login-view-id="/login.xhtml">

<page view-id="/members/*" login-required="true"/>

...

</pages>
shipmaster  2009-08-25 22:04:51
Yes, I'm well experienced with Seam. But Nuxeo is a framework that uses Seam under the covers. Hence, it is not a normal Seam application
Aaron Chambers  2009-08-26 01:05:57

related questions

How to get the status of a JBOSS server
JNDI without a J2EE Container (with JNP? Maybe some other provider?)
Consuming web services with jboss
JAVA Swing client, Data Access to Remote Database; Ibatis
Upgrade to Quartz 1.6 on JBoss 4.2.x
Problems with shutting down JBoss in Eclipse if I change JNDI port
.NET enterprise application platform (same as JBoss to Java)
What is the best way to configure iPlanet/Sun ONE be the HTTP/HTTPS front end to a JBoss/Tomcat application?
Problem using JConsole remotely with JBoss 4.2.2 with app that uses JWS
Is there any way to have the JBoss connection pool reconnect to Oracle when connections go bad?
Help configuring JNDI with embedded JBoss in Tomcat 5.5.x
Spring JTA TransactionManager config: Supporting both Tomcat and JBoss
How can I best connect Seam and GWT in a stateful web application?
Best practices for configuring Apache / Tomcat
What are the best books for JBoss?
JBoss 4.23 and EJB 2 support
How to rewrite an URL on a JBoss server?
Bypass GeneratedValue in Hibernate
Two Phase Commit/Shared Transaction
Faces Servlet threw exception java.lang.StackOverflowError
Modify an xml files in a jar file with Java
using DBMS_APPLICATION_INFO with Jboss
Reconnecting JMS listener to JBossMQ
Accessing Datasource from Outside A Web Container (through JNDI)
Resolving Session Fixation in JBoss