Versions Compared

Old Version 6

changes.mady.by.user Former user

Saved on

compared with

New Version 7

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Allow anonymous access to all web resources by editing the objectDefinitionSource on the FilterSecurityInterceptor to look like the example below.
  2. Use PentahoAllowAnonymousAclVoter as your IAclVoter implementation. See 03. pentaho.xml for a description of how to configure this voter. When configuring this voter, you will define the anonymous user and role. That user and/or role should be used when assigning ACLs.
  3. Assign ACLs using the user and role defined in the previous step. You'll most likely want to assign ACLs as a batch using these steps.
Code Block
xml
xml
titleapplicationContext-acegi-security.xml
<bean id="filterInvocationInterceptor"
  class="org.acegisecurity.intercept.web.FilterSecurityInterceptor">
  <property name="authenticationManager">
    <ref local="authenticationManager" />
  </property>
  <property name="accessDecisionManager">
    <ref local="httpRequestAccessDecisionManager" />
  </property>
  <property name="objectDefinitionSource">
    <value>
      <![CDATA[
        CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
        \A/.*\Z=Anonymous
      ]]>
    </value>
  </property>
</bean>