Revision 3419b32d
Added by Andreas Kohlbecker over 6 years ago
| src/main/java/eu/etaxonomy/cdm/vaadin/security/AnnotationBasedAccessControlBean.java | ||
|---|---|---|
| 42 | 42 |
// no RequireAuthentication annotation => grant access |
| 43 | 43 |
|
| 44 | 44 |
if(AccessRestrictedView.class.isAssignableFrom(view.getClass())){
|
| 45 |
AccessRestrictedView resticedView = (AccessRestrictedView)view; |
|
| 46 |
if(resticedView.allowAnonymousAccess()){
|
|
| 45 |
AccessRestrictedView restricedView = (AccessRestrictedView)view;
|
|
| 46 |
if(restricedView.allowAnonymousAccess()){
|
|
| 47 | 47 |
if(logger.isTraceEnabled()){
|
| 48 | 48 |
logger.trace("anonymous access to " + view.getClass().getName() + " allowed");
|
| 49 | 49 |
} |
| ... | ... | |
| 60 | 60 |
if(logger.isTraceEnabled()){
|
| 61 | 61 |
logger.trace("denying access to " + view.getClass().getName());
|
| 62 | 62 |
} |
| 63 |
restricedView.releaseResourcesOnAccessDenied(); |
|
| 63 | 64 |
return false; |
| 64 | 65 |
// FIMXE implement further checks |
| 65 | 66 |
// TODO use the UserHelperBean? |
Also available in: Unified diff
ref #7035 unbinding ConversationHolder on access denied situations