Revision 3419b32d
Added by Andreas Kohlbecker over 6 years ago
src/main/java/eu/etaxonomy/cdm/vaadin/security/AnnotationBasedAccessControlBean.java | ||
---|---|---|
42 | 42 |
// no RequireAuthentication annotation => grant access |
43 | 43 |
|
44 | 44 |
if(AccessRestrictedView.class.isAssignableFrom(view.getClass())){ |
45 |
AccessRestrictedView resticedView = (AccessRestrictedView)view; |
|
46 |
if(resticedView.allowAnonymousAccess()){ |
|
45 |
AccessRestrictedView restricedView = (AccessRestrictedView)view;
|
|
46 |
if(restricedView.allowAnonymousAccess()){
|
|
47 | 47 |
if(logger.isTraceEnabled()){ |
48 | 48 |
logger.trace("anonymous access to " + view.getClass().getName() + " allowed"); |
49 | 49 |
} |
... | ... | |
60 | 60 |
if(logger.isTraceEnabled()){ |
61 | 61 |
logger.trace("denying access to " + view.getClass().getName()); |
62 | 62 |
} |
63 |
restricedView.releaseResourcesOnAccessDenied(); |
|
63 | 64 |
return false; |
64 | 65 |
// FIMXE implement further checks |
65 | 66 |
// TODO use the UserHelperBean? |
Also available in: Unified diff
ref #7035 unbinding ConversationHolder on access denied situations