[qixweb-dev] Re: [qixweb-scm] Added the logic to restrict the access of a node if:

View: New views

1 Messages — Rating Filter: Alert me

[qixweb-dev] Re: [qixweb-scm] Added the logic to restrict the access of a node if:

by Piergiuliano Bossi :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Some parts of this message have been removed. Learn more about Nabble's security policy.

I'm missing a few points:

1) Why testing for loggedUser() != null if there exists QixwebUser.NULL
2) Why creating a new QixwebUser with empty fields if there exists QixwebUser.NULL
3) Why implementing default loggedUser always returning QixwebUser.createUserWith("", "", "", "", "", "", false, true);
4) Why adding a QixwebLogin.html page that is basically empty, clearly not a login at all

Unless these changes are just opening moves, more changes will come.
Any feedback from the committer?

G

xplayers@... wrote:

Commit in qixweb on MAIN

sources/org/qixweb/core/test/NotAuthorizedNode.java +26
added 1.1

                            /NotDisplayableNode.java +27
added 1.1

                            /NotInstanziableNode.java +22
added 1.1

                            /TestQixwebUser.java +1 -4 1.3 -> 1.4

                            /TestQixwebBrowser.java +53 -1 1.9 -> 1.10

sources/org/qixweb/core/QixwebLoginNode.java +19
added 1.1

                       /QixwebBrowser.java +48 -2 1.5 -> 1.6

                       /WebNode.java +5
1.8 -> 1.9

templateVelocity/QixwebLogin.html +8
added 1.1

+209 -7

5 added + 4 modified, total 9 files
Added the logic to restrict the access of a node if:
* the user is not logged
* the user is not authorized
* there are problems to create the node
  

snip