> Not really an issue but I think a redirect to the root url should be still
> present at the end of the signOut method of AuthController (avoiding the user
> to create his own signOut view).
Yeah, that makes sense. I'll change that.
> And it's really cool to use filter instead of the "old" JsecAuthBase
> controller.
Absolutely. It also allows you to configure permissions based on
values in 'params' - for example, if permissions were dependent on
projects you could use something like this:
before = {
accessControl {
permission(new ProjectPermission(params.projectId, 'invoice', 'show')
}
}
This is pretty much impossible under the old way of doing it.
> But have someone a tip for using the flash object from a filter (which seems
> to available for controllers and taglib only)?
This does seem to be an oversight for filters, although there may be a
good reason for its exclusion. You could try:
import org.springframework.web.context.request.RequestContextHolder as RCH
...
def flash = RCH.currentRequestAttributes().flashScope
This is all the dynamic property on controllers does.
HTH,
Peter
---------------------------------------------------------------------
To unsubscribe from this list please visit:
http://xircles.codehaus.org/manage_email
