Mercurial > dive4elements > river
view flys-client/src/main/java/de/intevation/flys/client/server/auth/User.java @ 4196:e10d60d4f35b
Don't always redirect if user isn't authenticated
Only redirect a user if he is accessing the redirect url (FLYS.html by default).
In other cases only send a 403 Forbidden to indicate that a user isn't allowed
to access the url.
Should improve flys/issue856 (Timeout in der Authentifizierung führt zu Fehlern)
author | Björn Ricks <bjoern.ricks@intevation.de> |
---|---|
date | Mon, 22 Oct 2012 10:35:49 +0200 |
parents | 1387cdeb8d93 |
children |
line wrap: on
line source
package de.intevation.flys.client.server.auth; import java.util.List; /** * User representation after a succesfull login */ public interface User { /** * Returns the username as String */ public String getName(); /** * Returns the password of the user as String */ public String getPassword(); /** * Returns True if the authentication for the user * has expired. */ public boolean hasExpired(); /** * Returns a list of roles corresponsing the the user */ public List<String> getRoles(); /** * Returns true if the user is allowed access the feature */ public boolean canUseFeature(String feature); /** * Returns the users account name */ public String getAccount(); } // vim:set ts=4 sw=4 si et fenc=utf8 tw=80: