From fe155223a1ec2c651fb4131d38183c6d5ea6427c Mon Sep 17 00:00:00 2001 From: Ben Alex Date: Sat, 25 Dec 2004 07:18:17 +0000 Subject: [PATCH] Minor polishing. --- doc/xdocs/faq.html | 10 +++++----- doc/xdocs/index.html | 5 +++-- 2 files changed, 8 insertions(+), 7 deletions(-) diff --git a/doc/xdocs/faq.html b/doc/xdocs/faq.html index a2f22c561b..a6acb68d11 100644 --- a/doc/xdocs/faq.html +++ b/doc/xdocs/faq.html @@ -30,7 +30,7 @@

Frequently Asked Questions

What is Acegi Security?

-

Acegi Security is an open source project that provide comprehensive authentication +

Acegi Security is an open source project that provides comprehensive authentication and authorisation services for enterprise applications based on The Spring Framework. Acegi Security can authenticate using a variety of pluggable providers, and @@ -69,7 +69,7 @@ expressed in the servlet specification's own limited URI path format. Acegi Security provides a far more comprehensive approach. For instance, you can use Ant paths or regular expressions, you can consider parts of the - URI other than simply the requested page (eg you can consider request + URI other than simply the requested page (eg you can consider HTTP GET parameters), and you can implement your own runtime source of configuration data. This means your web request security can be dynamically changed during the actual execution of your webapp.

@@ -144,12 +144,12 @@ has a specific section on filter ordering.

I'm sure my filters are ordered correctly. What else could be wrong?

-

The next most common source of problems step from custom +

The next most common source of problems stem from custom AuthenticationDao implementations that simply don't properly - implement the interface. For example, they return null instead + implement the interface contract. For example, they return null instead of the user not found exception, or fail to add in the GrantedAuthority[]s. Whilst DaoAuthenticationProvider - does its best to check the AuthenticationDaoreturns a valid + does its best to check the AuthenticationDao returns a valid UserDetails, we suggest you write the UserDetails object to the log and check it looks correct.

diff --git a/doc/xdocs/index.html b/doc/xdocs/index.html index e4f6326a9f..50c4e114fe 100644 --- a/doc/xdocs/index.html +++ b/doc/xdocs/index.html @@ -25,7 +25,7 @@ href="http://apr.apache.org/versioning.html">Apache APR Project Versioning Guidelines so you can identify backward compatibility.

-
  • Fast results: View our Suggested Steps +
  • Fast results: View our suggested steps for the fastest way to develop complex, security-compliant applications.

  • Enterprise-wide single sign on: Using Yale University's open source Central Authentication @@ -151,7 +151,8 @@ using an open source security package leverages the continuous design and code quality improvements that emerge from peer review.

  • Thorough documentation: All APIs are fully documented using - JavaDoc, with a 40+ page reference guide providing an easy-to-follow + JavaDoc, with a 40+ page + Reference Guide providing an easy-to-follow introduction. More documentation is provided on this web site, as shown in the left hand navigation sidebar.

  • Apache license.