-
Bug
-
Resolution: Duplicate
-
Critical
-
4.4.6, 4.5, 4.5.7
-
None
-
-
Empty show more show less
Anonymous role has deny access to /demo-project/members-area/protected* , this rule should be used in info.magnolia.cms.security.URISecurityFilter.isAuthorized(HttpServletRequest), but this doesn't happen due to this rule pattern doesn't match with current uri. info.magnolia.cms.core.AggregationState.getCurrentURI() has value "/members-area/protected" because info.magnolia.module.extendedtemplatingkit.filters.MultiSiteFilter removes site definition name from uri.
- is depended upon by
-
MGNLSTK-1036 securityCallback is not working for custom pattern: PUR pattern not working
- Closed
- is duplicated by
-
MGNLPUR-66 Protected Page does not redirect to the login page
- Closed
-
MGNLPUR-70 Protected Page does not redirect to PUR login form
- Closed
- is related to
-
MAGNOLIA-3914 Site aware ACL - port
- Closed