xunitc
2014-06-09 01:11:06 UTC
Hi.
I hava the edit and delete buttons in show.gsp
I hava an admin user which has the 'ROLE_ADMIN' role.
Now, I do not want other user which has no 'ROLE_ADMIN' role can see the
edit and delete buttons.
I use nginx cache, so if I login as admin, the buttons will be cached.
Then admin logout, and other user login, I can see the edit and delete
buttons because the cache.
I think if I use javascript to check the 'ROLE_ADMIN' role in or not in the
current user, I can bypass the cache, but I do not know how to do.
some help please.
-----
Xunitc
--
View this message in context: http://grails.1312388.n4.nabble.com/How-can-I-get-the-authority-by-javascript-with-spring-security-core-tp4657089.html
Sent from the Grails - user mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe from this list, please visit:
http://xircles.codehaus.org/manage_email
I hava the edit and delete buttons in show.gsp
I hava an admin user which has the 'ROLE_ADMIN' role.
Now, I do not want other user which has no 'ROLE_ADMIN' role can see the
edit and delete buttons.
I use nginx cache, so if I login as admin, the buttons will be cached.
Then admin logout, and other user login, I can see the edit and delete
buttons because the cache.
I think if I use javascript to check the 'ROLE_ADMIN' role in or not in the
current user, I can bypass the cache, but I do not know how to do.
some help please.
-----
Xunitc
--
View this message in context: http://grails.1312388.n4.nabble.com/How-can-I-get-the-authority-by-javascript-with-spring-security-core-tp4657089.html
Sent from the Grails - user mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe from this list, please visit:
http://xircles.codehaus.org/manage_email