Information Technology Reference
In-Depth Information
Application owners typically want control over the look-and-feel of error
pages, especially when delivering sensitive news like a denial of access. They
may want to sugar-coat the pill in different ways. While it is possible to tailor
CAS's functionality to show different error screens for different applications,
we are now straying a fair bit away from enterprise functionality and into
application territory. It's better to let application owners themselves design
(and re-design!) their error pages.
Also, some applications prefer to degrade the access level to “guest”
privileges when authorisation fails. For these reasons, we decided to stick to
the approach of using the interceptor to enforce tailored access control. You
could of course, implement the above logic if it works for you.
Search WWH ::




Custom Search