I have seen several post regarding granting additional guest access
privileges, I would like to restrict the guest access as much as possible.
Case in point is the access to the resource request list.

If I point my browser to http://UAADDRESS:8080/IDMProv/getAFResourceList.do
without being authenticated, I get the resource request page. I want this
to be an authenticated page that works the same as
http://UAADDRESS:8080/IDMProv/getAFTaskList.do . This page requires
authentication before displaying the page. Can anyone point me in the right
direction to set this up correctly?


Mike K