Menu
▾
▴
[Jboss-dev-forums] [Design of Security on JBoss] - Re: Generalizing the JACC service
|
From: tcherel <nu...@jb...> - 2005-07-25 13:07:29
|
There is a very good chance that you guys already thought about that, but just in case.... I think that the way you can dynamically (at login time) define the roles of a user by creating a custom JAAS login module is very useful. An very often, this is all that is needed. I understand that a custom JACC provider can do more, but I think it will be a pain if a full blown provider (or a full blown set of custom JACC policy) has to be defined if the only thing that is needed is to be able to specify what are the roles of a given user. May be the future default JBoss JACC provider should have multiple extension points (JBoss specific) where a user can simply overwrite the way roles are retrieved for a user, the way roles are associated to resources and the way permissions are checked (or something like that). Users will then be able to easily "pick and choose" which part of the default JACC provider they want to customize for their needs. Thomas View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3886377#3886377 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3886377 |
