[rules-users] Drools BRMS Secrity Features

Michael Neale michael.neale at gmail.com
Sun Sep 21 19:42:00 EDT 2008 

Hi Vikrant.

In the version 4 - no the security was basically only around
authentication (so you either had access or you didn't).

Now in the upcoming 5 version (I don't think this was in M1, but will
be in M2): http://blog.athico.com/2008/08/product-update-guvnor-security.html

This allows fine grained security - you have admin users (who can do
anything, like before) and then you can specify per package or per
category permissions (to be as fine grained as you like almost).

On Sat, Sep 13, 2008 at 1:38 AM, Vikrant Yagnick <VikrantY at mastek.com> wrote:
> Hi All,
>
>
>
> I have a question on using the BRMS which I am unable to find any answers on
> the internet.
>
>
>
> Does the JBOSS Rules BRMS have any security features in terms of "Role Based
> Access". For example, is there a way out of the box to specify that user-A
> can access only these rules (or categories or packages ) and User-B can
> access this bit only.
>
> It need not be too sophisticated.
>
>
>
> If it is not available at a Rules Level , can it be implemented at a JSP
> level. That is put in Sever specific URL Filters to not allow access to
> certain pages(if a page can correspond to a rule)?
>
>
>
> Any, help in this regard will be a tremendous help for me to make some
> design decisions regarding the BRMS.
>
>
>
> Cheers,
>
> Vikrant
>
>
>
>
> MASTEK LTD.
> Mastek in NASSCOM's 'India Top 20' Software Service Exporters List.
> In the US, we're called MAJESCOMASTEK
>
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Opinions expressed in this e-mail are those of the individual and not that of Mastek Limited, unless specifically indicated to that effect. Mastek Limited does not accept any responsibility or liability for it. This e-mail and attachments (if any) transmitted with it are confidential and/or privileged and solely for the use of the intended person or entity to which it is addressed. Any review, re-transmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. This e-mail and its attachments have been scanned for the presence of computer viruses. It is the responsibility of the recipient to run the virus check on e-mails and attachments before opening them. If you have received this e-mail in error, kindly delete this e-mail from desktop and server.
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>
> _______________________________________________
> rules-users mailing list
> rules-users at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/rules-users
>
>



-- 
Michael D Neale
home: www.michaelneale.net
blog: michaelneale.blogspot.com

More information about the rules-users mailing list