[jboss-user] [JBoss Seam] - Re: Tricky Q on Hibernate filters and roles

Thursday, 24 January 2008

I think I know what I should do.

1. Go ahead and use a filter if I want to, for my convenience, but not as a security
mechanism.

2. Put a @Restrict annotation on the entities, and then use JBoss Rules to restrict
various operations by roles, etc.  So I could say, a sysadmin can look at any object in
any domain, but only domain members could look at objects in their domain, and only domain
members with write permissions can create, update or delete objects.

Does that sound right?

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4122959#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-user] [JBoss Seam] - Re: Tricky Q on Hibernate filters and roles