[jboss-user] [JBoss Seam] - Re: Can we security @Factory?

Monday, 26 November 2007

That particular permission is checked inline, not using @Restrict.  However, if you look
at BlogAction, you'll see that the createComment() method does use @Restrict and
@Factory:

   @Factory("comment") @Restrict @Begin(join = true)
  |    public void createComment()

The corresponding security rule is this one:

rule CreateBlogComment
  |   no-loop
  |   activation-group "permissions"
  | when
  |   check: PermissionCheck(name == "blog", action ==
"createComment", granted == false)
  |   Role(name == "user")
  | then
  |   check.grant();
  | end

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4107906#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-user] [JBoss Seam] - Re: Can we security @Factory?