[
https://jira.jboss.org/browse/JBSEAM-4350?page=com.atlassian.jira.plugin....
]
Shane Bryzak resolved JBSEAM-4350.
----------------------------------
Resolution: Out of Date
We now use PicketLink, so this feature request would have to be made to the JBoss Security
team
Enable/Disable a Role
---------------------
Key: JBSEAM-4350
URL:
https://jira.jboss.org/browse/JBSEAM-4350
Project: Seam
Issue Type: Feature Request
Components: Security
Affects Versions: 2.2.0.GA
Reporter: Sand Lee
Assignee: Shane Bryzak
Enable/Disable a Role
Is it possible to disable/enable a role by annotation configuration in the same way like
@RoleConditional is configured.
Adding a Boolean property in the role class and annote it with @RoleEnabled. This
property holds the status of the role (active/inactive).
If a role is disabled it should not be returned when JpaIdentityStore.listRoles() or
JpaIdentityStore.getImpliedRoles() is called.
that also requires a new method in getJpaIdentityStore().setRoleStatus(String roleName
Boolean status) to set the Role status.
If this Method is called, all permissions which have this role as recipient should be
deactivated by setting a flag in each permission object.
So that JpaPermissionStore.listPermissions() only returns permissions that not belongs to
deactivated roles.
It also raises an RoleDisabled event and the identity objects (from already loggedin
users) are listen to this event and then it checks if the identity has this role.
If an already loggedin user has this role it will be removed from identity object.
Is it possible to include a mechanism like this?
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira