[jboss-cvs] jboss-seam/doc/reference/en/modules ...

Shane Bryzak Shane_Bryzak at symantec.com
Fri Feb 9 02:08:13 EST 2007 

  User: sbryzak2
  Date: 07/02/09 02:08:13

  Modified:    doc/reference/en/modules  security.xml
  Log:
  added entity security section
  
  Revision  Changes    Path
  1.28      +60 -0     jboss-seam/doc/reference/en/modules/security.xml
  
  (In the diff below, changes in quantity of whitespace are not shown.)
  
  Index: security.xml
  ===================================================================
  RCS file: /cvsroot/jboss/jboss-seam/doc/reference/en/modules/security.xml,v
  retrieving revision 1.27
  retrieving revision 1.28
  diff -u -b -r1.27 -r1.28
  --- security.xml	8 Feb 2007 23:57:46 -0000	1.27
  +++ security.xml	9 Feb 2007 07:08:13 -0000	1.28
  @@ -600,6 +600,66 @@
           
       </sect2>
   
  +    <sect2>
  +      <title>Securing Entities</title>
  +      
  +      <para>      
  +        Seam security also makes it possible to apply security restrictions to insert, update and 
  +        delete actions for entities.  The security check performed for these operations (on entities
  +        for which security is enabled) is the permission check <literal>entityName:action</literal>,
  +        where <literal>entityName</literal> is the name of the entity (or the class name if no @Name is 
  +        specified), and the <literal>action</literal> is either <literal>insert</literal>, 
  +        <literal>update</literal>, or <literal>delete</literal>.  Here's an example of an entity
  +        permission rule from the seamspace example:
  +      </para>
  +      
  +      <programlisting>
  +        <![CDATA[
  +rule InsertMemberBlog
  +  no-loop
  +  activation-group "permissions"
  +when
  +  c: PermissionCheck(name == "memberBlog", action == "insert", granted == false)
  +  Principal(nm : name)
  +  MemberBlog(mbr : member -> (mbr.getUsername().equals(nm)))
  +then
  +  c.grant();
  +  modify(c);
  +end;        
  +        ]]>
  +      </programlisting>
  +      
  +      <para>
  +        To enable entity security for your entities, refer to the following sections.
  +      </para>
  +      
  +      <sect3>
  +        <title>Entity security using JPA</title>
  +        <para>
  +          Security checks for EJB3 entity beans are performed with an <literal>EntityListener</literal>.
  +          To secure individual entity beans, add the <literal>@EntityListeners</literal> annotation like so:
  +        </para>
  +        
  +        <programlisting>
  +          <![CDATA[
  +import javax.persistence.EntityListeners;          
  +import org.jboss.seam.security.SecurityEntityListener;          
  +          
  + at Entity          
  + at Name("customer")          
  + at EntityListeners(SecurityEntityListener.class)
  +public class Customer {
  +  ...
  +}         
  +          ]]>
  +        </programlisting>
  +      </sect3>
  +      
  +      <para>
  +      
  +      </para>
  +    </sect2>
  +
     </sect1>
     
     <sect1>

More information about the jboss-cvs-commits mailing list