[jboss-cvs] jboss-seam/examples/seamspace/resources/META-INF ...

Shane Bryzak Shane_Bryzak at symantec.com
Thu Jan 25 08:23:59 EST 2007 

  User: sbryzak2
  Date: 07/01/25 08:23:59

  Modified:    examples/seamspace/resources/META-INF   security-config.xml
                        security-rules.drl
  Log:
  updated with security changes
  
  Revision  Changes    Path
  1.9       +1 -1      jboss-seam/examples/seamspace/resources/META-INF/security-config.xml
  
  (In the diff below, changes in quantity of whitespace are not shown.)
  
  Index: security-config.xml
  ===================================================================
  RCS file: /cvsroot/jboss/jboss-seam/examples/seamspace/resources/META-INF/security-config.xml,v
  retrieving revision 1.8
  retrieving revision 1.9
  diff -u -b -r1.8 -r1.9
  --- security-config.xml	17 Jan 2007 23:58:29 -0000	1.8
  +++ security-config.xml	25 Jan 2007 13:23:59 -0000	1.9
  @@ -19,7 +19,7 @@
     <application-policy>
       <authentication>
   	    <login-module code="org.jboss.seam.security.spi.SeamLoginModule" flag="required">
  -	      <module-option name="authMethod">#{login.authenticate}</module-option>
  +	      <module-option name="authMethod">#{authenticator.authenticate}</module-option>
   	    </login-module>
   	  </authentication>
     </application-policy>
  
  
  
  1.4       +20 -4     jboss-seam/examples/seamspace/resources/META-INF/security-rules.drl
  
  (In the diff below, changes in quantity of whitespace are not shown.)
  
  Index: security-rules.drl
  ===================================================================
  RCS file: /cvsroot/jboss/jboss-seam/examples/seamspace/resources/META-INF/security-rules.drl,v
  retrieving revision 1.3
  retrieving revision 1.4
  diff -u -b -r1.3 -r1.4
  --- security-rules.drl	15 Jan 2007 09:48:06 -0000	1.3
  +++ security-rules.drl	25 Jan 2007 13:23:59 -0000	1.4
  @@ -1,10 +1,14 @@
   package SeamSpacePermissions;
   
  +import java.security.Principal;
  +
   import org.jboss.seam.security.Identity;
   import org.jboss.seam.security.rules.PermissionCheck;
  -import org.jboss.seam.example.seamspace.MemberImage;
   import org.jboss.seam.security.SeamPermission;
   
  +import org.jboss.seam.example.seamspace.Member;
  +import org.jboss.seam.example.seamspace.MemberImage;
  +
   rule ViewImage
     no-loop
     activation-group "permissions"
  @@ -17,13 +21,25 @@
     modify(c);
   end;
   
  +rule CreateBlog
  +  no-loop
  +  activation-group "permissions"
  +when
  +  c: PermissionCheck(name == "blog", action == "create", granted == false)
  +  p: Principal()
  +  Member(username == (p.getName()))
  +then
  +  c.grant();
  +  modify(c);
  +end;
  +
   rule DefaultPolicy
     salience -10
     activation-group "permissions"  
   when
     c: PermissionCheck(granted == false)
  -  p: SeamPermission()
  -  eval( p.getName().equals(c.getName()) && p.getAction().equals(c.getAction()))
  +  SeamPermission(name == (c.getName()), action == (c.getAction()))
   then
     c.grant();
   end;
  \ No newline at end of file
  +

More information about the jboss-cvs-commits mailing list