http://www.theserverside.com Most recent forum messages en Jive Forums Silver 5.5.30 (www.jivesoftware.com) Tue, 21 May 2013 05:13:44 -0400 http://www.theserverside.com/discussions/thread.tss?thread_id=26961
http://www.opensymphony.com/osaccess/

I decided not to use it because I didn't think there was a
large community of...]]> Sat, 24 Jul 2004 16:47:31 -0400 Sat, 24 Jul 2004 16:47:31 -0400 Sat, 24 Jul 2004 16:47:31 -0400 Jul 24, 2004 Sean Sullivan 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 this solution is implemented in the project called jGuard (http://sourceforge.net/projects/jguard).

jGuard is based on JAAS, and permit to use it in a web application...]]> Thu, 22 Jul 2004 12:31:02 -0400 Thu, 22 Jul 2004 12:31:02 -0400 Thu, 22 Jul 2004 12:31:02 -0400 Jul 22, 2004 diabolo512 diabolo512 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 Thu, 22 Jul 2004 12:08:33 -0400 Thu, 22 Jul 2004 12:08:33 -0400 Thu, 22 Jul 2004 12:08:33 -0400 Jul 22, 2004 Suhail M. Ahmed 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961
Keep up the good work, Karl]]> Thu, 22 Jul 2004 11:54:53 -0400 Thu, 22 Jul 2004 11:54:53 -0400 Thu, 22 Jul 2004 11:54:53 -0400 Jul 22, 2004 Karl Banke 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961
Indeed this is a very good article. Sean, you always have resources handy. A warning for those wanting to extends JAAS to implement instance based authorization. This solution implies the implementation of a new policy file, but this new...]]> Thu, 22 Jul 2004 11:48:22 -0400 Thu, 22 Jul 2004 11:48:22 -0400 Thu, 22 Jul 2004 11:48:22 -0400 Jul 22, 2004 javier castanon 2 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 How can you extend JAAS to support instance-based authorization? Extend JAAS for class instance-level authorization

Thu, 22 Jul 2004 11:08:53 -0400 Thu, 22 Jul 2004 11:08:53 -0400 Thu, 22 Jul 2004 11:08:53 -0400 Jul 22, 2004 Sean Sullivan 3 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 We've been looking at options for solving this kind of problem generically, and have come up empty. Each example of this seems to be based on application-specific data, and is tightly bound to the data access method (ie. "SELECT * FROM...]]> Thu, 22 Jul 2004 10:26:47 -0400 Thu, 22 Jul 2004 10:26:47 -0400 Thu, 22 Jul 2004 10:26:47 -0400 Jul 22, 2004 Rickard Oberg 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 JAAS is also don't have support for instance based authorization, but it's extendable enough to add it manualy.How can you extend JAAS to support instance-based authorization? We've been looking at options for solving this kind...]]> Thu, 22 Jul 2004 10:06:08 -0400 Thu, 22 Jul 2004 10:06:08 -0400 Thu, 22 Jul 2004 10:06:08 -0400 Jul 22, 2004 Timothy High 5 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 What about instance based authorization. Based on my experience its vital part of the most application.
Example, in the forum user makes a post, and only creator (owner) of the post is able to change it. How it is supported by...]]> Thu, 22 Jul 2004 07:32:31 -0400 Thu, 22 Jul 2004 07:32:31 -0400 Thu, 22 Jul 2004 07:32:31 -0400 Jul 22, 2004 Renat Zubairov 6 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 What about instance based authorization. Based on my experience its vital part of the most application.
Example, in the forum user makes a post, and only creator (owner) of the post is able to change it. How it is supported by...]]> Thu, 22 Jul 2004 07:32:19 -0400 Thu, 22 Jul 2004 07:32:19 -0400 Thu, 22 Jul 2004 07:32:19 -0400 Jul 22, 2004 Renat Zubairov 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 This seems to indicate to me that a Principal directly represents a user. In JAAS etc., a user is represented by a Subject, which may have any number of associated Principals. I was simplifying the scenario. To be more precise,...]]> Thu, 22 Jul 2004 07:21:40 -0400 Thu, 22 Jul 2004 07:21:40 -0400 Thu, 22 Jul 2004 07:21:40 -0400 Jul 22, 2004 Rickard Oberg 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 The solution we're using right now is to also introduce roles, which is an aggregation of permissions. Roles can then be assigned to principals, which may be single users or groups of users.This seems to indicate to me that a...]]> Thu, 22 Jul 2004 06:38:47 -0400 Thu, 22 Jul 2004 06:38:47 -0400 Thu, 22 Jul 2004 06:38:47 -0400 Jul 22, 2004 Oliver Kamps 1 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 Thu, 22 Jul 2004 04:39:13 -0400 Thu, 22 Jul 2004 04:39:13 -0400 Thu, 22 Jul 2004 04:39:13 -0400 Jul 22, 2004 Claude Vedovini 0 http://www.theserverside.com/discussions/thread.tss?thread_id=26961
The solution we're...]]> Thu, 22 Jul 2004 04:13:22 -0400 Thu, 22 Jul 2004 04:13:22 -0400 Thu, 22 Jul 2004 04:13:22 -0400 Jul 22, 2004 Rickard Oberg 2 http://www.theserverside.com/discussions/thread.tss?thread_id=26961 Gabriel is a security framework for Java. By using access control lists and permissions, Gabriel enables components to check access to actions. On top of that Gabriel protects methods like EJB does but without the overhead.It distinguishes...]]> Thu, 22 Jul 2004 02:55:24 -0400 Thu, 22 Jul 2004 02:55:24 -0400 Thu, 22 Jul 2004 02:55:24 -0400 Jul 22, 2004 Venkatakrishna Tirumala 0