You know how callers to radio shows say "Hi, I'm a long time listener but
a first time caller and I love your show."? This is like that for me.
Anyway...
Has anyone already handled a situation where domain objects being acted
upon are identified by id number (or at least something where getClass()
can't work). Let's just suppose it's a good idea otherwise to pass in id
instead of some less opaque object since I can't necessarily control that
interface.
No? I'm imaging whipping up a new voter that is told per-method how to
grok the identifier (instead of looking for the first instance of some
class). I think it would be wired up like this:
<bean id="aclViewVoter"
class="not.yet.MapMethodParamaeterToInstanceIdVoter">
<!-- tells us which parameters are the userId s ...obviously we
could get the voters to share this instead of duplicating it-->
<property name="methodDefinitionSource">
<!-- the right hand side is a template for a
MessageFormat, which will evetually be format'ted with the method
parameters -->
<value>
com.domain.project.interface.addNoteForUser=com.domain.project.obj.User:{0}
com.domain.project.interface.getNotesForUser=com.domain.project.obj.User:{0}
</value>
</property>
<!-- as in the other voters -->
<property
name="processConfigAttribute"><value>SOME_ATTRIBUTE_THAT_IMPLIES_WE_SHOULD_CHECK_FOR_READ</value></property>
<property name="aclManager"><ref local="aclManager"/></property>
<property name="requirePermission">
<list>
<ref
local="net.sf.acegisecurity.acl.basic.SimpleAclEntry.READ"/>
</list>
</property>
</bean>
Does that make any sense? Thanks (in advance) for your attention,
--
Daniel Simms <[EMAIL PROTECTED]>
Philips Telemonitoring Systems
office: +1 408 468 3954
mobile: +1 408 483 3056
The information contained in this message is confidential and may be
legally privileged. The message is intended solely for the addressee(s).
If you are not the intended recipient, you are hereby notified that any
use, dissemination, or reproduction is strictly prohibited and may be
unlawful. If you are not the intended recipient, please contact the sender
by return e-mail and destroy all copies of the original message.
-------------------------------------------------------
SF.Net email is sponsored by: Discover Easy Linux Migration Strategies
from IBM. Find simple to follow Roadmaps, straightforward articles,
informative Webcasts and more! Get everything you need to get up to
speed, fast. http://ads.osdn.com/?ad_id=7477&alloc_id=16492&op=click
_______________________________________________
Home: http://acegisecurity.sourceforge.net
Acegisecurity-developer mailing list
Acegisecurity-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
