Amila, Anyways the issue is not about negative permissions. It can even be something like "let role A create queues that have names starting with Temp_" as you just mentioned. How can we have something like that in our permission model?.
Thanks, Danushka On Thu, Jul 22, 2010 at 9:13 PM, Danushka Menikkumbura <[email protected]>wrote: > Hi Amila, > > >> I think first of all you should not try to write deny rules with security. >> >> > > In ACL you can write deny statements. I do not understand why we should not > anyway. > > >> Generally you can not hard code the user name in a software. >> > > Sorry for using an irrelevent statement. Obviously it has to be a role ;-). > > Do you need to give the current users to JMS Object and will it evaluate >> the rule with any action? >> > > There is an authorization manager that takes care of this. > > Danushka >
_______________________________________________ Carbon-dev mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
