The correct answer is the UNION of permissions. So both both the "Teller"
and "Manager" roles
can access the transfer method in the example.
Vlada
----- Original Message -----
From: anurag mandloi <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, February 14, 2000 8:38 AM
Subject: Re: method-permissions
> From Section 15.3.2 of the EJB 1.1 specification states:
> "The method permissions relation includes the pair (R, M) if and only if
the
> security role R is allowed to invoke the method M."
>
> Therefore I as long as I understand, for the example you have given the
> answer will be 'yes'. That means both the user can access the "transfer"
> method.
> Therefore- Method Permission relation will include pairs
(Manager,Transfer)
> and (Teller,Transfer).
>
> -Anurag
>
> >From: Richard Monson-Haefel <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: [EMAIL PROTECTED]
> >Subject: method-permissions
> >Date: Fri, 11 Feb 2000 08:40:43 -0600
> >
> >Section 15.3.2 of the EJB 1.1 specification states:
> >
> >"The method permissions relation is defined as the union of all the
> >method permissions defined in the individual method-permission
> >elements."
> >
> >Does this mean that more specific method permissions DO NOT override
> >more general method permissions? (An example scenario is shown at the
> >bottom of this e-mail)
> >
> >I need an answer to this question this morning if possible from a Sun
> >authority on EJB 1.1. I post the question here so that the entire
> >community can benefit.
> >
> >Thanks,
> >
> >Richard
> >--
> >Richard Monson-Haefel
> >EJB Expert for jGuru.com
> >( http://www.jguru.com )
> >
> >Author of Enterprise JavaBeans
> >Published by O'Reilly & Associates
> >( http://www.ejbnow.com )
> >
> >**********
> >
> >Example:
> >
> ><method-permission>
> > <role-name>Manager</role-name>
> > <method>
> > <ejb-name>Account</ejb-name>
> > <method-name>*</method-name>
> > </method>
> ></method-permission>
> >
> ><method-permission>
> > <role-name>Teller</role-name>
> > <method>
> > <ejb-name>Account</ejb-name>
> > <method-name>transfer</method-name>
> > </method>
> ></method-permission>
> >
> >Would "union" mean that both the "Teller" and "Manager" role can access
> >the transfer method?
> >************
> >
>
>===========================================================================
> >To unsubscribe, send email to [EMAIL PROTECTED] and include in the
body
> >of the message "signoff EJB-INTEREST". For general help, send email to
> >[EMAIL PROTECTED] and include in the body of the message "help".
> >
>
> ______________________________________________________
> Get Your Private, Free Email at http://www.hotmail.com
>
>
===========================================================================
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the
body
> of the message "signoff EJB-INTEREST". For general help, send email to
> [EMAIL PROTECTED] and include in the body of the message "help".
>
>
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff EJB-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
