Hello,
I had exactly the same problem. As I only use Oracle as the db for my
software, I wrote BMP entity beans that can handle all
the required functionality. The beans are persisted using Oracle's security
mechanisms (CREATE USER, GRANT ROLE...).
This has the additional benefit that the db is secured from access by
unauthorized users (normally you have one db user for the whole
application), but can be accessed by all my registered users via SQL plus or
JDBC. An additional benefit is that I can use these User and Role beans
(wrapped into Java's Principal) as the security entities for the whole
application, being able to see all open cursors etc. per logged in user from
the db.
Of course, my requirements said that the number of users is somewhere below
200. For a large scale application with possibly thousands of users, another
approach should be considered.
Best regards
Nikolaus Rumm
----- Original Message -----
From: "vihs" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, July 25, 2000 5:49 PM
Subject: Help in designing EJBs
> Hi all
>
> I am looking for a design solution for a particular problem. Pl help.
>
> Problem :
>
> The User has two attributes - login_id, password, and
> enabled_flag. The User information is stored in database table U.
>
> The Group is a named collection of users. The same user can not
> belong to more than one group. The Group information is stored in
> the database table G.
>
> The information regarding which user belongs to which group is
> stored in table U_G.
>
> The client should be able to :-
>
> * Add new user
> * Change user password
> * Disable user. This operation should fail if the user is part
> of any group.
> * Delete user
> * Get list of enabled users
> * Get list of disabled users
> * Add/delete groups
> * Add and remove users of a group
> * Get list of groups
>
> Question :
>
> How will you model this problem using EJBs? What session beans will
> you use, what entity beans will you use etc.
>
> Thanks in advance.
> --
> shiv
> [EMAIL PROTECTED]
>
>
>
> __________________________________________________
> Do You Yahoo!?
> Talk to your friends online with Yahoo! Messenger.
> http://im.yahoo.com
>
>
===========================================================================
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the
body
> of the message "signoff EJB-INTEREST". For general help, send email to
> [EMAIL PROTECTED] and include in the body of the message "help".
>
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff EJB-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
