Hello...
I think using EJBContext can only define the list of users during deployment time. What
I'm trying to accomplish is that the list of users that can access/edit/modify a
specific
entity bean can be dynamicaly updated during runtime. For example, a projectejb is only
accessible to people who is a member of the project. I know that there's no mechanism
in
EJB to perform such task since it's specific to the application domain.
Should I use ACLs/Stateless Session Bean etc...? What's the common practice?
Thanks for your input.
Jerson
--- Rajan Kashyap <[EMAIL PROTECTED]> wrote:
> Hi,
> For achieving instance level authorization you have to do it
> programmatically. In your bean implementation code you have to write the
> logic. You have to use EJBContext for this purpose.
> Doing it programmatically is the only way.
>
> Rajan
>
> -----Original Message-----
> From: A mailing list for Enterprise JavaBeans development
> [mailto:[EMAIL PROTECTED]]On Behalf Of Jerson Chua
> Sent: Monday, August 07, 2000 5:28 PM
> To: [EMAIL PROTECTED]
> Subject: Re: URGENT: Authorization on Specific Instance
>
>
> Hello
> Can you please illustrate the use of EJBContext in authorization?
>
> Jerson
>
> --- Evan Ireland <[EMAIL PROTECTED]> wrote:
> > Jerson Chua wrote:
> > >
> > > Hello...
> > > I know that instance level authentication is not provided in EJB 1.1.
> How does one
> > > implement this type of authorization? What's the common practice?
> >
> > Use EJBContext.isCallerInRole, and attach role names to your data rows.
> >
> > > example scenario:
> > > Is user1 allowed to view or edit account1 and account2?
> > >
> > > thanks in advance....
> > >
> > > Jerson
> > >
> > > __________________________________________________
> > > Do You Yahoo!?
> > > Kick off your party with Yahoo! Invites.
> > > http://invites.yahoo.com/
> > >
> > >
> ===========================================================================
> > > To unsubscribe, send email to [EMAIL PROTECTED] and include in the
> body
> > > of the message "signoff EJB-INTEREST". For general help, send email to
> > > [EMAIL PROTECTED] and include in the body of the message "help".
> >
> > --
> >
> ____________________________________________________________________________
> ____
> >
> > Evan Ireland Sybase EAServer Engineering
> [EMAIL PROTECTED]
> > Wellington, New Zealand +64 4
> 934-5856
> >
> >
> ===========================================================================
> > To unsubscribe, send email to [EMAIL PROTECTED] and include in the
> body
> > of the message "signoff EJB-INTEREST". For general help, send email to
> > [EMAIL PROTECTED] and include in the body of the message "help".
> >
>
>
> __________________________________________________
> Do You Yahoo!?
> Kick off your party with Yahoo! Invites.
> http://invites.yahoo.com/
>
> ===========================================================================
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
> of the message "signoff EJB-INTEREST". For general help, send email to
> [EMAIL PROTECTED] and include in the body of the message "help".
>
> ===========================================================================
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
> of the message "signoff EJB-INTEREST". For general help, send email to
> [EMAIL PROTECTED] and include in the body of the message "help".
>
__________________________________________________
Do You Yahoo!?
Kick off your party with Yahoo! Invites.
http://invites.yahoo.com/
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff EJB-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
