> On Sep 14, 2016, at 1:35 PM, Shawn McKinney <[email protected]> wrote:
>
>>
>> On Sep 14, 2016, at 12:59 PM, Vyacheslav Vakhlyuev <[email protected]>
>> wrote:
>>
>> I have few more questions.
>> 2. Should we allow to createSession for groups with type=USER?
>
> No
A bit more…
If it’s detected throw something like this:
if ( group.getType() != Group.Type.ROLE )
{
String info = getFullMethodName(CLS_NM, methodName) + " Group ["
+ group.getName() + "] must be of type ROLE.";
throw new SecurityException( GlobalErrIds.GROUP_TYPE_INVLD, info );
}
