Yes, JAAS's authorization model allows for this. I actually implemented such a thing in the past, but had to do it via a copy of the JAAS API since there were no standard way of configuring the JAAS provider in the various J2EE containers that would guarantee the correct runtime/classloading.
Acegi was not mature back then, so I only know about its capabilities via the documentation; and here it at least looks like they have the hooks for it + a basic implementation for it. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3941065#3941065 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3941065 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
