Hi, I'd like to build a system with a dynamic GUI that shows/hides elements according to the Roles owned by the user.
I've tried to retrieve the Principals through lc.getSubject().getPrincipals() but I get an empty set of principals so I can't (client side talking) know what is the client role. One of the things that disturbs me is that a client can't dynamicly know what it is allowed to do or not. I thought of a kind of "probe method" on the EJB. This method will be empty but secured by the minimum requiered level to run the EJB. Launching the application will log the client, try to run the probe method and if it succeed show the main frame, if it fails, warn the user and close. Another solution can be to create a parallel auth level map that map a username to a grant level. Each method call will be preceded by an "if" statement comparing the level retrieved for the user and the required level. This will work but, IMO, this is a double use of the JBossSX/JAAS. Why not totally drop the JAAS use and manage all via this system ? No. Even it does the job, I think this is not a clever way to do this. Any ideas are welcome, Thanks, ionel ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
