Hi Nishant, Yep, you can do this easily. Apache Ki's Realm implementations supports both Authentication and Authorization.
Just configure one realm where the Realm.supports(AuthenticationToken) method always returns false. Then that realm will never be consulted for Authentication, leaving it to only perform Authorization. Cheers, Les On Thu, Apr 30, 2009 at 10:13 AM, Nishant Jain <[email protected]>wrote: > > Hi, > I have to implement role based Authorization in a web based application. > Can > I use only authorization from the JSecurity? > I dont need authentication as it is already there provided by the company's > common login page. Is there a way I can create a SecurityManager with just > the role based permissions like if role is "user" then there are some sets > of permission and if role is "admin" then there are some different set of > permissions. > > > -- > View this message in context: > http://n2.nabble.com/Using-Ki-just-for-Authorization--tp2747338p2747338.html > Sent from the JSecurity User mailing list archive at Nabble.com. > >
