Hi Paul,
Handlers are executed inside the JDBC registry. At this point the
request has passed the SecureRegistry.
So it is up to the handlers to determine the permissions. A realm
instance is passed to handler constructors, which can be used to access
users, roles and permissions.
All registered handlers will be executed one by one for each request,
until a handler responds with a not null result. Request URL is passed
as a parameter when executing the handlers. Then each handler should
examine the URL and find out whether it can process it or not. If it can
process it, it should return a resulting resource object. Otherwise it
should return null.
Thanks,
Chathura
Paul Fremantle wrote:
What is the permissions model for URL handlers? Who can execute one?
Or is it up to the handler to figure it out? If so how can it access
users/roles?
Paul
_______________________________________________
Registry-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/registry-dev
