nice :) I think we should also provide massive defaults and provide a
<application> <security config="appUser"/> </application> :) so we can build some indirection in all this configuration stuff marcf > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On > Behalf Of Bill Burke > Sent: Wednesday, April 02, 2003 8:11 PM > To: Jboss-Dev > Subject: [JBoss-dev] AOP security 1st iteration > > > Configuration is exactly like J2EE except fields and > constructors are added. There's an example under the > testsuite. Here's an XML snippet. > > <metadata-loader group="security" > class="org.jboss.aop.security.SecurityClassMetaDataLoader"/> > > <advisable class="org.jboss.test.aop.bean.SecurityTester" > fieldFilter="NONE" > methodFilter="NONE" > constructorFilter="NONE" /> > > <interceptor-pointcut name="SecurityPointcut" > class="org.jboss.test.aop.bean.SecuredPOJO" > fieldFilter="ALL" > methodFilter="ALL" > constructorFilter="ALL" > > > <interceptors> > <interceptor name="AuthenticationInterceptor" > factory="org.jboss.aop.security.AuthenticationInterceptorFactory"/> > <interceptor name="RoleBasedAuthorizationInterceptor" > factory="org.jboss.aop.security.RoleBasedAuthorizationIntercep > torFactory"/> > <interceptor name="RunAsSecurityInterceptor" > factory="org.jboss.aop.security.RunAsSecurityInterceptorFactory"/> > </interceptors> > </interceptor-pointcut> > > <class-metadata name="4568abc" group="security" > class="org.jboss.test.aop.bean.SecuredPOJO"> > <security-domain>java:/jaas/other</security-domain> > <method-permission> > <role-name>allowed</role-name> > <method> > <method-name>someMethod</method-name> > </method> > </method-permission> > <method-permission> > <unchecked/> > <method> > <method-name>unchecked</method-name> > </method> > </method-permission> > <field-permission> > <role-name>allowed</role-name> > <field> > <field-name>someField</field-name> > </field> > </field-permission> > <field-permission> > <unchecked/> > <field> > <field-name>uncheckedField</field-name> > </field> > </field-permission> > <constructor-permission> > <unchecked/> > <constructor> > <constructor-params/> > </constructor> > </constructor-permission> > <constructor-permission> > <role-name>allowed</role-name> > <constructor> > <constructor-params> > <constructor-param>int</constructor-param> > </constructor-params> > </constructor> > </constructor-permission> > > <exclude-list> > <description>Methods that connect be used</description> > <method> > <method-name>excluded</method-name> > </method> > <field> > <field-name>excludedField</field-name> > </field> > <constructor> > <constructor-params> > <constructor-param>java.lang.String</constructor-param> > </constructor-params> > </constructor> > </exclude-list> > </class-metadata> > > > > ------------------------------------------------------- > This SF.net email is sponsored by: ValueWeb: > Dedicated Hosting for just $79/mo with 500 GB of bandwidth! > No other company gives more support or power for your > dedicated server > http://click.atdmt.com/AFF/go/sdnxxaff00300020> aff/direct/01/ > > > _______________________________________________ > Jboss-development mailing list [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/jboss-development > ------------------------------------------------------- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB of bandwidth! No other company gives more support or power for your dedicated server http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/ _______________________________________________ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
