My bigger problem is my scenario, which no one supports. I'd like to allow
manager accounts to become one of if it's sub-accounts. My system would
support at least 5 levels where 4 could 'drill down' and back up again:
admin, reseller, client, manager, employee (bottom feeder, no managerial
tools and no popping into their accounts). Since there is no easily way to
push/pop or even set (then I could use my own internal stack) a
UserPrincipal object, I'm thinking of using something a bit like
SecurityFilter:
I'm not sure why the standard container-managed security roles don't meet your requirements.
You want a manager to be able to set himself to another role? Sounds like a design issue. Obviously the manager is also going to need to set himself back to his normal role again?
I would use extra roles to allow changing roles. The manager can assign himself whatever standard role he likes depending on his 'extra' roles. This would change the info in your realm and he would have to log out and back in again.
Or have I got the wrong end of the stick?
Adam -- struts 1.1 + tomcat 5.0.16 + java 1.4.2 Linux 2.4.20 Debian
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
