Thanks, I'm looking farther down the road since our application could also require roles to be pulled from an XML, the more I read about JAAS, the more I think it's the way to go. Our deployed larger applications have roles setup in the DB under separate tables, but with each additional small project, it might be ideal to setup roles in an XML file, we could possibly look at stacking LoginModules for a single Subject.
| -----Original Message----- | From: Andrew Conrad [mailto:[EMAIL PROTECTED]] | Sent: Wednesday, August 21, 2002 5:31 PM | To: 'Tomcat Users List' | Subject: RE: Realm Security Implementation Question [OT] | | Your users and roles are in a DB? It's almost JDBCRealm, except you | have a table of roles for each application. | | Take a look at the JDBCRealm and I bet you could make your own Realm | based loosely on that. | | - Andrew | | > -----Original Message----- | > From: Hookom, Jacob John [mailto:[EMAIL PROTECTED]] | > Sent: Wednesday, August 21, 2002 4:20 PM | > To: [EMAIL PROTECTED] | > Subject: Realm Security Implementation Question [OT] | > | > | > We are trying to figure out a way to handle realm-based | > security in a multi-application environement where users and | > their roles are specified in a DB. Users are stored in one | > table with password and there is a table for each application | > definining permissions for the user. | > | > I have been looking at the new JAASRealm the Craig put | > together, but I'm not sure if it's exactly what we need or if | > it's going overboard. Otherwise we have to represent roles | > in this manner: [applicationName]:[applicationId]:[role] and | > have a specialized realm do string parsing to validate roles | > within an application. Our applications are deployed under a | > single war to take advantage of a pseudo single sign-on. | > | > Any suggestions would be apprechiated, | > | > Jacob | > | > -- | > To unsubscribe, e-mail: | > <mailto:tomcat-user-> [EMAIL PROTECTED]> | > For | > additional commands, | > e-mail: <mailto:[EMAIL PROTECTED]> | > | | | -- | To unsubscribe, e-mail: <mailto:tomcat-user- | [EMAIL PROTECTED]> | For additional commands, e-mail: <mailto:tomcat-user- | [EMAIL PROTECTED]> | | --- | Incoming mail is certified Virus Free. | Checked by AVG anti-virus system (http://www.grisoft.com). | Version: 6.0.381 / Virus Database: 214 - Release Date: 8/2/2002 | --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.381 / Virus Database: 214 - Release Date: 8/2/2002 -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
