http://markmail.org/message/3qpow4arm6tdqqp2
Also it seems that there would be an effort soon in this area
http://docs.ofbiz.org/display/~jaz/OFBiz+Security+Refactor
Jacques
From: "snowch" <[email protected]>
Hi forum,
Some of my requests will contain a parameter (UpliftId) that holds an
identifier for a entity record. This is to provide record level security
checks. Is there a way of performing this check in the controller so that
every (logged in) request that has the parameter UpliftId is checked to
ensure that the userLoginId has access to the the UpliftId?
Many thanks in advance,
Chris
--
View this message in context:
http://www.nabble.com/Best-place-for-security-check--tp23255712p23255712.html
Sent from the OFBiz - User mailing list archive at Nabble.com.
