Hello:
I need to be able control access to service operations based on a
persons role. I have an access control framework that I need to
integrate with. Any thoughts on how I can integrate this in to CXF?
Could I define a custom interceptor for this? and would it be possible
to layer this with WS-Security? Ie.
- Use WS-Security to validate a saml token to see if a user has been
authenticated
- Next determine the user role and if they have access to a particular
service or operation?
Any guidance would be greatly appreciated.
Thanks
Suneet
