java - ACL in spring security or permision configuration -


my requirement following: have application uses roles lets said (admin/user/guest), depending on role can access different sections on application. in specific section, of them can see actions/options/buttons/tabs, means 2 admin users, configuration of screen , available option different.

i reading domainacl in spring security , spring-security permissions, believe use domainacl not need cover requirement don't need have object granular security.

my question there specific out-of-the box feature of spring-security can solve requirement don't know, taking in consideration need add java tags in jsp remove buttons/controls ui. other question : permissions without domainacl enough solve requirement or missing something.

basically need save actions can executed users + role of users, lets said want store in database permissions "execute search", "view_user_tab".

  • admin / peter / "execute search", "view_user_tab"
  • admin / sarah / "execute search"
  • user / john / "view_user_tab"

i'm using spring-security3.2 , jsp pages view technology.

i did roles , operation in application. @ answer, helped me: difference between role , grantedauthority in spring security

basically article said there no difference between roles , permissions both granted authorities , need placed in top of security context able manage access different resources. use hasrole or haspermission specify more readable developer, both operates analyzing granted authorities domain.


Comments

Post a Comment

Popular posts from this blog

javascript - Bootstrap Popover: iOS Safari strange behaviour -

i looking through twitter bootstrap documentation, , i'm interested in implementing dismissible popover when button clicked. here example bootstrap's docs: http://getbootstrap.com/javascript/#dismiss-on-next-click when press "dismissible popover" button os x safari browser works fine. when access same link above ios safari, button not work. is, popover not dismissed on click. why button not working ios safari? the example linked using data-trigger="focus" attribute. try changing data-trigger="click" . <a tabindex="0" class="btn btn-lg btn-danger" role="button" data-toggle="popover" data-trigger="click" title="dismissible popover" data-content="and here's amazing content. it's engaging. right?">dismissible popover</a>
Read more

Magento/PHP - Get phones on all members in a customer group -

i working on custom magento extension. working around adminhtml part , i've created custom form there. here form code: <?php class vivasindustries_smsnotification_block_adminhtml_sms_sendmass_edit_form extends mage_adminhtml_block_widget_form { public function _preparelayout() { $extensionpath = mage::getmoduledir('js', 'vivasindustries_smsnotification'); $head = $this->getlayout()->getblock('head'); $head->addjs('jquery.js'); $head->addjs('vivas.js'); return parent::_preparelayout(); } protected function _prepareform() { $form = new varien_data_form(array( 'id' => 'edit_form', 'action' => $this->geturl('*/*/save', array('id' => $this->getrequest()->get...
Read more

session - Logging Out Using PHP -

i have seen other programs regarding can't seem make work. doing wrong? want achieve after user logged out, going previous pages become restricted. i have 3 php files: 1. sample.php - main page username , password filled in 2. successful.php - user's page after logging in 3. logout.php - destorys session hinder user access pages after logging out sample.php </html> <form action="" method="post"> <table> <tr> <td>username:</td> <td>password:</td> </tr> <tr> <td><input type="text" name="username"></td> <td><input type="password" name="password"></td> </tr> <tr> <td><input type="submit" value="submit" name="submit"></td> </tr> </table> </form> </html> <?php $servername = "localhost"; $username = ...
Read more