2 Replies Latest reply on Apr 2, 2004 5:39 PM by mortise

SecurityProxy run-as?

mortise Apr 2, 2004 5:39 PM

I am creating some custom security proxies by directly implementing the org.jboss.security.SecurityProxy interface (as opposed to wrapping another object with a SecurityProxy implementation). In order to authorize access to certain bean methods, my security proxies need to gather information from SLSBs. I would like to be able to have my security proxies call these SLSBs with an identity other than the current caller in a manner much like the 'run-as' option for beans.

Does anyone know of a way to do this?

Thanks,

Andrew

1. Re: FakeInitialContext and java:/ root names

mortise Apr 2, 2004 5:39 PM (in response to mortise)

"kabkhan" wrote:
maybe it goes a bit away from the original intent, by us simply calling new InitialContext().bind()? I'm a bit confused!!!

Been reading up on naming and think it is kosher. I reckon the idea behind the FakeInitialContext is to use the contained HashMap of bindings, and not to have to rely on the NamingService. Is that correct?
Actions
2. Re: SecurityProxy run-as?

starksm64 Apr 2, 2004 6:55 PM (in response to mortise)

Look at the org.jboss.ejb.plugins.SecurityInterceptor used by the ejb container for an example.
Actions

Go to original post