This project is read only now.

4 Replies Latest reply on Mar 27, 2008 8:14 AM by lasansue.jeremy.girard.satives.fr

Authorisation and restriction

lasansue.jeremy.girard.satives.fr Mar 26, 2008 5:05 PM

Hi all.

I'm writing a mini blog plateforme.
I've got display page (blog) and edit page (modify a post).

How can i manage access control on edit page. Only the post owner can access this page.

Thanks.

1. Re: Authorisation and restriction

lasansue.jeremy.girard.satives.fr Mar 26, 2008 5:12 PM (in response to lasansue.jeremy.girard.satives.fr)

Maybe by extending Identity class and overriding hasPermission() method ?
Actions
2. Re: Authorisation and restriction

mars1412 Mar 26, 2008 5:25 PM (in response to lasansue.jeremy.girard.satives.fr)

look at the blog example in your seam installation
Actions
3. Re: Authorisation and restriction

shane.bryzak Mar 27, 2008 5:16 AM (in response to lasansue.jeremy.girard.satives.fr)

I would look at the seamspace example, it has plenty of examples of controlling who has access to perform various actions.
Actions
4. Re: Authorisation and restriction

lasansue.jeremy.girard.satives.fr Mar 27, 2008 8:14 AM (in response to lasansue.jeremy.girard.satives.fr)
Thanks all.

I manage to do what i need by extending the seam Identity class using

@Name("org.jboss.seam.security.identity")

Then i could override the hasRole and hasPermission moethod to perform my authorisation stuff by injecting entityManager
Actions