2 Replies Latest reply on Feb 13, 2005 2:19 AM by artemgolubev

    Custom security EJB 2.x: Creating custom Field-access method

    artemgolubev

      I want to create EJB 2.x CMP beans with mandatory access features.
      For instance, some users must have "write" access to some beans and must have no "read" access.
      I can see only one way to do this: check users access rights in getXXX()
      and setXXX() methods.
      But since EJB 2.0 you can only declare abstract get- and set- methods.
      Real persistence class is generated by the deployment tool.

      The question is: can I write some "plug-in" or somehow modify deployment tool to add access-check code to get- and set- methods of
      CMP beans?