1 Reply Latest reply on Jan 3, 2006 9:26 PM by Scott Stark

    powerfull/flexible => role per method ????

    nuno oliveira Newbie


      I'm working in a project where there?s a requirement that the user must be able to assign users to dynamically defined groups. These groups are constituted in terms of the actions they may perform in the system. The most flexible way of doing this and still leverage ejb declarative security mechanisms would be to create a role per ejb method(action), which sounds a litle cumbersome.

      Can anyone's experience advise on better practices ? would you recomend programming security proxys instead ?

      Thanks in advance.