This week's book giveaway is in the OCAJP 8 forum.
We're giving away four copies of OCA Java SE 8 Programmer I Study Guide and have Edward Finegan & Robert Liguori on-line!
See this thread for details.
The moose likes Other Application Frameworks and the fly likes Acegi configurable roles and Authorization Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of OCA Java SE 8 Programmer I Study Guide this week in the OCAJP 8 forum!
JavaRanch » Java Forums » Frameworks » Other Application Frameworks
Bookmark "Acegi configurable roles and Authorization " Watch "Acegi configurable roles and Authorization " New topic

Acegi configurable roles and Authorization

Mike Anna
Ranch Hand

Joined: Jul 08, 2007
Posts: 117
Dear all,
I posted in another forum with not too much of specific help.Hence I post here.
I need to make user groups and I need to be able to configure (without interfering with the code) those user groups in such a way that I can decide which user groups will have access to which jsps.
Then within the jsps, before displaying all the fields. I need to check for the profile the user belongs to. If the user is a technician then only the tech. related fields are displayed. If the user is admin all the fields are displayed on the jsp.

I have been challenged in finding a proper approach that I can follow for this.
I plan to use ACEGI with spring MVC.

I have read enough blogs, other posts and googled for it.
Any advice on what direction I can follow, will be greatly appreciated.

Thank you so much for your time.
Ken Krebs
Ranch Hand

Joined: Nov 27, 2002
Posts: 451
Well you can get the list of roles for each user from whatever your provider is, i.e. LDAP server, database, or even a properties file.

As to displaying/hiding information based on the user's roles, Acegi provides a jsp tag library that makes it very easy.
[ August 07, 2007: Message edited by: Ken Krebs ]

kktec<br />SCJP, SCWCD, SCJD<br />"What we observe is not nature itself, but nature exposed to our method of questioning." - Werner Heisenberg
I agree. Here's the link:
subject: Acegi configurable roles and Authorization
It's not a secret anymore!