File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Other Application Frameworks and the fly likes Acegi configurable roles and Authorization Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Frameworks » Other Application Frameworks
Bookmark "Acegi configurable roles and Authorization " Watch "Acegi configurable roles and Authorization " New topic

Acegi configurable roles and Authorization

Mike Anna
Ranch Hand

Joined: Jul 08, 2007
Posts: 117
Dear all,
I posted in another forum with not too much of specific help.Hence I post here.
I need to make user groups and I need to be able to configure (without interfering with the code) those user groups in such a way that I can decide which user groups will have access to which jsps.
Then within the jsps, before displaying all the fields. I need to check for the profile the user belongs to. If the user is a technician then only the tech. related fields are displayed. If the user is admin all the fields are displayed on the jsp.

I have been challenged in finding a proper approach that I can follow for this.
I plan to use ACEGI with spring MVC.

I have read enough blogs, other posts and googled for it.
Any advice on what direction I can follow, will be greatly appreciated.

Thank you so much for your time.
Ken Krebs
Ranch Hand

Joined: Nov 27, 2002
Posts: 451
Well you can get the list of roles for each user from whatever your provider is, i.e. LDAP server, database, or even a properties file.

As to displaying/hiding information based on the user's roles, Acegi provides a jsp tag library that makes it very easy.
[ August 07, 2007: Message edited by: Ken Krebs ]

kktec<br />SCJP, SCWCD, SCJD<br />"What we observe is not nature itself, but nature exposed to our method of questioning." - Werner Heisenberg
I agree. Here's the link:
subject: Acegi configurable roles and Authorization
It's not a secret anymore!