This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes Other Application Frameworks and the fly likes Acegi configurable roles and Authorization Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Frameworks » Other Application Frameworks
Bookmark "Acegi configurable roles and Authorization " Watch "Acegi configurable roles and Authorization " New topic
Author

Acegi configurable roles and Authorization

Mike Anna
Ranch Hand

Joined: Jul 08, 2007
Posts: 117
Dear all,
I posted in another forum with not too much of specific help.Hence I post here.
I need to make user groups and I need to be able to configure (without interfering with the code) those user groups in such a way that I can decide which user groups will have access to which jsps.
Then within the jsps, before displaying all the fields. I need to check for the profile the user belongs to. If the user is a technician then only the tech. related fields are displayed. If the user is admin all the fields are displayed on the jsp.

I have been challenged in finding a proper approach that I can follow for this.
I plan to use ACEGI with spring MVC.

I have read enough blogs, other posts and googled for it.
Any advice on what direction I can follow, will be greatly appreciated.

Thank you so much for your time.
Ken Krebs
Ranch Hand

Joined: Nov 27, 2002
Posts: 451
Well you can get the list of roles for each user from whatever your provider is, i.e. LDAP server, database, or even a properties file.

As to displaying/hiding information based on the user's roles, Acegi provides a jsp tag library that makes it very easy.
[ August 07, 2007: Message edited by: Ken Krebs ]

kktec<br />SCJP, SCWCD, SCJD<br />"What we observe is not nature itself, but nature exposed to our method of questioning." - Werner Heisenberg
 
 
subject: Acegi configurable roles and Authorization
 
Similar Threads
Different Colour for different group of overlapping circles.
Acegi security authentiction
Login using client certificates and roles
Enabling/Disabling editing on html form fields in a JSP
Consulting Concepts about Security