Search...
FAQs Subscribe
Pie
FAQs
Recent topics Flagged topics Hot topics Best topics
Search...
Search within OCEEJBD Search Coderanch
Advance search Google search
Register / Login
thread boost granny polymorphism advertise on coderanch book review grid
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
book review grid meaningless drivel advertise on coderanch building better world book thread boost
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Devaka Cooray
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Jeanne Boyarsky
  • Tim Cooke
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Tim Moores
  • Mikalai Zaikin
  • Carey Brown
Bartenders:

@DeclareRoles

 
Duran Harris
Ranch Hand
Posts: 608
I like...
Eclipse IDE Spring Ubuntu
posted 13 years ago
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
    Send
  • Quote
  • Report post to moderator
Hi I'm struggling to understand what the @DeclareRoles annotation does...

I understand the @RunAs and @RolesAllowed but this is confusing me...

The way I understand it is that by the time the bean is called the caller already has a 'Principal' with it's role/s defined.....

(Also sorry to the moderators but this is a double post...I posted this in the EJB forum about 5 days ago but got no response...So I wanted to try my luck here)

===>SCJP 1.5(72%)<===
==>SCWCD1.5(76%)<===

 
Alexey Saenko
Ranch Hand
Posts: 30
I like...
Eclipse IDE Spring Chrome
posted 13 years ago
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
    Send
  • Quote
  • Report post to moderator
The @DeclareRoles annotation specifies all roles which are used in the given class (or method). Also it is possible to specify the roles list in DD. In case there is no specified roles neither in DD nor with @DeclareRoles annotations, the container builds the list automatically by inspecting the @RolesAllowed annotation.

SCJP 6, SCBCD 5, OCEWSD 6
My blog: http://darkleden.wordpress.com

 
Duran Harris
Ranch Hand
Posts: 608
I like...
Eclipse IDE Spring Ubuntu
posted 13 years ago
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
    Send
  • Quote
  • Report post to moderator
Okay thanks

===>SCJP 1.5(72%)<===
==>SCWCD1.5(76%)<===

 
Mark Garland
Ranch Hand
Posts: 226
posted 12 years ago
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
    Send
  • Quote
  • Report post to moderator
(I thought it might be better to revive an old thread on this than start my own as this person has a similar question.)

Alexey Saenko wrote:The @DeclareRoles annotation specifies all roles which are used in the given class (or method). Also it is possible to specify the roles list in DD. In case there is no specified roles neither in DD nor with @DeclareRoles annotations, the container builds the list automatically by inspecting the @RolesAllowed annotation.



If the container builds the list automatically, what's the point of the @DeclareRoles annotation. Seems like unnecessary duplication to me?

28/06/06 - SCJP - 69%, 05/06/07 - SCWCD - 92%, 28/02/08 - IBM DB2 v9 Fundamentals (Exam 730) - 87%, 18/11/08 - IBM DB2 v9 DBA (Exam 731) - 89%, 26/02/11 - SCBCD - 88%

 
Ivan Krizsan
Ranch Hand
Posts: 2198
1
posted 12 years ago
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
    Send
  • Quote
  • Report post to moderator
Hi!
The @DeclareRoles annotation declares the security roles that are used for programmatic security from within the code of the EJB. If a security role is not declared, it will be impossible to determine if the current user is in the security role in question using the isCallerInRole method in the SessionContext.
Note that if a role is not declared using the above annotation or the deployment descriptor, trying to determine whether the caller is in the role in question will result in an exception. If the role is declared, but the caller is not in the role, the isCallerInRole will return false.

The reason for not using an automatically generated list is:
1. Security. Roles used must be explicitly declared.
2. One role-name can be used in the code and it is later mapped to a principal used in the container.
Best wishes!

My free books and tutorials: http://www.slideshare.net/krizsan

 
Did Nolt
Greenhorn
Posts: 1
posted 11 years ago
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
    Send
  • Quote
  • Report post to moderator
See http://www.javabeat.net/articles/13-introduction-to-java-60-new-features-parti-1.html

3.4.1) @DeclareRoles Annotations
 
Lucas Smith
Ranch Hand
Posts: 808
1
I like...
Android Eclipse IDE Java
posted 11 years ago
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
    Send
  • Quote
  • Report post to moderator

Ivan Krizsan wrote:
Note that if a role is not declared using the above annotation or the deployment descriptor, trying to determine whether the caller is in the role in question will result in an exception. If the role is declared, but the caller is not in the role, the isCallerInRole will return false.



This is very important. Try it and you will burn it into your mind .

SCJP6, SCWCD5, OCE:EJBD6.
BLOG: http://leakfromjavaheap.blogspot.com

 
I do some of my very best work in water. Like this tiny ad:
a bit of art, as a gift, the permaculture playing cards
https://gardener-gift.com
reply
reply
    Bookmark Topic Watch Topic
  • New Topic
Boost this thread!
Similar Threads
More...