access control list & permissions

Google

Mailing List

Home

Forum Home

JBoss - Java Application Server

Struts - A MVC web framework

Tomcat - JSP/Servlet container

iText - An open source PDF Java Library

JDOM - JDOM XML Parser

J2EE - A mailing list for Java(tm) 2 Platform, Enterprise Edition

J2EE Pattern - An interest list for Sun Java Center J2EE Pattern Catalog

Servlet - A mailing list for discussion about Sun Microsystem's Java Servlet API Technology

JSP - A mailing list about Java Server Pages specification and reference

Struts & Hibernate

Subjects

•	JSP editor plugin for eclipse ?
•	org apache jasper JasperException: Unable to compile class for JSP
•	Tomcat: Connection reset by peer: socket write error
•	Cannot retrieve definition for form bean null
•	Struts Tiles Tutorial (free Struts training)
•	Where do I download Tomcat 4 0 6?
•	Data Access Object (DAO) pattern, example DAO 's
•	Where to download Tomcat v 4 1 24 from?
•	Tomcat 5 0 16 Requested resource not available
•	Oracle Connection Pooling in 3 2 2
•	Servlet : Session invalidate
•	Servlet action is currently unavailable
•	Tomcat/Struts Unicode Encoding/Decoding problems
•	Tomcat and webapplication specific java library path
•	Running a Simple JMS Example
•	Mapping in workers2 properties
•	org apache jasper JasperException
•	Cannot find message resources under key org apache struts action MESSAGE
•	problem with html:text bean throwing exception
•	Cannot find message resources under key org apache struts action MESSAGE
•	invalid direct reference problem with solution
•	Tool for jsp debug Try Sysdeo Eclipse Plugin
•	Tomcat 5 Cannot load JDBC driver class 'null ' SQL state: null
•	weblogic ejbc
•	java properties file
•	Jboss 3 2 3 Coyote Can 't re
•	Tomcat 5, Apache2 and mod jk2 integration problem
•	JBoss example problem new to J2EE
•	url string for connecting jboss to oracle
•	Value attribute of <html:checkbox
•	javax servlet ServletException: BeanUtils populate
•	HTTP Status 404 The requested resource is not available
•	5 0 18: Windows XP Pro vs Windows 2000

access control list & permissions

access control list & permissions

2003-07-16 - By Rafal Kedziorski

Back
Hi,

we have a fine grained ACL structure. for each module there are an acl
(i.e. ACL.PROJECT, ACL.MEDIA, ACL.ACCESS, ...) and there are some
permissions (i.e. Permission.READ, Permission.WRITE, Permission.CREATE,
Permission.REMOVE, ...). this data is stored as read only in the db. we
have other table acl_entries with the possible connections between acl's
and permission's. each calls goes thru a Facade Pettern. for each module
there are one facade session bean, which checks the acl's and permission's i.e.

public ProjectMetaData createProject(Long caller_user_id, ProjectMetaData
project)
throws CreateException, PermissionException, ParameterException {
if (caller_user_id == null || project == null ||
!project.checkForCreate()) {
logger.error("createProject() failed while one of the parameters is
null " + projectMetaData);
throw new ParameterException("ProjectFacade::createProject() failed
while one of the parameters is null");
}

checkAclPermission(caller_user_id, AclHelper.MODULE_PROJECT,
PermissionHelper.CREATE);

return projectLocalHome.create().createProject(caller_user_id, project);
}

checkAclPermission() ask's every time the db directly by JDBC. our system
can be used by many oem's. any oem have own users and groups. each user
belongs to one ore more groups. this is defined by "valid from date" and
"expired date". each group have one or more acl_entries.

now my question. is this a good design or is there a pettern, which we
should use?

Best Regards,
Rafal

====================================================================
Community Web Site (Core J2EE Patterns Catalog - Online Version):
http://java.sun.com/blueprints/corej2eepatterns
Getting Started (Beta Version):
http://developer.java.sun.com/developer/technicalArticles/J2EE/patterns/
Get the book:
http://www.amazon.com/exec/obidos/ASIN/0130648841/corej2eepatte-20 (See http://tte-20.ora-code.com)
List Archive:
http://archives.java.sun.com/archives/j2eepatterns-interest.html
Unsubscribing:
email "signoff J2EEPATTERNS-INTEREST" to listserv@(protected)