| Authorization in a RAP application [message #111206] |
Tue, 04 November 2008 07:25  |
Eclipse User |
|
|
|
Originally posted by: spanprevention-nursubscriptions.gmail.com
Hi,
Looking for suggestions to implement authorization in a RAP application.
The requirement is (at its finest granularity) to disable/make invisible
certain menu items depending on the user role of the logged-in user.
Certain views and perspectives are also to be restricted.
What do the RAP team and other RAP users suggest?
1. I think the Activities mechanism will not fit the bill in a
multi-session environment.
2. Is there some support for JAAS authorization?
3. Any other mechanism?
Any pointers/suggestions are highly appreciated.
TIA,
Best Regards,
-abhi
|
|
|
| Re: Authorization in a RAP application [message #111219 is a reply to message #111206] |
Tue, 04 November 2008 11:07  |
| Eclipse User |
|
|
|
Originally posted by: spanprevention-nursubscriptions.gmail.com
Can OSGi UserAdmin service be an alternative for implementing
authorization? If so, how and where would one plug it into a RAP
application?
TIA,
Best Regards,
-abhi
|
|
|
| Re: Authorization in a RAP application [message #112009 is a reply to message #111206] |
Mon, 10 November 2008 18:02 |
| Eclipse User |
|
|
|
Originally posted by: rherrmann.innoopract.com
Hi,
Activities as they are implemented in RAP are session-aware. Thus
they should serve the purpose of hiding/disabling UI parts.
Cheers,
Rüdiger
abhi wrote:
> Hi,
>
> Looking for suggestions to implement authorization in a RAP application.
> The requirement is (at its finest granularity) to disable/make invisible
> certain menu items depending on the user role of the logged-in user.
> Certain views and perspectives are also to be restricted.
>
> What do the RAP team and other RAP users suggest?
> 1. I think the Activities mechanism will not fit the bill in a
> multi-session environment. 2. Is there some support for JAAS
> authorization? 3. Any other mechanism?
>
> Any pointers/suggestions are highly appreciated.
>
> TIA,
> Best Regards,
> -abhi
>
>
|
|
|
| Re: Authorization in a RAP application [message #112075 is a reply to message #112009] |
Tue, 11 November 2008 10:44 |
| Eclipse User |
|
|
|
Originally posted by: spanprevention-nursubscriptions.gmail.com
Hi,
Thanks a lot for the info! This might be the lifeline i am seeking.
I can imagine the following flow:
Login Screen --> Authentication (using JAAS APIs) --> Store role in
Session --> UI Authorization (hide/unhide Menu parts using Activities that
in turn, use the role stored in the HTTP Session)
Is the above feasible? How can i use information stored in the session
while using Activities?
TIA,
Best Regards,
-abhi
|
|
|
|
| Re: Authorization in a RAP application [message #112354 is a reply to message #112116] |
Thu, 13 November 2008 16:48 |
| Eclipse User |
|
|
|
Originally posted by: spanprevention-nursubscriptions.gmail.com
Hallo Ruediger,
Thanks a lot for the links. They have been quite helpful; As you rightly
indicated, i was able to use Activities as desired, following the outline
provided in the 2nd link. Subsequently i have posted another question on
the forum related to security :-)
Thanks again!
Best Regards,
-abhi
|
|
|
Powered by
FUDForum. Page generated in 0.02568 seconds
] 
Search
Help
Register
Login
Home
