|
|
Exploiting J2SE Security (3/4)
- Example: Role as Permissions:
- Given principal-to-roles map, assign permissions
for all roles to this principal
- Mapping takes place "statically" in the
authorization policy definition
- Potential problems:
- Treats a role both as a principal and a
permission
- Is dependent on a mapping from method
permission from a role permission
- JAAS-like Syntax
- grant RolePermission(customer) to sam
- grant MethodPermission(ejb.account.withdraw) to
RolePrincipal(customer)
- grant MethodPermission(ejb.loan.borrow) to
RolePrincipal(customer)
|
copyright © 2014 - all rights riserved by javatechnologycenter.com
