geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Shawn Jiang (JIRA)" <j...@apache.org>
Subject [jira] Created: (GERONIMO-5675) Add role based navigation customization support.
Date Fri, 05 Nov 2010 01:57:06 GMT
Add role based navigation customization support.
------------------------------------------------

                 Key: GERONIMO-5675
                 URL: https://issues.apache.org/jira/browse/GERONIMO-5675
             Project: Geronimo
          Issue Type: New Feature
      Security Level: public (Regular issues)
          Components: console
            Reporter: Shawn Jiang
             Fix For: 2.2.2, 3.0


the target is that a geronimo user could define role based navigation tree easily without
building geronimo from source code.

User could define an external file with something like this:

{noformat}
role name: role 1
navigation access pages: 
"0/Welcome",
"1-1-1/Application Server/System Information/Server Information",
"1-1-2/Application Server/System Information/Java System Info",
 "1-1-4/Application Server/System Information/Thread Pools",
"1-8/Server/Monitoring"

role name: role 2
navigation access pages: 
"0/Welcome",
"1-1-1/Application Server/System Information/Server Information",
"1-1-2/Application Server/System Information/Java System Info",
 "1-1-4/Application Server/System Information/Thread Pools",
"1-8/Server/Monitoring"
{noformat}

The role names must have been defined as group name in current realm.   Then, we could read
this file into class[1] and filter the navigation tree according to current user's roles.
As for the pages that are not in navigation tree, we should use a servlet filter with the
same role/access page mapping to block the address bar direct access.


[1]https://svn.apache.org/repos/asf/geronimo/server/trunk/plugins/console/console-portal-driver/src/main/java/org/apache/geronimo/console/navigation/NavigationJsonGenerator.java


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message