jackrabbit-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From JOSE FELIX HERNANDEZ BARRIO <jose.hernan...@isthari.com>
Subject Re: Creating a custom AccessManager
Date Sat, 24 Apr 2010 00:13:00 GMT
Hi,

2010/4/24 Rob Brown <rlb.south@gmail.com>

> I'm trying to enhance SimpleJBossAccessManager to use information from our
> user database. I'm hoping that someone can answer a few questions for me:
>
> 1) How should I test for permissions now that READ, WRITE & REMOVE are
> deprecated? i.e. if ((permissions & WRITE) == WRITE) {...}
>

It's deprecated for interface AccessManager but not in

*org.apache.jackrabbit.core.security.authorization.Permission*


> 2) I resolve permissions by path so what is the best way to resolve
> ItemId's? Should I let code in the AccessManager login to jackrabbit to
> retrieve the node by uuid (thus getting the path) or is there an easier way
> to get this? It seems odd to let an AccessManager attempt to login itself
> while it is processing a login request from somewhere else.
>

Look at HierarchyManager, you can resolve path from ItemId


>
> 3) Should I be enhancing SimpleAccessManager instead? This class also
> extends AbstractAccessControlManager which makes it more complex, but is
> that complexity I will need at some point?
>

give a try to

*org.apache.jackrabbit.core.security.DefaultAccessManager*


> 4) Is there any documentation that explains how the jackrabbit security
> model works? I'm feeling a bit lost.
>

i  don't know that document !!!



>
> My user database is quite simple. It maps user names to passwords & groups
> that the user belongs to. From the groups I can determine what jcr paths a
> given user should have access to. I'm using jackrabbit in embedded mode.
>
> I would appreciate any advice that relates to this task.
>



-- 
Jose Hernandez
675599600
Isthari
http://www.isthari.com

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message