jackrabbit-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From JOSE FELIX HERNANDEZ BARRIO <jose.hernan...@isthari.com>
Subject Re: Creating a custom AccessManager
Date Sat, 24 Apr 2010 00:13:00 GMT

2010/4/24 Rob Brown <rlb.south@gmail.com>

> I'm trying to enhance SimpleJBossAccessManager to use information from our
> user database. I'm hoping that someone can answer a few questions for me:
> 1) How should I test for permissions now that READ, WRITE & REMOVE are
> deprecated? i.e. if ((permissions & WRITE) == WRITE) {...}

It's deprecated for interface AccessManager but not in


> 2) I resolve permissions by path so what is the best way to resolve
> ItemId's? Should I let code in the AccessManager login to jackrabbit to
> retrieve the node by uuid (thus getting the path) or is there an easier way
> to get this? It seems odd to let an AccessManager attempt to login itself
> while it is processing a login request from somewhere else.

Look at HierarchyManager, you can resolve path from ItemId

> 3) Should I be enhancing SimpleAccessManager instead? This class also
> extends AbstractAccessControlManager which makes it more complex, but is
> that complexity I will need at some point?

give a try to


> 4) Is there any documentation that explains how the jackrabbit security
> model works? I'm feeling a bit lost.

i  don't know that document !!!

> My user database is quite simple. It maps user names to passwords & groups
> that the user belongs to. From the groups I can determine what jcr paths a
> given user should have access to. I'm using jackrabbit in embedded mode.
> I would appreciate any advice that relates to this task.

Jose Hernandez

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message