Return-Path: Delivered-To: apmail-portals-jetspeed-dev-archive@www.apache.org Received: (qmail 43350 invoked from network); 1 Nov 2007 14:34:43 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 1 Nov 2007 14:34:43 -0000 Received: (qmail 17737 invoked by uid 500); 1 Nov 2007 14:34:29 -0000 Delivered-To: apmail-portals-jetspeed-dev-archive@portals.apache.org Received: (qmail 17697 invoked by uid 500); 1 Nov 2007 14:34:29 -0000 Mailing-List: contact jetspeed-dev-help@portals.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Jetspeed Developers List" Delivered-To: mailing list jetspeed-dev@portals.apache.org Received: (qmail 17686 invoked by uid 99); 1 Nov 2007 14:34:29 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 01 Nov 2007 07:34:29 -0700 X-ASF-Spam-Status: No, hits=2.6 required=10.0 tests=DNS_FROM_OPENWHOIS,SPF_HELO_PASS,SPF_PASS,WHOIS_MYPRIVREG X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of lists@nabble.com designates 216.139.236.158 as permitted sender) Received: from [216.139.236.158] (HELO kuber.nabble.com) (216.139.236.158) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 01 Nov 2007 14:34:32 +0000 Received: from isper.nabble.com ([192.168.236.156]) by kuber.nabble.com with esmtp (Exim 4.63) (envelope-from ) id 1Inb7b-00065r-Lu for jetspeed-dev@portals.apache.org; Thu, 01 Nov 2007 07:34:11 -0700 Message-ID: <13529820.post@talk.nabble.com> Date: Thu, 1 Nov 2007 07:34:11 -0700 (PDT) From: prasana To: jetspeed-dev@portals.apache.org Subject: Re: [jira] Commented: (JS2-21) Missing Security Feature: Check roles assigned to any group to user belongs In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: prasannap@bluenog.com References: <9919404.1193845371235.JavaMail.jira@brutus> X-Virus-Checked: Checked by ClamAV on apache.org Thanks for the reply. I looked at those methods. In my custom SecurityMappingHandler, for retrieving roles based on group assigned to user, in the method of getRolePrincipals(String username), I am getting all the groups for the user getGroupPrincipals(String username) and for each group I am calling getRolesInGroup(String groupFullPathName) The only issue that I am seeing currently is Roles that are mapped to Groups assigned to user start showing up in User Detail Information Portlet Ideally, there should not be a delete check box for these Roles as they are not mapped directly to User. They are mapped to Groups that the user belongs to. When I tried to delete those Roles in User Detail Information Portlet, its giving an error saying "The user 'user_name' does not exist. " Thanks Prasanna David Sean Taylor wrote: > > > On Oct 31, 2007, at 8:42 AM, Prasanna (JIRA) wrote: > >> >> [ https://issues.apache.org/jira/browse/JS2-21? >> page=com.atlassian.jira.plugin.system.issuetabpanels:comment- >> tabpanel#action_12539103 ] >> >> Prasanna commented on JS2-21: >> ----------------------------- >> >> We need this feature of retrieving the roles based on the group >> assigned to user. > Just FYI > > There is the Group Manager API: > > Collection getGroupsInRole(String roleFullPathName) throws > SecurityException; > > and RoleManager: > > Collection getRolesInGroup(String groupFullPathName) throws > SecurityException; > > > -- View this message in context: http://www.nabble.com/-jira--Commented%3A-%28JS2-21%29-Missing-Security-Feature%3A-Check-roles-assigned-to-any-group-to-user-belongs-tf4725912.html#a13529820 Sent from the Jetspeed - Dev mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: jetspeed-dev-unsubscribe@portals.apache.org For additional commands, e-mail: jetspeed-dev-help@portals.apache.org