shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "John Vines (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SHIRO-492) Subject.getRoles() functionality
Date Fri, 26 Sep 2014 18:21:34 GMT

    [ https://issues.apache.org/jira/browse/SHIRO-492?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14149758#comment-14149758
] 

John Vines commented on SHIRO-492:
----------------------------------

Allow a user to request their roles, for starters.

But also for checking large quantities of data for role based access, I need to prefetch the
set of authorizations to validate with. Currently I'm forcing the user to enumerate all known
visibilities and checking the system for them one by one.

> Subject.getRoles() functionality
> --------------------------------
>
>                 Key: SHIRO-492
>                 URL: https://issues.apache.org/jira/browse/SHIRO-492
>             Project: Shiro
>          Issue Type: Improvement
>          Components: Authorization (access control) 
>            Reporter: John Vines
>
> Currently shiro provides the ability to respond whether or not a user has a list of Authorizations.
However, while the realms have methods for getting all authorizations (protected), these are
not exposed in normal use to allow asking for all Roles. This should be exposed by adding
a call to Subject to getRoles, to complement it's existing hasRoles calls. This may require
making some of the calls around authorizations, like getAuthorizationInfo in AuthorizingRealm,
public. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message