Improve support for Instance-Level Access Control

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: security-0.4.6
Fix Version/s: security-0.5.0
Component/s: security
Labels:
None

Testcase included:
yes
Patch Submitted:

Yes
Number of attachments :
2

Description

SecurityInterceptors should put advised MethodInvocation objects to the Environment service, so that custom AuthorizingRealm implementations could get access to parameters of invoked secured methods during permission checking.

This should make it possible to implement instance-level access control.

See this discussion for details:
http://www.mail-archive.com/users@tapestry.apache.org/msg63762.html

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Download All

Attachments

TYNAMO-183.patch

11/Oct/12 5:34 PM

16 kB

Dmitry Gusev
TYNAMO-183-2.patch

12/Oct/12 3:58 PM

9 kB

Dmitry Gusev

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Dmitry Gusev added a comment - 11/Oct/12 5:34 PM

Patch + tests

Show

Dmitry Gusev added a comment - 11/Oct/12 5:34 PM Patch + tests

Hide

Permalink

Dmitry Gusev added a comment - 12/Oct/12 3:58 PM

Similar patch for component method interceptors

Show

Dmitry Gusev added a comment - 12/Oct/12 3:58 PM Similar patch for component method interceptors

People

Assignee:

Kalle Korhonen

Reporter:

Dmitry Gusev

Vote (0)

Watch (1)

Dates

Created:

11/Oct/12 5:33 PM

Updated:

06/Nov/12 6:13 PM

Resolved:

06/Nov/12 6:13 PM