Re: Regarding JEE security with fortress

To: openldap-fortress@openldap.org

Subject: Re: Regarding JEE security with fortress

From: raman nanda <ramannanda9@gmail.com>

Date: Fri, 29 Nov 2013 13:50:48 -0000

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=iXx8MZsRydU8CIjN5x33JS+Ml19r3UFNlMc1BWAGbe0=; b=lp+c6UmcBBcbP99mfExXMdAxAXrmBDeuipYEdQM2co+zcjsedEuhlygvLLDrPLylJx UHLsyUWEYFVqrj+/yLQEfeyiCzMTFvMrSR7fFxctdemxRlHWvyEFHofISCGuYYEOI9e3 992t/I3AcXJV15HRn9oLZvuyXXXHtbKEOW+Sxj2XTO1a54l7ocKTXNoqz6w8Gzk6Q8KN bOZmUDeLRNt3RvXQ2G3CWHxGKzKNs7lspOL5KTaLDGfC/PhmJ3ut/ETSCXBjpXbXXGsc RKiM5nTnNxgJ+y8zr5zCUjTlVOC3046jjK8kLK92E61YH/rCPd7jf/uLuP9hOXrpoNqU Didw==

In-reply-to: <CAJtV1dSbEGO167hOq9GRJ0w0hAuX+ehPDSceQ4Uhem7C6nNs1w@mail.gmail.com>

References: <CAJtV1dSbEGO167hOq9GRJ0w0hAuX+ehPDSceQ4Uhem7C6nNs1w@mail.gmail.com>

Hi,

Resending.

Regards,
Ramandeep

On Nov 29, 2013 3:10 PM, "raman nanda" <ramannanda9@gmail.com> wrote:

Hi,

I have been browsing the example of security posted on iamfortress. I have a query, I would be glad if anyone can answer it.

Fortress security requires that the roles be defined in the deployment descriptor i.e web.xml . Now as we have to define the roles in the deployment descriptor ; So even though we can create new roles using the SDK, we would have to redeploy the application with new deployment descriptor every time a new role is added. Apache Shiro on other hand uses a filter and all you need to specify is where to find the roles and permissions. You do not have to declare them in the deployment descriptor. Is there something of this sort available with fortress ?

Any thoughts on how to overcome this limitation ?

Regards,
--
Ramandeep Singh
http://ramannanda.blogspot.com
ramannanda9@gmail.com

Follow-Ups:

Re: Regarding JEE security with fortress
- From: Shawn McKinney <shawn.mckinney@jts.us>