[DELTASPIKE-126] Include SecurityParameterBinding support for SecurityBindingType feature - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.2-incubating
Component/s: Security-Module
Labels:
None

Description

Allows access to the business method invocation arguments in the bound security interceptor method.

    @SecurityBindingType
    public @interface ProjectAdmin
    {
        // empty
    }

    @SecurityParameterBinding
    public @interface ProjectBinding
    {
        // empty
    }

    @ProjectAdmin
    public void updateName(@ProjectBinding Project p, String name)
    {
       // save project name
    }

    @Secures
    @ProjectAdmin
    public boolean isProjectAdmin(@ProjectBinding Project p, Identity identity)
    {
       if(identity.hasRole("project" + p.getId() + "_admin")
       {
           ...
       }
    }

Note that the @Project annotation is not a CDI bean Qualifier / Stereotype annotation, it is a method parameter security binding annotation that tells Security to use the value of the Project passed to the method call in the security binding check itself.

Attachments

Issue Links

incorporates

DELTASPIKE-143 documentation for SecurityParameterBinding

Closed

is related to

DELTASPIKE-69 @SecurityBindingType

Closed

Sub-Tasks

documentation for SecurityParameterBinding

Closed

Lincoln Baxter III

Activity

People

Assignee:: Lincoln Baxter III

Reporter:: Lincoln Baxter III

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 20/Mar/12 05:11

Updated:: 22/Apr/12 15:23

Resolved:: 13/Apr/12 22:39