role 2 « Security « Spring Q&A





1. Anonymous bind required for roles    forum.springsource.org

Anonymous bind required for roles Kia ora I am using openldap to store user information for logging into a web app with acegisecurity providing authentication. I'm trying to secure my openldap ...

2. Acls & Roles    forum.springsource.org

Acls & Roles Hi, I have a business requirement where a user (i.e accountant) with a role (i.e ROLE_ACCOUNT) creates an account. At creation (ROLE_ACCOUNTs can create) I create a permission ...

3. User with multiple Roles    forum.springsource.org

Changing your model would be a good idea. Instead of having username, password and role in the same table, split this into two tables - one for the users and one ...

4. Roles coming back with ROLE_ prefix    forum.springsource.org

Roles coming back with ROLE_ prefix Hi My roles are being read from LDAP and having the 'ROLE_' prefix added on. Trouble is, my app needs to make decisions based on ...

5. failed to lazily initialize a collection of role    forum.springsource.org

Hi, I'm having trouble with getting collections out of the database, as far as I can understand it has something to do with the session being closed before my list is ...

6. User groups, hierarchical roles and a user management    forum.springsource.org

Hi, Were using Acegi 1.0.3 in many sites at work and we want to add some user groups, hierarchical roles and a user management functionalities. Yesterday I found that Spring Security ...

7. Role types    forum.springsource.org

So, is it best to just make up some new roles when checking for them or is it better to just validate against my model as the memberships to groups is ...

8. Best-practice for coordinating Roles & ACLs?    forum.springsource.org

Best-practice for coordinating Roles & ACLs? My application defines groups of users who each have access to a particular domain object. Each user may have multiple roles/permissions in the context of ...

9. Define custom roles    forum.springsource.org

Hi, I would like to port an existing JAAS secured application to Spring Security. All users are stored in a database and a lot of security roles exist. Now I have ...





10. ROLE_ANONYMOUS and ROLE_USER    forum.springsource.org

ROLE_ANONYMOUS and ROLE_USER Currently, we try not to restrict access to most of our application by using ROLE_ANONYMOUS. More specifically, many of our domain objects are accessible by the ROLE_ANONYMOUS user. ...

11. Failed to lazily initialize a collection of role    forum.springsource.org

Failed to lazily initialize a collection of role Hi I'm using Spring MVC + Hibernate. I have a one-to-many relation from Department class to Employee class. When I want to load ...

12. Access roles    forum.springsource.org

Hi all! I have a little issue here... How can I tell Spring Security to allow access to some pages for more than 1 ROLE... Seems stupid but I tried some ...

13. Spring Security Get All User Roles    forum.springsource.org

Spring Security Get All User Roles I am trying to display a link on a page that currently allows users who are not logged in (ROLE_ANONYMOUS) and users who are logged ...

14. Roles verses Rights design question    forum.springsource.org

Roles verses Rights design question We are debating using Spring Security for an admin tool. I followed the step by step guide and got a little sample app where I created ...

15. Changing roles at runtime    forum.springsource.org

Changing roles at runtime Hi all, I'm using spring-security 2.0.4. The users have several roles, for example {ROLE_A,ROLE_B} at a certain instant of time. I want change the roles to {ROLE_A,ROLE_C}, ...

16. Role based view    forum.springsource.org

Role based view Hello folks, I have a legacy web app that I am trying to upgrade to Spring MVC. The last hurdle I have to jump is getting the correct ...





17. Only ANONYMOUS ROLE assigned    forum.springsource.org

In my spring+Tapestry applicaiton i have custom AuthenticationProcessingFilter class. After successfull authentication as user is redirected to new page i get user roles as below: Authentication userAuthentication = SecurityContextHolder.getContext().getAuthenticati on(); GrantedAuthority[] ...

18. Acegi to 2 AD and no need of ROLE    forum.springsource.org

Mar 4th, 2009, 08:08 PM #1 wolverine88 View Profile View Forum Posts Private Message Junior Member Join Date Jan 2007 Posts 12 Acegi to 2 AD and no need of ROLE ...

19. Unknown role    forum.springsource.org

Unknown role Hello, first sorry for my english, I have a problem with Acegi. My XML acegi file has the same: ...

20. Active Dirctory for authentication Data base for roles    forum.springsource.org

Hi, Using Spring 2.0 is it possible to bind to active directory for authentication the pull the users roles from the database? How would the config for this look?

21. Roles hierarhy problem    forum.springsource.org

Roles hierarhy problem Hi i have security context and i need use hierarhy. For egzample (ROLE_A > ROLE_B) when i`m ROLE_A and my page is secure for ROLE_B i can view ...

22. Determine a role when needed, not at authentication point    forum.springsource.org

Determine a role when needed, not at authentication point I'm looking for a way I can examine a user when they make a particular request and grant them a role (preferably ...

23. programmaticly check is principial role against RoleHierarchyVoter voter    forum.springsource.org

i'm using RoleHierarchyVoter and would like to programmaticly check if an user role has rights to any give role after they log in. i'm working on some user managerment stuff and ...

24. Roles/Authorities List    forum.springsource.org

Hello All, I have just started implementing/configuring Spring Security 2.0.4. I have a question about the authorities i.e ROLE_USER, ROLE_ADMIN etc.Is there a predefined list of authorities in Spring Security ? ...

25. Spring security loads roles only once during server startup    forum.springsource.org

Hi Spring security enthusiasts! I m using Spring security 2.0.4 in my application. One of the requirement in our app is to assign urls to roles thru an admin page. Once ...

26. Display all roles of a user    forum.springsource.org

27. Changing roles at runtime    forum.springsource.org

I'm using Spring Security with annotations to protected the methods of my Spring BlazeDS Integration. It's their possibility to change the roles programmatically at runtime instead of defining the roles which ...

28. Service Layer Role    forum.springsource.org

Service Layer Role I have a quick question regarding best practises when creating the Service layer. A departing colleague insists that the Service layer is intended to only mirror and re-expose ...

29. ContextLoaderListener and j2ee role    forum.springsource.org

In our webapp I load the Spring context using the ContextLoaderListener ServletContextListener. Now, following a new requirement from security, I need to restrict access to jndi resources to a certain j2ee ...

30. FactoryBean and Roles    forum.springsource.org

Hi all, I use this to set the url roles: Code:

31. AuthenticationTrustResolverImpl and ROLE_ANONYMOUS    forum.springsource.org

[SOLVED] AuthenticationTrustResolverImpl and ROLE_ANONYMOUS Using Spring Security 2.0.6 -------------------------- A little background, I'm attempting to provide an automatic subscriber role (ROLE_SUBSCRIBER) to users who are coming from certain IP ranges. These ...

32. Spring Security without pre-defined roles. Is it Possible ?    forum.springsource.org

Spring Security without pre-defined roles. Is it Possible ? Hello, I am new to spring and spring security and evaluating spring, ibatis, blazeDS and flex stack for a RIA. The application ...

33. How to tell if current user has a specific role?    forum.springsource.org

How to tell if current user has a specific role? What's the best way to tell if the current logged in user has a specific role? Can this code be relied ...

34. Switching the user's "current" authority, in a multiple role per person scenario.    forum.springsource.org

Switching the user's "current" authority, in a multiple role per person scenario. Hello, Application Details Icefaces 1.8 Spring security Hibernate * note : spring is not used else where in the ...

35. ROLE wildcards?    forum.springsource.org

Can wildcards be used in the access parameter if intercept-url? For example something like: Code: I am using Spring Security 2.0.4. Explanation of why I would like this: ...

36. SwitchUserFilter and user's current role    forum.springsource.org

SwitchUserFilter and user's current role Hello, I am working on an app where a user might have as many as three roles. The user thus needs to be able to select ...

37. Authenticate with authorities/roles    forum.springsource.org

Authenticate with authorities/roles Hello everyone... I have a new project where the user must authenticate with three parameters, the usual username and password, plus an authority/role... For example: A user named ...

38. Default authenticated role?    forum.springsource.org

Hi. I want to protect the access to a certain URL regardless of the user's roles, I only need them to be authenticated. Does Spring Security has a way to specify ...

39. Only need to control roles    forum.springsource.org

Hi, My app receives from url two params: role = ROLE org = Organism for which the actual user has privileges I dont know how to manage this with springSecurity. It ...

40. change role    forum.springsource.org

The easy way: change your authorities-by-username-query to Code: SELECT username, 'ROLE_' || authority FROM users WHERE username=? (I think that is the notation for sting concatenation in SQL) The full blown ...

41. Adding more roles and folders    forum.springsource.org

Adding more roles and folders Hi All, I am new to Spring Security and basically I have 3 questions: 1. I have created an application using Spring Security using examples on ...

42. ManyToMany, Create new user and add him ROLE (Help please)    forum.springsource.org

May 27th, 2010, 01:22 PM #1 Andriy View Profile View Forum Posts Private Message Junior Member Join Date May 2010 Posts 10 ManyToMany, Create new user and add him ROLE (Help ...

43. roles    forum.springsource.org

44. Customized Role    forum.springsource.org

HI All, I am trying to set authorities where in i need to define custom roles like user and admin. i dont want to use ROLE_ prefix. I tried to use ...

45. Authenticate Role    forum.springsource.org

Authenticate Role I'm using LDAP authentication and want only allow members of a certain group or that contain a certain role to be able to login. I see the following in ...

46. dinamic role    forum.springsource.org

Hello guys, in my web application I have some page I would to show to user just in "read" mode when an other user locks the page in "write" mode. I ...

47. Failed to lazily initialize a collection of role : LazyInitializationException    forum.springsource.org

Failed to lazily initialize a collection of role : LazyInitializationException Hi, I know this has been answered in lot of other posts, and I have tried using the OpenSessionInViewFilter but still ...

48. Roles functionality    forum.springsource.org

I have user has 3 roles ROLE_ADMINISTRATOR , ROLE_MANAGER,ROLE_STAFF in authority table. when user login into the app how spring deals with roles?. I mean is the spring treated him as ...

49. User Roles authentication    forum.springsource.org

Hi All, I am applying spring security 2.0.5 to my application. Here is my security-config.xml Code: I am loading user roles in filter and ...

50. Customizing Spring user - roles for implementing product customization.    forum.springsource.org

Customizing Spring user - roles for implementing product customization. Hello, I have worked with a few modules on the Spring Framework (Spring Web MVC, IOC/DI, Schedulers etc) earlier. Now I have ...

51. Custom role in spring security    java-forums.org