...
Restricting all methods in a class
Allow only logged in users in the "committer" role to invoke 'svnCommit', 'svnCheckout' and 'submitPatch'.
Code Block |
---|
@Stateless
@DeclareRoles({"committer"})
@RolesAllowed({"committer"})
public class OpenSourceProjectBean implements Project {
public String svnCommit(String s) {
return s;
}
public String svnCheckout(String s) {
return s;
}
public String submitPatch(String s) {
return s;
}
}
|
Mixing class and method level restrictions
Allow only logged in users in the "committer" role to invoke 'svnCommit', 'svnCheckout'
Allow only logged in users in the "contributor" role to invoke 'submitPatch'. These rules do not stack, so marking this method overrides the default of "committers".
Code Block |
---|
@Stateless @DeclareRoles({"committer", "contributor"}) @RolesAllowed({"committer"}) public class OpenSourceProjectBean implements Project { public String svnCommit(String s) { return s; } public String svnCheckout(String s) { return s; } @RolesAllowed({"contributor"}) public String submitPatch(String s) { return s; } } |
PermitAll
Allow only logged in users in the "committer" role to invoke 'svnCommit'.
Allow only logged in users in the "contributor" role to invoke 'submitPatch'.
Allow anyone logged in or not to invoke 'svnCheckout'.
Code Block |
---|
@Stateless @DeclareRoles({"committer", "contributor"}) @RolesAllowed({"committer"}) public class OpenSourceProjectBean implements Project { public String svnCommit(String s) { return s; } @PermitAll public String svnCheckout(String s) { return s; } @RolesAllowed({"contributor"}) public String submitPatch(String s) { return s; } } |
...