java - Could someone explain Spring Security BasePermission.Create? -

-

i working on project involves spring security acl , came across create permission basepermission.create. please explain how supposed work or allows do?

it understanding each object has acl, , each acl has many ace's, , each ace has sid , permission. how can grant permission on object create it, if must created in order attach acl it?

spring security grants permissions on domain objects indirectly via objectidentity interface.

as mention, far usual case create or obtain domain object first, , construct objectidentityimpl domain object:

mydomainobject secured = new mydomainobject(); objectidentity securedidentity = new objectidentityimpl(secured);

you use objectidentity instance retrieve acl using spring security framework.

however, not way use object identity. can pass reference objectidentity not actual business object, has means of identifying it, if created.

for example, imagine wanted secure files. create objectitentity java.io.file instance being secured. file object in identity reference file - no actual file - file may not exist, yet have objectidentity can reason security , fetch acls for.

this pattern can applied kind of domain object. create domainobjectprototype implementation describes domain object in terms of domain features needed secure it, doesn't need reference domain object. can think of details needed service create domain object.

ps: let me confess i've never used spring security, design pattern seems pretty clear me after looking @ example.

edit: i've updated make clearer - it's not necessary create implementations of objectidentity originaly wrote.


Comments

Post a Comment

Popular posts from this blog

javascript - Enclosure Memory Copies -

-
function myclass() { //lots , lots of vars , code here. this.bar = function() { //do numerous enclosed myclass vars } this.foo = function() { alert('hello'); //don't enclosed variables. } } each instance of myclass gets own copy of bar , foo, why prototyped methods use less memory. however, know more memory use of inner methods. it seems obvious me (1) below must true. agree? not distinct myclass instances have own distinct copies of bar, must have own distinct copies of myclass enclosure. (or else how bar method keep myclass variables straight on per instance basis?) now (2) question i'm after. since inner foo method doesn't use in myclass enclosure natural qustion is: javascript smart enough not keep myclass enclosure in memory use of foo? this depend entirely on implementation not language. naive implementations keep far more around others. answer true e.g. v8 (chrome's js engine) may not true spider...
Read more

php - Replacing tags in braces, even nested tags, with regex -

-
example preg_replace('/\{[a-za-z.,\(\)0-9]+\}/', 'replaced', 'lorem ipsum dolor sit {tag1({tag2()})}, consectetur adipiscing elit.'); the result: lorem ipsum dolor sit {tag1(replaced)}, consectetur adipiscing elit. question as can see "tag2" has been replaced, want replace "tag1" know how can this? (in cases might this: {tag1({tag2({tag3()})})}) , on.) btw using preg_replace_callback, easier show preg_replace here site can test code: http://www.spaweditor.com/scripts/regex/index.php you need add curly braces character set. here's pattern used: /\{[a-za-z.,\(\)\{\}0-9]+\}/ and here result: "lorem ipsum dolor sit replaced, consectetur adipiscing elit."
Read more