Hi chuck,
Thanks .
But when i change the acl in the DD i have to redeploy it??
Cant i do without it.
Can't i add ACLs dynamically.??
Also i use security info from database only if i use rdbmsrealm , what if i
use the defaultrealm of weblogic.
If i create a user in the database ( so that i could use access rights
defined in the database ), define rights for him , so that i would not worry
about checking for access rights ( rather leave it to the database to check
it)
Cant i gain access to properties file and change it dynamically/or create a
connection pool using the newly added user . and use that pool for the beans
.
Also is it necessary to restart the server when i cahnge the properties file
. cant i somehow tell the server to update itself as per the changes in
properties file.
Looking forward for your help,
parikshit
-----Original Message-----
From: Chuck Zheng [SMTP:[EMAIL PROTECTED]]
Sent: Thursday, October 21, 1999 2:19 PM
To: [EMAIL PROTECTED]
Subject: Re: Security about WebLogic EJB
WebLogic's RdbmsRealm get security info from DB not its properties
file.
It also have in-memory cache to reduce database hit.
But it currently lacks refresh capability although that is not too
hard to add
(in a non-clustered environment). ACL for EJB is not controlled by
the Realm
but by Deployment Descriptor AccessControlEntries. You can change
it and
redeploy without dropping the server.
cheers
chuck
Parikshit Pol wrote:
> Hi,
> I have a couple of queries regarding weblogic's security.
> 1. Can we add users dynamically .And also can i modify my
access
> control descriptors and ACLs (without redeploying and restarting
the server
> ) so that various permissions can be given to the users just added
.
> 2. Also suppose if i add an user in the database , and i want
to define
> access rights for the user for a particular table. Supposing i
would be able
> to do so using jdbc , can i create a dynamic connection pool using
that user
> and use that pool for my beans to access the database .
>
> R> regarding the adding , deletion and moving the users,
there is
> > problem.
> > Weblogic allows to define roles, users and permisssions
in the
> weblogic
> > properties file, and acls can be define in deployment
descripter.
> > On changing the properties file, ie users or roles, one
has to
> restart the
> server.Also i ve to change the properties file manually,
> I may not be knowing the other way, if you can please let
me know.
>
> Thanks and regards,
>
> Parikshit Pol
> KPIT Systems. Ltd.
>
>
===========================================================================
> To unsubscribe, send email to [EMAIL PROTECTED] and include in
the body
> of the message "signoff EJB-INTEREST". For general help, send
email to
> [EMAIL PROTECTED] and include in the body of the message
"help".
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in
the body
of the message "signoff EJB-INTEREST". For general help, send email
to
[EMAIL PROTECTED] and include in the body of the message "help".
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff EJB-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
