|
hi!
can someone please help me out
with this confusion or
atleast tell me wher can
i post this question
i need a small
clarification regarding JAAS
my
understanding of jaas is
i)Authentication of a user
can be done by implementing the
LoginModule
ii)Authenticated users have permissions specified in the policy
file
(policy
file used in java security).
in my application
i want to give permissions to a user to do an
action only if he satisfies
certain conditions(might depend on the context).
for example ::allow a user to
acces his account only if he had paid the
subscription fee for the current
month..
can i do that using JAAS
framework???
what i want to do is, each
time before a user perfoms an
action i want to check if he satisfies certain
conditions to perform that
action so using the call back handler
and my implementation of
login module i will pass the required
information
to my PermissionCheckHandler which will be
called from within the
LoginModule Implementation.
is such a thing possible ????
any suggestion will be greatly
appreciated
thanks in advance
harish |
