Home Ask Question Answer Questions My Q&A Categories Ask the experts Expert leader board

How can I procedurally control information access in an Enterprise JavaBean (EJBTM) technology-enabled component?

Asked in Computers & Technology at 2:24 AM on February 01, 2008

Tags: bca

! This question is closed

Report abuse

Surand
Profile | Q&A

Rate this : 0 0

Latest Answers(1)

Sort by Latest | Oldest | Top-rated

Usually, it's preferable to set up access control by declaratively defining method permissions in the enterprise bean's deployment descriptor. Such container-managed security makes an enterprise bean more flexible, since it isn't tied to the security roles defined by a particular application. Security holes due to programming errors is also less likely with container-managed security, since the security mechanism is implemented by the container.
Sometimes, though, procedural access control is necessary, for finer-grained or application-specific conditions. Enterprise beans can manage their own security by using method EJBContext.isCallerInRole(). Bean-managed security is useful in cases where finer, procedural access control is needed. Only enterprise bean methods for which the container has a client security context may use isCallerInRole(). (For more on bean-managed security, see http://java.sun.com/j2ee/j2sdkee/te chdocs/guides/ejb/html/Security5.ht ml.)
A security role is a named grouping of information resource access permissions, defined for an application. Associating a principal with a role confers the defined access permissions to that prinicpal as long as the principal is "in" the role. For example, an application may define a security role called guest, which provides read-only access to a small subset of all of the application's resources. Any principal in the guest role would then have read-only access to only those few resources.
An enterprise bean developer defines all security role names used in the enterprise bean code. Each security role name is defined in a deployment descriptor <security-role-ref> element, and is associated (via <role-link) with a security role defined elsewhere in the descriptor.
Security roles are defined with the application deployment descriptor element <role-name>. For example, the following enterprise bean deployment descriptor fragment defines a role name root, which is a reference (or <role-link>) to role super-user.
....
<enterprise-beans>
...
<entity>
<ejb-name>AnEntityBean</ejb-name>
<ejb-class>AnEntityBean.class</ejb- class>
...
<security-role-ref>
<role-name>root</role-name>
<role-link>super-user</role-link>
</security-role-ref>
...
</entity>
</enterprise-beans>
.....

Class MyEntityBean uses the symbolic name "root" to check permissions.
Elsewhere in the deployment descriptor, the security role super-user is defined as:
....
<assembly-descriptor>
<security-role>
<description>This is the security-role for the security role
"root" referenced in the AnEntityBean class</description>
<role-name>super-user</role-name>
</security-role>
</assembly-descri ptor>
....

The descriptor defines a role name and associates it with a role link because different enterprise beans might differ in the name used to refer to the same application-specific cluster of permissions. For example, maybe some other bean needs to access the security-role super-user, but uses the string racine (instead of root) to identify the role. A <security-role-ref> could associate that bean's racine reference to the security role super-user.
A user or principal may belong to multiple roles simultaneously, and enjoys the union set of permissions those roles confer.

Answered by Nz , an ibibo Master, at 2:40 AM on February 01, 2008

Report Abuse | Rate this : 0 0

Nz
Profile | Q&A

Related Search

any university giving lateral entry to mca after m.sc in regular basis......??

well, The best University / institute for doing MCA after BCA Integrated is IGNOU.Although IGNOU course is correnpondce.It is one of the best in India.I would suggest you to for IGNOU.It has the best BCA correspondence course. After completing BCA you can go for MCA too. IGNOU has one of the best syllabus for BCA an MCA and it is reputed too.IGNOU has more 7,50,000 students with extremely varied

Posted in Computers & Technology by Arun Singla at 8:42 PM on July 07, 2008

i m doing bca n want to do mba after it i just wanna knw is it good to go for it?

/she progress in life.That is a very good decision....ya its good 4 u bcz in these days it is also one of the good field in mba.im one of the ex of this ....i think after doing bca u must try for mca....no if you pursue bca then you better go for MCA ..coz if you going to scenero of now world computer hikes higher then managment ..so better you do MCA after completing your BCA..regards chirag...You can do Mba

Posted in Self Development by gargi singh at 7:01 PM on March 14, 2008

Tags career

plz tell me is there any job after BCA???

hello kuldeep yes u can enter as fresher in many IT comapanies as programmer or CAD engineer else !...You can get job after BCA. If u are planning for a job after BCA then I suggest you that feed your for that language in which you have most qualified. Dont thought about IGNOU. BCA is BCAAfter ASP or PHP, must try for JAVAI hope your mind is now clear about your questions....well, If you are planning for a job

Posted in Computers & Technology by Kuldeep at 1:15 AM on June 05, 2008

Tags job for bca

i have to do eng.through distance learning what should i do?

well;Well, the best university for BCA Bechlor in Computer application and MCA is IGNOU Indira Gandhi National Open University and Manipal.I would suggest you to for IGNOU.It has the best BCA correspondence course. After completing BCA you can go for MCA too.IGNOU has one of the best syllabus for BCA an MCA and it is reputed too.The University has an efficient and effective networking of 46 Regional

Posted in Computers & Technology by akash rajput at 1:12 AM on June 04, 2008

Tags mechanical engineering

Hi..im a 12th passed out student...want to do BCA and den MCA will dat benefit me in future...is software engg better then this???? please advice........

well shalaka do MCA bcoz it is good for ur future rather than BCA why bcoz im also doing MCA final year.it help u alot... no second thought go for MCA.........Well Shakala , the future is pretty bright and good for BCA and MCA professionals.Software Engineers are most sought after now a days.Well , without any hesitation go for BCA after 12th.The good news for you is that Software / IT industry

Posted in Computers & Technology by Shalaka at 8:30 PM on June 15, 2008

Tags passed, benefit, software, engg, this, please

More such questions »

Editor's Pick

I think my wife fakes an orgasm a lot and some time I cant make out whether it is real or is it fake orgasm. Is there a way to find out ?

Asked by: kevin joy in Sexual Health