← Back to team overview

dhis2-devs team mailing list archive

  1. dhis2-devs team
  2. Mailing list archive
  3. Message #01551

Re: DHIS2 - Struts2 - Spring Security2

  Thread PreviousDate PreviousThread Next 
Hi Knut,

Good point. There is no automatic assignment in security, one must be authenticated before accessing resources, but if you mean by assigning top org unit hierarchy to give access to subs, its possible (not implemented). Current implementation gives lots of possibilities to do that easily. 
Add blueprint please, nice comment.

murod




________________________________
From: Knut Staring <knutst@xxxxxxxxx>
To: Murodullo Latifov <murodlatifov@xxxxxxxxx>
Cc: DHIS 2 developers <dhis2-devs@xxxxxxxxxxxxxxxxxxx>; Sundeep Sahay <sundeep.sahay@xxxxxxxxx>; Jørn Braa <jornbraa@xxxxxxxxx>
Sent: Friday, August 14, 2009 2:28:00 PM
Subject: Re: [Dhis2-devs] DHIS2 - Struts2 - Spring Security2

Delighted to see progress on this.


One thing that I've encountered (and which should become a blueprint), is that you would like to automatically generate users who only have access to subtrees (at a certain level). 

The concrete example is that you have all the countries in the world (grouped into regions), and would like to have a user for each country who should not have access to data for any other contry. With 200 countries, you don't want to do this manually...

Knut


On Fri, Aug 14, 2009 at 10:51 AM, Murodullo Latifov <murodlatifov@xxxxxxxxx> wrote:

Hi people,
>
>>This is to announce alpha release of DHIS2 + Struts2 (s2) + Spring Security2 (ss2) integration. As s2 and ss2 are major and system wide change, they need intensive testing. Code is available at URL: https://code.launchpad.net/~dhis2-devs/dhis2/d2s2ss2 . S2 is most resent upgrade for webwork and ss2 is for acegy security, especially ss2 is used as is, without customization, each URL can have its own security credentials. From this standpoint we are free to define ROLES and set of roles (most common use cases into one role). All security concerns are now in one single XML file and easy to understand and exists independent of other frameworks in DHIS2. We can also use method level security, if method namings are appropriate using AOP. Please share your experiences, type of user roles you have, so we can adjust system to host that functionality.
>
>>regards,
>>murod
>
>
>
>
>
>>_______________________________________________
>>Mailing list: https://launchpad.net/~dhis2-devs
>>Post to     : dhis2-devs@xxxxxxxxxxxxxxxxxxx
>>Unsubscribe : https://launchpad.net/~dhis2-devs
>>More help   : https://help.launchpad.net/ListHelp
>


-- 
Cheers,
Knut Staring

References

  Thread PreviousDate PreviousThread Next