dhis2-devs team mailing list archive

[Murodullo Latifov <murodlatifov@xxxxxxxxx>]

Hi Lars,

There is only one way - to add new roles and URLs into signle xml file. I think there is a way to spread security into many bean xmls (one could be using "parent" directive, not sure), but to have all in one point is better. If module is not used, its roles and URLs still can be there - with no effect. 

murod



----- Original Message ----
From: Lars Helge Øverland <larshelge@xxxxxxxxx>
To: Murodullo Latifov <murodlatifov@xxxxxxxxx>
Cc: DHIS 2 developers <dhis2-devs@xxxxxxxxxxxxxxxxxxx>
Sent: Friday, August 21, 2009 2:30:19 PM
Subject: Re: [Dhis2-devs] DHIS2 - Struts2 - Spring Security2

On Fri, Aug 14, 2009 at 10:51 AM, Murodullo
Latifov<murodlatifov@xxxxxxxxx> wrote:
> Hi people,
>
> This is to announce alpha release of DHIS2 + Struts2 (s2) + Spring Security2 (ss2) integration. As s2 and ss2 are major and system wide change, they need intensive testing. Code is available at URL: https://code.launchpad.net/~dhis2-devs/dhis2/d2s2ss2 . S2 is most resent upgrade for webwork and ss2 is for acegy security, especially ss2 is used as is, without customization, each URL can have its own security credentials. From this standpoint we are free to define ROLES and set of roles (most common use cases into one role). All security concerns are now in one single XML file and easy to understand and exists independent of other frameworks in DHIS2. We can also use method level security, if method namings are appropriate using AOP. Please share your experiences, type of user roles you have, so we can adjust system to host that functionality.
>
> regards,
> murod
>
>
>


A comment: One problem with having all security concerns in one single
XML file is modularization and local modules. How should the local
indian/vietnamese modules deal with this? How can we easily swap
modules in and out with this setup?


Lars