Data-related security Implementation

Posted by devdude on Stack Overflow See other posts from Stack Overflow or by devdude
Published on 2009-12-09T05:12:34Z Indexed on 2010/05/03 1:08 UTC
Read the original article Hit count: 362

Filed under:
|
|

Using Shiro we have a great security framework embedded in our enterprise application running on GF. You define users, roles, permissions and we can control at any fine-grain level if a user can access the application, a certain page or even click a specific button.

Is there a recipe or pattern, that allows on top of that, to restrict a user from seeing certain data ?

Sample: You have a customer table for 3 factories (part of one company). An admin user can see all customer records, but the user at the local factory must not see any customer data of other factories (for whatever reason).

Te security feature should be part of the role definition.

Thanks for any input and ideas

© Stack Overflow or respective owner

Related posts about security

Related posts about database