Spring Security ACL层次结构
[英]Spring Security ACL Heirarchy
问题描述
I have worked with Spring Security Role based security but am new to Spring Security ACL. 
我曾经使用过基于Spring Security Role的安全性,但是对Spring Security ACL还是陌生的。 I need to use Spring security to implement ACL on object hierarchies. 我需要使用Spring安全性在对象层次结构上实现ACL。 Like I have a company which has different branches, there are multiple departments in each branch and these departments can have multiple sections. 就像我的公司有不同的分支机构一样,每个分支机构中都有多个部门,这些部门可以有多个部门。
Now company admin should have access to all the data of that company. 现在,公司管理员应该可以访问该公司的所有数据。 There will be branch admins, department admins and section admins. 将有分公司管理员,部门管理员和部门管理员。 A branch admin will have access to data of each department and subsequent sections. 分支机构管理员将有权访问每个部门和后续部门的数据。 There might be a 'branches' admin too which will have access to multiple branches. 也可能有一个“分支机构”管理员,可以访问多个分支机构。
My application stack is Spring 4, Spring security 4, Hibernate 5 and JSF2 with Primefaces 5.3. 我的应用程序堆栈是Spring 4,Spring security 4,Hibernate 5和带有Primefaces 5.3的JSF2。
I couldn't search an example and came up with the idea what changes would this impose on my DB design and how I should configure Spring Security ACL. 我无法搜索示例,并且想到了这将对我的数据库设计带来哪些变化以及如何配置Spring Security ACL。 Please refer to an example or guide. 请参考示例或指南。
1 个解决方案
解决方案1
0 2016-05-31 12:35:20
We can add role for each department and section ,by using role hierarchy db design as mentioned below you can solve the problem by using the scenario as explained in this linked 我们可以为每个部门和部门添加角色,通过使用下面提到的角色层次结构db设计,您可以使用此链接中说明的方案来解决问题
How to implement ACL spring security to share an object among group of users without creating many entries in ACL_Entry table 如何实现ACL Spring Security以在用户组之间共享对象而不在ACL_Entry表中创建很多条目
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.