I am working on a method of applying row level security to a spring data application transparently. I would like to use hibernate filters to accomplish this, but I am unable to get the aop pointcuts to intercept where spring data opens the session. What is the appropriate pointcut needed or is there a better approach to row level security that I can explore?
Ps: I need the security filtering to occur before the query to not affect paging and sorting of the data returned.
Thanks
I think the better approach would be to use Spring Security ACL. It's a little bit complex when you implement it for the first time, but it's the right way to do this.
Check out: http://grzegorzborkowski.blogspot.hr/2008/10/spring-security-acl-very-basic-tutorial.html
For database filtering you will have to write Specifications and use them in criteria queries.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.