Results 1 to 2 of 2

Thread: More secure authentication for certain roles

  1. Mar 6th, 2012, 08:59 AM #1
    mschipperheyn
    mschipperheyn is offline Senior Member
    Join Date
    Jan 2008
    Posts
    248

    Default More secure authentication for certain roles

    Hi,

    I'd like to know if it's possible to configure a more advanced security requirement for certain roles such as admin roles?
    E.g. if a user logs in with an admin role, in stead of just username/password, there's also an ip-number check or certificate check?

    Kind regards,
    Marc
    Reply With Quote Reply With Quote
  2. Mar 6th, 2012, 09:53 AM #2
    thobson
    thobson is offline Member
    Join Date
    Nov 2006
    Location
    London, UK and Tallinn, Estonia
    Posts
    55

    Default

    Certainly possible, one option is to use a custom AccessDecisionVoter that check the required role (ConfigAttribute) and then performs additional checks. You would then pass your AccessDecisionVoter into an AccessDecisionManager

    Finally you would wire up your AccessDecisionManager:

    <http access-decision-manager-ref="myAccessDecisionManagerBean">
    ...
    </http>

    I hope this helps, let me know if you need any more pointers
    Toby Hobson
    toby.hobson@cloudseal.com
    Single Sign on for Java - www.cloudseal.com
    Follow me on Twitter: tobyhobson
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules