Changing user role mapping post login?

**davout** · Dec 14th, 2012, 06:20 AM

A spring security newbie question...

I am designing a new web app that plans to use Spring Security for log-in and user to functional role mapping.

The design of this app includes a 'workspace' concept, where a user is able to switch focus between different workspaces as part of the web app GUI. The challenge is that a user's role could vary between different workspaces. For example, a user could be have an administrator role for 'workspace A' and have a simple 'user' role in 'workspace B'.

With Spring Security is it possible to change a user's role settings post log-in? If so, how?

**davout** · Dec 14th, 2012, 08:16 AM

The other possibility is to have role checking functionality that can accept two input parameters - i.e. workspace and role name - rather than just role name.

Thought?

**objectamit** · Dec 20th, 2012, 06:29 AM

I think you should try using spring security ACL and manage ACLs for your workspace objects. The reference docs as well as the ACL sample explains the same in detail

Thread: Changing user role mapping post login?

Thread Tools

Display

Changing user role mapping post login?

Posting Permissions