Results 1 to 2 of 2

Thread: Batch update for domain objects -- is it possible?

  1. Apr 25th, 2005, 11:58 PM #1
    nkarasev
    nkarasev is offline Junior Member
    Join Date
    Apr 2005
    Posts
    6

    Default Batch update for domain objects -- is it possible?

    We need to be able to update a series of objects (SQL records)
    in one (or few) single call (or in one or few equivalent operations using
    database layers like Hibernate or other java code).

    Without Acegi this would look like this (pseudo SQL here):
    UPDATE OBJECT_NAME
    SET FIELD_NAME = FIELD_NAME + SomeOtherValueToAdd
    WHERE OWNERID = SomeGivenOwnerId

    (Using things like Hibernate means executing some sort of HQL
    or some java method or whatever.)

    Q: How do we restrict access to those objects that are not updateable
    by current user/role? (using ACL permissions)

    It is OK to call a few SQLs or java methods, but what we do not quite
    anticipate is having to call a great number of SQL/java calls to find out
    permissions for every single object in the database (table)
    especially if we use permissions inheritance
    (object inherits permissions from its parents objects using ACL inheritance
    approach) and then update every single object one-by-one.

    I understand we have an option to join ACL tables with domain object table
    thus having natural SQL-based filter.
    But we really want to have parent-child inheritance using ACL permissions.

    Thanks.
    Nikolay.
    :?:
  2. Apr 29th, 2005, 05:39 PM #2
    Ben Alex
    Ben Alex is offline Senior Member Spring Team
    Join Date
    Aug 2004
    Location
    Sydney, Australia
    Posts
    2,768

    Default

    I am not sure how we could really accomodate this. If you would like ACL permissions to remain in a parent-child ACL table, it's going to be hard querying that for permissions during bulk SQL UPDATE statements.

    I'd try to find another way. Some options include:

    - Limiting the update to command to only being callable by an administrator role, thus implying permission to change all objects.

    - Using stored procedures and triggers on the ACL table to maintain an 'effective ACL' table. I actually did this for a content management system once and it worked well. But you'll need lots of SQL. The advantage is you can use subselects in other SQL queries to retrieve effective ACLs for each record in real time. I would be careful to ensure it scales adequately though, as it would be a problem if you were doing very large numbers of operations.

    - Use the fact the ACL information can be placed inside the domain object itself. So if say your domain object had a single "owner" column, use the BasicAclProvider.restrictSupportToClass property. This will allow you to have a separate provider-DAO setup for your doman object from the general-purpose ACL provider. See http://forum.springframework.org/viewtopic.php?t=4639

    - Don't use ACLs

    - Don't use bulk updates

    Good luck!
« Previous Thread | Next Thread »

Similar Threads

  1. batch update error using Hibernate 3
    By sbmahs in forum Data
    Replies: 1
    Last Post: Jun 17th, 2006, 01:02 PM
  2. Domain Models and Validation – An Architectural Discussion
    By leask in forum Swing
    Replies: 2
    Last Post: Oct 10th, 2005, 05:12 PM
  3. SqlMapClientDaoSupport batch update problem (iBatis).
    By ram_2000 in forum Data
    Replies: 1
    Last Post: Jul 3rd, 2005, 04:08 PM
  4. Batch update
    By newreaders in forum Data
    Replies: 2
    Last Post: Nov 27th, 2004, 08:33 AM
  5. Force commit in batch update
    By mingshun in forum Data
    Replies: 3
    Last Post: Oct 24th, 2004, 07:09 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules