Not exposing DAO's to web layer?

**jbriant** · Feb 26th, 2009, 01:46 PM

I've got a bunch of services and dao's in one project jar, and it contains an applicationContext that is mixed with the war project. I guess this means that the beans in the webapp (or their programmers) could just ignore the service beans and start futzing with the dao's directly.

How do I stop this? How do I expose the service beans to the webapp, but not the DAOs. Note: some daos are known by multiple services , so I can't just make them anonymous in the service definition.

Is there a way to enforce that a bean in that xml file is *only* used in that xml file?

Jamie

**Developer Dude** · Feb 27th, 2009, 04:59 PM

Is the 'webapp' a separate application from the app running the DAOs?

I am asking because it occurred to me that maybe Spring Security could help you control what (usually who) invokes the methods on the DAOs.

Of course, if someone has physical access, not to mention access to the code, there is usually a way around such protections.

Alternatively, you can slap the programmers about the head and shoulders with a two by four.

**jbriant** · Feb 27th, 2009, 08:43 PM

No. Its a different JAR, but ends up in the same war. I'm thinking this dm-server might be the answer. But that's only because I don't know of a better way, and it seems like using a sledge-hammer.

**mirror303** · Feb 28th, 2009, 12:35 PM

I remember seeing a presentation by Alef Arendsen where he was using some Aspects to be able to do exactly what you're describing. It would give programmers compile-time errors, so that's pretty cool/

I don't remember exactly how he achieved it but I suppose this could send you in a possible direction...

**jbriant** · Feb 28th, 2009, 01:02 PM

Thanks! Googling Alef Arendsen turned up tons of things I didn't know I didn't know. :-) Didn't find exactly what you describe, but this sounds similar and very interesting:

http://blog.arendsen.net/index.php/2...de-and-design/

**petervds** · Mar 2nd, 2009, 06:24 AM

Maybe what I propose is a naive way, but I would declare the dao layer and service layer in the same package and declare the dao to have package level access. The web layer code would be in a different package. This would make sure you can't even declare a dao in your web layer. The service layer is public, so it can be declared in the web layer.

I think there was a presentation by Eberhard Wolff at SpringOne in Antwerp last year where the access restriction was also discussed. I don't recall all the details, but since the conference was all about S2AP (DM server), I can imagine it was in that context as well.

Edit: the presentation I referred to can be found at Parleys.com:http://www.parleys.com/display/PARLE...rchitec tures

**jbriant** · Mar 2nd, 2009, 12:17 PM

Thanks. The more I read the more I think the modularisation of the DM server is what I need. Package level security doesn't help when someone else can just create the same package in their jar (unless I'm missing something). Forcing everything through proxied interfaces seems the way to go, and DM just makes that guaranteed.

**mirror303** · Mar 2nd, 2009, 05:20 PM

Originally Posted by petervds

I think there was a presentation by Eberhard Wolff at SpringOne in Antwerp last year where the access restriction was also discussed. I don't recall all the details, but since the conference was all about S2AP (DM server), I can imagine it was in that context as well.

Edit: the presentation I referred to can be found at Parleys.com:http://www.parleys.com/display/PARLE...rchitec tures

I was at that presentation

It wasn't so much focused on s2ap but more on the theoretics of what constitutes a module. Visibility of of the module was one of the key aspects. And it seems indeed that class visibillity control is what Jamie is looking for.

Obviousyly, s2ap/osgi is a great option but it may still be a bit overkill if all you want to achieve is making sure that other programmers don't do stupid stuff

Maybe code-reviews are a better option...

**kmbarlow** · Mar 3rd, 2009, 02:42 PM

Can't you just lock the jar file and declare a public interface and implement it to provide access to your service as a jar? The other alternative seems to me to be one of two options: distribute the jar (modules) and just give a verbal "use the interface only" or create an actual web service... (overkill)

Keith

**jbriant** · Mar 3rd, 2009, 02:47 PM

Ok, how do I lock a jar file?

Thread: Not exposing DAO's to web layer?

Thread Tools

Display

Not exposing DAO's to web layer?

Posting Permissions