Authorization using JAAS RDBMS LoginModule from Swing Application
My goal is to design an Authentication and Authorization system based on settings stored in an RDBMS schema. These settings would control which users would have certain CRUD operations associated to Features or specific Functionality.
I also want to declaratively control the association between the CRUD settings and the Functionality from an Admin Process within the Swing application. I was hoping to use JAAS to handle the Authorization process based on the settings managed in the schema.
My questions are focuses on the Subject/Principal relationship mostly. How do I control which Principals a given Subject has access to based on(in this case) boolean settings for the CRUD operations assigned to each area of Functionality? Will the Subject.doAs or Subject.doAsPriviledged be useful?
I guess I need a good starting point after reading several tutorials at java.sun.com and articles elsewhere regarding JAAS using different LoginModules.
Any help is much appreciated!
Mark
