Uploaded image for project: 'Location Based Access Control'
  1. Location Based Access Control
  2. LBAC-15

Add restrictions to the UserService methods to restrict them by the location

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Should
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 0.1.0
    • Labels:
    • Complexity:
      Low

      Description

      Location Based access control method should add the restrictions to these following methods from the UserService class which are directly getting the User object from the DAO.

      1. getUsers()
      2. getAllUsers()
      3. getUser()
      4. getUserByUuid()
      5. getUserByUsername()
      6. getUserByName()
      7. getUsersByPerson()

      It can restrict by the locations while directly accessing theĀ users for some other use cases.

      Apart from this, It should have a method to restrict person object of the users since we haven't assigned the person attribute for those persons belongs to the users.

      Dev Notes

      Need to add an AOP Advise forĀ those methods to restrict by the locations.

      If the person doesn't have the location person attribute, then get the list of the users who belong to that person, and check for the location access among them.

        Gliffy Diagrams

          Attachments

            Attachments-Category-Modification

              Activity

                People

                • Assignee:
                  suthagar23 Suthagar Kailayapathy
                  Reporter:
                  suthagar23 Suthagar Kailayapathy
                  Designated Committer:
                  Suthagar Kailayapathy
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  2 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: