directory-fortress mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Shawn McKinney <>
Subject Re: New RoleConstraint Types for ABAC
Date Thu, 23 Aug 2018 15:42:01 GMT

> On Aug 23, 2018, at 10:22 AM, Yudhi Karunia Surtan <> wrote:
> How about the compability with previous version?
> If it is not compatible, is there a way for migrate it?
> Thanks.

Hello Yudhi,

By compatibility, are you asking about the new functionality (generic abac), i.e. what was
just added?  Or the old, from back a few years ago (pasets)

For the old, yes, it passes all existing tests.  

For the new - yes as well.  Here’s we’ll add a new constraint validator.  

Here’s what we had last release:"""""”

For next release we could deprecate #5, and add:”

That way if you have time to move into the new data format.  Which will use these apis to

    RoleConstraint addRoleConstraint( UserRole uRole, RoleConstraint roleConstraint )
    	throws SecurityException;
    void removeRoleConstraint( UserRole uRole, RoleConstraint roleConstraint )
    	throws SecurityException;

Instead of property values.  Are you using these?  Thanks for brining this up.


View raw message