- Let's create a list of roles for our application:
public class Roles { public static final String ADMIN = "admin"; public static final String USER = "user";}
- Then we create a list of tasks that could be performed by only one of the roles, one task that everyone can do, and another task that no one can do:
@Statefulpublic class UserBean { @RolesAllowed({Roles.ADMIN}) public void adminOperation(){ System.out.println("adminOperation executed"); } @RolesAllowed({Roles.USER}) public void userOperation(){ System.out.println("userOperation executed"); } @PermitAll public void everyoneCanDo(){ System.out.println("everyoneCanDo executed"); } @DenyAll public void noneCanDo(){ System.out.println("noneCanDo executed"); } }
- Now ...
