posted 20 years ago
We have to create an complex authorization architecture for a financial company which has several roles like SystemAdmin, Advisors, AdvisorAssistant and their clients, etc. Moreover Advisors can have their own domains where they can create roles specific to their domain and assign it their assistants or clients.
I guess the architecture would be High Level Role base authorization system which has low level Domain Based Architecture something like Windows NT.
I have looking into java.security and JAAS but would could find much help. Any pointers in this direction would be appreciated.
Thanks
Tomchi