I've a webapp angular with Spring Boot as server which implements Spring Security. In my scenario I need three roles admin user, trusted user, user. If I'm admin I can have one or more trusted as child and I need to take control of web app with one of my child credentials. Idem If I'm trusted I can have one or more user and so. There is any way to apply a sort of pattern to govern this scenario?
Asked
Active
Viewed 325 times
1
-
What exactly do you mean "you can have one or more trusted/user". What does it mean for one user to have another? – CollinD Jul 14 '16 at 15:28
-
Like father and one or more children – Claudio Pomo Jul 14 '16 at 15:43
1 Answers
1
I think that you're looking for user impersonation. You can see here an article about it.
http://www.disasterarea.co.uk/blog/user-impersonation-with-spring-security/
or in this question
-
I'm using oauth2 approach, there is any possible to use user impersonation with this? – Claudio Pomo Jul 30 '16 at 07:15
-
I haven't used oauth yet. But I think it's possible. You can ask another question abot oauth and user impersonation. And add the code you have to the question. – reos Jul 31 '16 at 16:40