Book Image

Mastering jBPM6

By : Simone Fiorini, Arun V Gopalakrishnan
Book Image

Mastering jBPM6

By: Simone Fiorini, Arun V Gopalakrishnan

Overview of this book

Table of Contents (18 chapters)
Mastering jBPM6
About the Authors
About the Reviewers

jBPM identity management

In Chapter 4, Operation Management, we saw how the KIE workbench features JAAS-based user authentication and RBAC for the UI functionalities by means of the and files.

The jBPM engine does not have built-in authentication or fine-grained authorization functionalities on process creation or task operations. TaskService and the human task management of users and groups with respect to task operations are delegated to a custom implementation of the UserGroupCallback interface. Here, the developer is able to implement his/her own task authorization mechanism by hooking into a custom identity management system or an ad hoc implementation.

jBPM provides a set of ready-to-use, configurable UserGroupCallback implementations:

  • DBUserGroupCallbackImpl: Implementation that uses SQL queries to get user and group data from a database

  • LDAPUserGroupCallbackImpl: LDAP system integration

  • MvelUserGroupCallbackImpl: Default jBPM implementation when no...