Spring Security
Bookstore: Security Requirements
The access to the public functions of the bookstore application shall be restricted to different user roles according to the following table:| Service | Function | Authentication required | Grant access to role | ||
|---|---|---|---|---|---|
| Customer | Employee | ||||
| Catalog | Add book Update book Find book Search books |
yes yes no no |
no no |
yes yes |
|
| Customer | Register customer Find customer Update customer |
yes yes yes |
yes yes* yes* |
no yes yes |
|
| Order | Place order Find order Search orders Cancel order |
yes yes yes yes |
yes* yes* yes* yes* |
no yes yes yes |
|
