Hey,
I’ve a containment relation-ship: A contains B.

Class A {
@oneToMany(…)
Private List<B> bees;
}

In addition, I also have multiply clients, therefore I would like to use some instance authorization – which means not all users are allowed to see all B instances.
When working only with B layer – there’s no problem since I can edit the find/findAll function,
Yet when working with A layer, reading A will return all descending B instances without checking the authorization state.
What should I do in order to return A only with the authorized B instances?

Thanks!
Sharon.

You could create a DAO method to strip out all un-authorised instances in the list of A. Or a method that just fetches autorised instances for A. *shrug*