Hello,

i'm trying to securize access to objects retrieved through internal relationships.

Description :
i'm using hibernate to persist an object model that uses row-level security, i.e. allow authorized users to see data on a per-object basis.
Object-level security is persisted using dedicated entities.
This is done and works well by doing query rewriting in HQL.

However, consider this :
user 'foo' is retrieving an object A that has a relationship (like OneToMany) to another set of objects B. 'foo' is allowed to see A, but not all instances of B.
But in this case, query rewriting will not be invoked, since fetching of B will be done internally by hibernate.

To solve this, i'm trying to overload the DefaultLoadEventListener, so that on each occurence of an INTERNAL_* load event, it checks the object level security for the current user, and removes the object from the event if needed.
*but* this solution fails because removing the object from the event results in a "row no found" exception.

Am I going the right way by trying to implement this using a LoadEventListener ?
Does anyone have some experience with that kind of usecase ?

thank you,

--p.

For toMany-relationships filtersare designed to restrict views on data.