This specifies an interface for performing role based access control.
Checks if the authenticated client is a member of the role. The client's credentials are obtainable from sessionInfo.
boolean isMember
(
in CtsSecurity::SessionInfo si,
in string role
);
The server first performs membership checks and if the user is not a member of the given role, this method is invoked. The server also caches the result from this method for a fixed period of time (before the internal cache is purged of old entries). Hence, this method will not be called very often for the same client/role combination, provided the internal cache has the relevant information.