|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object com.jalios.jstore.BasicStorable com.jalios.jcms.Data com.jalios.jcms.accesscontrol.AccessControlList
public class AccessControlList
Define a collection of resources and their associated authorization.
Nested Class Summary | |
---|---|
static class |
AccessControlList.NameComparator<T extends AccessControlList>
Comparator sorting ACL alphabetically using their name. |
static class |
AccessControlList.NameSelector
Select ACL by their name. |
static class |
AccessControlList.WorkspaceAclSelector
DataSelector selecting only workspace ACL. |
Nested classes/interfaces inherited from class com.jalios.jcms.Data |
---|
Data.AuthorComparator<T extends Data>, Data.AuthorSelector, Data.CdateSelector, Data.DataNameComparator<T extends Data>, Data.DeletableSelector, Data.ImportSelector, Data.MdateSelector, Data.OpAuthorComparator<T extends Data>, Data.RowIdComparator<T extends Data>, Data.StrongLockSelector |
Nested classes/interfaces inherited from class com.jalios.jstore.BasicStorable |
---|
BasicStorable.CdateComparator<T extends Storable>, BasicStorable.IdComparator<T extends Storable>, BasicStorable.MdateComparator<T extends Storable> |
Field Summary | |
---|---|
protected HashMap<String,Boolean> |
explicitResourceToAuthorizationMap
|
protected boolean |
isWorkspaceACL
|
protected String |
name
|
static String |
REVISION
|
Fields inherited from class com.jalios.jcms.Data |
---|
author, authorDBID, channel, DISPLAY_URL_EXTRA_INFO, extension, extraDataMap, extraDBDataMapToSaveOnOp, importMap, opAuthor, opDelegate |
Fields inherited from class com.jalios.jstore.BasicStorable |
---|
cdate, ddate, id, mdate, store |
Fields inherited from interface com.jalios.jcms.accesscontrol.AccessControlConstants |
---|
ADMIN_RESOURCE, CTXT_DATA, CTXT_WORKSPACE, GRP_EDIT_RESOURCE, MBR_EDIT_RESOURCE, WORKSPACE_ADMIN_RESOURCE, WS_EDIT_RESOURCE, WSGRP_EDIT_RESOURCE, WSMBR_EDIT_RESOURCE |
Fields inherited from interface com.jalios.util.JaliosConstants |
---|
CRLF, MILLIS_IN_ONE_DAY, MILLIS_IN_ONE_HOUR, MILLIS_IN_ONE_MINUTE, MILLIS_IN_ONE_MONTH, MILLIS_IN_ONE_SECOND, MILLIS_IN_ONE_WEEK, MILLIS_IN_ONE_YEAR |
Fields inherited from interface com.jalios.jcms.mashup.ImportConstants |
---|
IMPORT_ALARM_MGR, IMPORT_AUTHOR_PROP, IMPORT_CATEGORY_DEFAULT, IMPORT_DC_ATTR, IMPORT_DC_STEP, IMPORT_DIR, IMPORT_ENABLED, IMPORT_JDOM_ELEMENT, IMPORT_LOG_FILE, IMPORT_LOG_MAX, IMPORT_OPTIONS, IMPORT_OPTIONS_DC_CONTEXT, IMPORT_ROOT_PROP, IMPORT_SOURCE_FILE, IMPORT_SOURCE_PREFIX_PROP, IMPORT_SOURCES_DIR, IMPORT_STEP_CLEAN, IMPORT_STEP_IMPORT, IMPORT_STEP_UPDATE_REF, IMPORT_WS_PROP |
Fields inherited from interface com.jalios.jcms.mashup.MashupConstants |
---|
DATA_TAG, DATASET_TAG, FIELD_CLASS, FIELD_ENTRY, FIELD_ITEM, FIELD_KEY, FIELD_NAME, FIELD_TAG, FIELD_VALUE, FILE_FIELD, FILE_ID, FILE_MTIME, FILE_SIZE, FILE_TAG, FILE_TICKET, FILESET_TAG, RELATED_TAG |
Constructor Summary | |
---|---|
AccessControlList()
Builds a new AccessControlList without any authorization and using default value. |
|
AccessControlList(AccessControlList other)
Builds a new AccessControlList by copying all authorization and option of the specified ACL. |
Method Summary | ||
---|---|---|
ControllerStatus |
checkDelete(Member mbr,
Map context)
Checks if the deletion can be performed |
|
ControllerStatus |
checkIntegrity()
Checks whether or not data integrity constraints are respected. |
|
ControllerStatus |
checkMember(int op,
Member mbr,
Map context)
Checks if the given member can perform the given operation. |
|
void |
clearExplicitAccessAuthorization()
Remove all authorization for this ACL |
|
Boolean |
getAccessAuthorization(String resource)
Retrieve the authorization of the specified resource |
|
String |
getDataName(String language)
Return the name of this Data, every sub class Data which will be displayed to user should implements this method already. |
|
Boolean |
getExplicitAccessAuthorization(String resource)
Retrieve the explicit authorization of the specified resource. |
|
HashMap<String,Boolean> |
getExplicitResourceToAuthorizationMap()
Retrieve the internal map used to store authorization. |
|
Set<Group> |
getGroupSet()
Retrieves the Set of Group using this ACL. |
|
String |
getName()
Gets the name of this ACL. |
|
static
|
getNameComparator()
Retrieve a Comparator to sort ACL alphabetically using their name. |
|
static AccessControlList.WorkspaceAclSelector |
getWorkspaceAclSelector()
Retrieve a DataSelector to select only workspace ACL in a collection. |
|
boolean |
isWorker()
Check if any ACL provides worker right to the member using it. |
|
boolean |
isWorkspaceACL()
Check if this ACL is dedicated for Workspace's resource access control or any other right |
|
void |
removeExplicitAccessAuthorization(String resource)
Remove all authorization for the specified resource |
|
void |
setExplicitAccessAuthorization(String resource,
Boolean authorization)
Set the authorization of the specified resource |
|
void |
setExplicitResourceToAuthorizationMap(HashMap<String,Boolean> explicitResourceToAuthorizationMap)
Set the value of the internal map used to store authorization. |
|
void |
setName(String name)
Set the name of this ACL. |
|
void |
setWorkspaceACL(boolean isWorkspaceACL)
Set if this ACL is dedicated for Workspace's resource access control. |
|
void |
updateGroupSet(Group group,
boolean add)
Internal method used to update the (transient) set of Group using this ACL. |
Methods inherited from class com.jalios.jstore.BasicStorable |
---|
clearId, compareTo, equals, getAttribute, getAttributes, getCdate, getCdateComparator, getDdate, getId, getIdComparator, getMdate, getMdateComparator, getStore, getUrid, hasBeenUpdated, isStored, resolveAtt, resolveVal, setAttributes, setCdate, setDdate, setId, setStore, toXml |
Methods inherited from class java.lang.Object |
---|
finalize, getClass, notify, notifyAll, wait, wait, wait |
Field Detail |
---|
public static final String REVISION
protected String name
protected boolean isWorkspaceACL
protected HashMap<String,Boolean> explicitResourceToAuthorizationMap
Constructor Detail |
---|
public AccessControlList()
public AccessControlList(AccessControlList other)
other
- the ACl from which to copy fieldsMethod Detail |
---|
public String getDataName(String language)
Data
getDataName
in class Data
language
- the language in which to return the name if multilang available for the data.
getName()
,
Data.getDataName(String)
public String getName()
public void setName(String name)
name
- the name to use.public boolean isWorkspaceACL()
public void setWorkspaceACL(boolean isWorkspaceACL)
isWorkspaceACL
- true if the acl is dedicated for Workspace's resource access (and only that),
false if it is dedicated to anything else (excluding workspace's resource).public Boolean getAccessAuthorization(String resource)
resource
- URI of the resource
public boolean isWorker()
public Boolean getExplicitAccessAuthorization(String resource)
Do not use this method for acces right check, see getAccessAuthorization(String)
.
resource
- URI of the resource
public void setExplicitAccessAuthorization(String resource, Boolean authorization)
resource
- URI of the resourceauthorization
- TRUE to grant access, FALSE or null to apply default behavior. if null, the authorization is removed and default access will be applied.public void removeExplicitAccessAuthorization(String resource)
resource
- URI of the resourcepublic void clearExplicitAccessAuthorization()
public HashMap<String,Boolean> getExplicitResourceToAuthorizationMap()
public void setExplicitResourceToAuthorizationMap(HashMap<String,Boolean> explicitResourceToAuthorizationMap)
explicitResourceToAuthorizationMap
- public ControllerStatus checkIntegrity()
checkIntegrity
in class Data
public ControllerStatus checkMember(int op, Member mbr, Map context)
checkMember
in class Data
op
- the operation (OP_CREATE, OP_UPDATE, ...)mbr
- the member which requests the write operationcontext
- a map which contains context parameters (may be null)
public ControllerStatus checkDelete(Member mbr, Map context)
checkDelete
in class Data
mbr
- the member which requests the write operationcontext
- a map which contains context parameters (may be null)
public void updateGroupSet(Group group, boolean add)
group
- the Group to add or remove from the group set.add
- true -> add, false -> removepublic Set<Group> getGroupSet()
public static AccessControlList.WorkspaceAclSelector getWorkspaceAclSelector()
public static <T extends AccessControlList> Comparator<T> getNameComparator()
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |