|
Nuxeo ECM Projects 5.4.3-SNAPSHOT | |||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.nuxeo.ecm.core.api.security.impl.ACPImpl
public class ACPImpl
The ACP implementation uses a cache used when calling getAccess().
Constructor Summary | |
---|---|
ACPImpl()
|
Method Summary | |
---|---|
void |
addAccessRule(String aclName,
ACE ace)
|
void |
addACL(ACL acl)
This method must append the ACL and not insert it since it is used to append the inherited ACL which is the less significant ACL. |
void |
addACL(int pos,
ACL acl)
|
void |
addACL(String afterMe,
ACL acl)
|
void |
addOwner(String owner)
|
Object |
clone()
Return a recursive copy of the ACP sharing no mutable substructure with the original |
static Access |
getAccess(ACE ace,
String[] principals,
String[] permissions)
|
Access |
getAccess(String[] principals,
String[] permissions)
Checks the access on the ACLs for each set of the given permissions and principals. |
Access |
getAccess(String principal,
String permission)
Check whether this ACP grant the given permission on the given user, denies it or doesn't specify a rule. |
ACL |
getACL(String name)
|
ACL[] |
getACLs()
|
ACL |
getMergedACLs(String name)
|
ACL |
getOrCreateACL()
|
ACL |
getOrCreateACL(String name)
|
String[] |
getOwners()
|
boolean |
isOwner(String username)
|
String[] |
listUsernamesForAnyPermission(Set<String> perms)
Returns the usernames granted to perform an operation based on a list of permissions. |
String[] |
listUsernamesForPermission(String perm)
Returns the usernames having a given permission. |
static ACL |
newACL(String name)
|
ACL |
removeACL(String name)
|
void |
removeOwner(String owner)
|
void |
setOwners(String[] owners)
|
void |
setRules(String aclName,
UserEntry[] userEntries)
Replaces the modifiable user entries (associated with the currentDocument) related to the ACP. |
void |
setRules(String aclName,
UserEntry[] userEntries,
boolean overwrite)
Replaces the modifiable user entries (associated with the currentDocument) related to the ACP. |
void |
setRules(UserEntry[] userEntries)
Replaces the modifiable user entries (associated with the currentDocument) related to the current ACP. |
void |
setRules(UserEntry[] userEntries,
boolean overwrite)
Replaces the modifiable user entries (associated with the currentDocument) related to the current ACP. |
Methods inherited from class java.lang.Object |
---|
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public ACPImpl()
Method Detail |
---|
public String[] getOwners()
getOwners
in interface ACP
public boolean isOwner(String username)
isOwner
in interface ACP
public void addOwner(String owner)
addOwner
in interface ACP
public void removeOwner(String owner)
removeOwner
in interface ACP
public void setOwners(String[] owners)
setOwners
in interface ACP
public void addACL(ACL acl)
addACL
in interface ACP
public void addACL(int pos, ACL acl)
addACL
in interface ACP
public void addACL(String afterMe, ACL acl)
addACL
in interface ACP
public ACL getACL(String name)
getACL
in interface ACP
public ACL[] getACLs()
getACLs
in interface ACP
public ACL getMergedACLs(String name)
getMergedACLs
in interface ACP
public static ACL newACL(String name)
public ACL removeACL(String name)
removeACL
in interface ACP
public Access getAccess(String principal, String permission)
ACP
This is checking only the ACLs on that ACP. Parents if any are not checked.
getAccess
in interface ACP
principal
- the principal to checkpermission
- the permission to check
public Access getAccess(String[] principals, String[] permissions)
ACP
This differs for an iterative check using getAccess(String principal, String permission) in the order of checks - so that in this case each ACE is fully checked against the given users and permissions before passing to the next ACE.
getAccess
in interface ACP
public static Access getAccess(ACE ace, String[] principals, String[] permissions)
public void addAccessRule(String aclName, ACE ace)
public ACL getOrCreateACL(String name)
getOrCreateACL
in interface ACP
public ACL getOrCreateACL()
getOrCreateACL
in interface ACP
public void setRules(String aclName, UserEntry[] userEntries)
ACP
Considers that all the passed entries are modifiable and attempts to set them as entries related to the current document.
setRules
in interface ACP
public void setRules(String aclName, UserEntry[] userEntries, boolean overwrite)
ACP
Considers that all the passed entries are modifiable and attempts to set them as entries related to the current document.
setRules
in interface ACP
overwrite
- if true, will overwrite the whole ACLpublic void setRules(UserEntry[] userEntries)
ACP
Considers that all the passed entries are modifiable and attempts to set them as local entries related to the current document.
setRules
in interface ACP
public void setRules(UserEntry[] userEntries, boolean overwrite)
ACP
Considers that all the passed entries are modifiable and attempts to set them as local entries related to the current document.
The current behavior reset completely the current ACL.
setRules
in interface ACP
overwrite
- if true, will overwrite the whole current ACLpublic String[] listUsernamesForPermission(String perm)
ACP
listUsernamesForPermission
in interface ACP
perm
- the permission name.
public String[] listUsernamesForAnyPermission(Set<String> perms)
ACP
listUsernamesForAnyPermission
in interface ACP
perms
- the list of permissions.
public Object clone()
ACP
clone
in interface ACP
clone
in class Object
|
Nuxeo ECM Projects 5.4.3-SNAPSHOT | |||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |