public interface SecurityManager
Modifier and Type | Method and Description |
---|---|
boolean |
checkPermission(Document doc,
String username,
String permission)
Checks whether this ACP grant the given permission on the given user.
|
Access |
getAccess(Document doc,
String username,
String permission)
Checks whether this ACP grant the given permission on the given user, denies it or
doesn't specify a rule.
|
ACP |
getACP(Document doc) |
ACP |
getMergedACP(Document doc) |
void |
setACP(Document doc,
ACP acp,
boolean overwrite) |
ACP getMergedACP(Document doc) throws SecurityException
SecurityException
ACP getACP(Document doc) throws SecurityException
SecurityException
void setACP(Document doc, ACP acp, boolean overwrite) throws SecurityException
SecurityException
boolean checkPermission(Document doc, String username, String permission) throws SecurityException
The merged ACP is checked (this means all parents ACP + the local one) but this doesn't check user groups or permission groups.
If the ACP is not explicitly denying or granting the permission false is returned (the default behavior is to deny).
doc
- the documentusername
- the user namepermission
- the permission to checkSecurityException
Access getAccess(Document doc, String username, String permission) throws SecurityException
doc
- the documentusername
- the user namepermission
- the permission to checkSecurityException
Copyright © 2013 Nuxeo SA. All Rights Reserved.