public class ReadSecurityPolicy extends AbstractSecurityPolicy
Constructor and Description |
---|
ReadSecurityPolicy() |
Modifier and Type | Method and Description |
---|---|
Access |
checkPermission(Document doc,
ACP mergedAcp,
Principal principal,
String permission,
String[] resolvedPermissions,
String[] additionalPrincipals)
Checks given permission for doc and principal.
|
getQueryTransformer, getQueryTransformer, isExpressibleInQuery, isExpressibleInQuery, isRestrictingPermission
public Access checkPermission(Document doc, ACP mergedAcp, Principal principal, String permission, String[] resolvedPermissions, String[] additionalPrincipals) throws SecurityException
SecurityPolicy
Note that for the Browse
permission, which is also implemented
in SQL using SecurityPolicy.getQueryTransformer(java.lang.String)
, a security policy must never
bypass standard ACL access, it must only return DENY or UNKNOWN. Failing
to do this would make direct access and queries behave differently.
doc
- the document to checkmergedAcp
- merged ACP resolved for this documentprincipal
- principal to checkpermission
- permission to checkresolvedPermissions
- permissions or groups of permissions
containing permissionSecurityException
Copyright © 2012 Nuxeo SA. All Rights Reserved.