public class SQLSecurityManager extends Object implements SecurityManager
Constructor and Description |
---|
SQLSecurityManager() |
Modifier and Type | Method and Description |
---|---|
boolean |
checkPermission(Document doc,
String username,
String permission)
Checks whether this ACP grant the given permission on the given user.
|
Access |
getAccess(Document doc,
String username,
String permission)
Checks whether this ACP grant the given permission on the given user, denies it or
doesn't specify a rule.
|
ACP |
getACP(Document doc) |
ACP |
getMergedACP(Document doc) |
void |
setACP(Document doc,
ACP acp,
boolean overwrite) |
public ACP getACP(Document doc) throws SecurityException
getACP
in interface SecurityManager
SecurityException
public void setACP(Document doc, ACP acp, boolean overwrite) throws SecurityException
setACP
in interface SecurityManager
SecurityException
public ACP getMergedACP(Document doc) throws SecurityException
getMergedACP
in interface SecurityManager
SecurityException
public boolean checkPermission(Document doc, String username, String permission) throws SecurityException
SecurityManager
The merged ACP is checked (this means all parents ACP + the local one) but this doesn't check user groups or permission groups.
If the ACP is not explicitly denying or granting the permission false is returned (the default behavior is to deny).
checkPermission
in interface SecurityManager
doc
- the documentusername
- the user namepermission
- the permission to checkSecurityException
public Access getAccess(Document doc, String username, String permission) throws SecurityException
SecurityManager
getAccess
in interface SecurityManager
doc
- the documentusername
- the user namepermission
- the permission to checkSecurityException
Copyright © 2013 Nuxeo SA. All Rights Reserved.