|Constructor and Description|
|Modifier and Type||Method and Description|
Checks given permission for doc and principal.
getQueryTransformer, getQueryTransformer, isExpressibleInQuery, isExpressibleInQuery, isRestrictingPermission
public Access checkPermission(Document doc, ACP mergedAcp, Principal principal, String permission, String resolvedPermissions, String additionalPrincipals) throws SecurityException
Note that for the
Browse permission, which is also implemented
in SQL using
SecurityPolicy.getQueryTransformer(java.lang.String), a security policy must never
bypass standard ACL access, it must only return DENY or UNKNOWN. Failing
to do this would make direct access and queries behave differently.
doc- the document to check
mergedAcp- merged ACP resolved for this document
principal- principal to check
permission- permission to check
resolvedPermissions- permissions or groups of permissions containing permission
Copyright © 2012 Nuxeo SA. All Rights Reserved.