ReadSecurityPolicy (Nuxeo ECM Projects 5.6 API Documentation)

Nuxeo ECM Projects 5.6

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- org.nuxeo.ecm.core.security.AbstractSecurityPolicy
- - org.nuxeo.ecm.platform.sync.security.ReadSecurityPolicy

All Implemented Interfaces:

SecurityPolicy
```
public class ReadSecurityPolicy
extends AbstractSecurityPolicy
```
Read security policy

Author:

Catalin Baican

Constructor Summary

Constructors
Constructor and Description

ReadSecurityPolicy()

Method Summary

Methods
Modifier and Type	Method and Description
`Access`	`checkPermission(Document doc, ACP mergedAcp, Principal principal, String permission, String[] resolvedPermissions, String[] additionalPrincipals)` Checks given permission for doc and principal.

Methods inherited from class org.nuxeo.ecm.core.security.AbstractSecurityPolicy
getQueryTransformer, getQueryTransformer, isExpressibleInQuery, isExpressibleInQuery, isRestrictingPermission

Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - ReadSecurityPolicy
```
public ReadSecurityPolicy()
```
- Method Detail
  - checkPermission
```
public Access checkPermission(Document doc,
                     ACP mergedAcp,
                     Principal principal,
                     String permission,
                     String[] resolvedPermissions,
                     String[] additionalPrincipals)
                       throws SecurityException
```
    Description copied from interface: SecurityPolicy
    
    Checks given permission for doc and principal.
    Note that for the Browse permission, which is also implemented in SQL using SecurityPolicy.getQueryTransformer(java.lang.String), a security policy must never bypass standard ACL access, it must only return DENY or UNKNOWN. Failing to do this would make direct access and queries behave differently.
    
    Parameters:
    doc - the document to check
    mergedAcp - merged ACP resolved for this document
    principal - principal to check
    permission - permission to check
    resolvedPermissions - permissions or groups of permissions containing permission
    
    Returns:
    access: GRANT, DENY, or UNKNOWN. When UNKNOWN is returned, following policies or default core security are applied.
    
    Throws:
    
    SecurityException

Nuxeo ECM Projects 5.6

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2012 Nuxeo SA. All Rights Reserved.