public class AuthorizationServiceImpl extends ServiceImpl implements AuthorizationService
commandExecutor
Constructor and Description |
---|
AuthorizationServiceImpl() |
Modifier and Type | Method and Description |
---|---|
AuthorizationQuery |
createAuthorizationQuery()
Constructs an authorization query.
|
Authorization |
createNewAuthorization(int type)
Returns a new (transient)
Authorization object. |
void |
deleteAuthorization(String authorizationId)
Allows deleting a persistent
Authorization object. |
boolean |
isUserAuthorized(String userId,
List<String> groupIds,
Permission permission,
Resource resource)
Allows performing an authorization check.
|
boolean |
isUserAuthorized(String userId,
List<String> groupIds,
Permission permission,
Resource resource,
String resourceId)
Allows performing an authorization check.
|
Authorization |
saveAuthorization(Authorization authorization)
Allows saving an
Authorization object. |
getCommandExecutor, setCommandExecutor
public AuthorizationQuery createAuthorizationQuery()
AuthorizationService
createAuthorizationQuery
in interface AuthorizationService
public Authorization createNewAuthorization(int type)
AuthorizationService
Returns a new (transient) Authorization
object. The Object is not
yet persistent and must be saved using the AuthorizationService.saveAuthorization(Authorization)
method.
createNewAuthorization
in interface AuthorizationService
type
- the type of the authorization. Legal values: Authorization.AUTH_TYPE_GLOBAL
,
Authorization.AUTH_TYPE_GRANT
, Authorization.AUTH_TYPE_REVOKE
public Authorization saveAuthorization(Authorization authorization)
AuthorizationService
Authorization
object. Use this method for persisting new
transient Authorization
objects obtained through AuthorizationService.createNewAuthorization(int)
or
for updating persistent objects.saveAuthorization
in interface AuthorizationService
authorization
- a Authorization object.public void deleteAuthorization(String authorizationId)
AuthorizationService
Authorization
object.deleteAuthorization
in interface AuthorizationService
authorizationId
- the id of the Authorization object to delete.public boolean isUserAuthorized(String userId, List<String> groupIds, Permission permission, Resource resource)
AuthorizationService
Allows performing an authorization check.
Returns true if the given user has permissions for interacting with the resource is the requested way.
This method checks for the resource type, see Authorization.ANY
isUserAuthorized
in interface AuthorizationService
userId
- the id of the user for which the check is performed.groupIds
- a list of group ids the user is member ofpermission
- the permission(s) to check for.resource
- the resource for which the authorization is checked.public boolean isUserAuthorized(String userId, List<String> groupIds, Permission permission, Resource resource, String resourceId)
AuthorizationService
Allows performing an authorization check.
Returns true if the given user has permissions for interacting with the resource is the requested way.
isUserAuthorized
in interface AuthorizationService
userId
- the id of the user for which the check is performed.groupIds
- a list of group ids the user is member ofpermission
- the permission(s) to check for.resource
- the resource for which the authorization is checked.resourceId
- the resource id for which the authorization check is performed.Copyright © 2021. All rights reserved.