Interface ResourceAuthorizationProvider
- All Known Implementing Classes:
DefaultAuthorizationProvider
Manages (create/update/delete) default authorization when an entity is changed
Implementations should throw an exception when a specific resource's id is *
, as
*
represents access to all resources/by all users.
- Author:
- Daniel Meyer
-
Method Summary
Modifier and TypeMethodDescriptiondeleteTaskGroupIdentityLink
(Task task, String groupId, String type) Invoked whenever a group identity link of a task has been deleted.deleteTaskUserIdentityLink
(Task task, String userId, String type) Invoked whenever a user identity link of a task has been deleted.groupMembershipCreated
(String groupId, String userId) Invoked whenever a user is added to a groupnewDecisionDefinition
(DecisionDefinition decisionDefinition) Invoked whenever a new decision definition is created.newDecisionRequirementsDefinition
(DecisionRequirementsDefinition decisionRequirementsDefinition) Invoked whenever a new decision requirements definition is created.newDeployment
(Deployment deployment) Invoked whenever a new deployment is createdInvoked whenever a new filter is createdInvoked whenever a new group is creatednewProcessDefinition
(ProcessDefinition processDefinition) Invoked whenever a new process definition is creatednewProcessInstance
(ProcessInstance processInstance) Invoked whenever a new process instance is startedInvoked whenever a new task is creatednewTaskAssignee
(Task task, String oldAssignee, String newAssignee) Invoked whenever an user has been assigned to a task.newTaskGroupIdentityLink
(Task task, String groupId, String type) Invoked whenever a new group identity link has been added to a task.newTaskOwner
(Task task, String oldOwner, String newOwner) Invoked whenever an user has been set as the owner of a task.newTaskUserIdentityLink
(Task task, String userId, String type) Invoked whenever a new user identity link has been added to a task.Invoked whenever a new tenant is createdInvoked whenever a new user is createdtenantMembershipCreated
(Tenant tenant, Group group) Invoked whenever a group is added to a tenant.tenantMembershipCreated
(Tenant tenant, User user) Invoked whenever an user is added to a tenant.
-
Method Details
-
newUser
Invoked whenever a new user is created
- Parameters:
user
- a newly created user- Returns:
- a list of authorizations to be automatically added when a new user is created.
-
newGroup
Invoked whenever a new group is created
-
newTenant
Invoked whenever a new tenant is created
-
groupMembershipCreated
Invoked whenever a user is added to a group
-
tenantMembershipCreated
Invoked whenever an user is added to a tenant.
- Parameters:
tenant
- the id of the tenantuserId
- the id of the user- Returns:
- a list of authorizations to be automatically added when a new membership is created.
-
tenantMembershipCreated
Invoked whenever a group is added to a tenant.
- Parameters:
tenant
- the id of the tenantgroupId
- the id of the group- Returns:
- a list of authorizations to be automatically added when a new membership is created.
-
newFilter
Invoked whenever a new filter is created
- Parameters:
filter
- the newly created filter- Returns:
- a list of authorizations to be automatically added when a new
Filter
is created.
-
newDeployment
Invoked whenever a new deployment is created
- Parameters:
deployment
- the newly created deployment- Returns:
- a list of authorizations to be automatically added when a new
Deployment
is created.
-
newProcessDefinition
Invoked whenever a new process definition is created
- Parameters:
processDefinition
- the newly created process definition- Returns:
- a list of authorizations to be automatically added when a new
ProcessDefinition
is created.
-
newProcessInstance
Invoked whenever a new process instance is started
- Parameters:
processInstance
- the newly started process instance- Returns:
- a list of authorizations to be automatically added when a new
ProcessInstance
is started.
-
newTask
Invoked whenever a new task is created
- Parameters:
task
- the newly created task- Returns:
- a list of authorizations to be automatically added when a new
Task
is created.
-
newTaskAssignee
Invoked whenever an user has been assigned to a task.
- Parameters:
task
- the task on which the assignee has been changedoldAssignee
- the old assignee of the tasknewAssignee
- the new assignee of the task- Returns:
- a list of authorizations to be automatically added when an assignee of a task changes.
-
newTaskOwner
Invoked whenever an user has been set as the owner of a task.
- Parameters:
task
- the task on which the owner has been changedoldOwner
- the old owner of the tasknewOwner
- the new owner of the task- Returns:
- a list of authorizations to be automatically added when the owner of a task changes.
-
newTaskUserIdentityLink
Invoked whenever a new user identity link has been added to a task.
- Parameters:
task
- the task on which a new identity link has been addeduserId
- the user for which the identity link has been createdtype
- the type of the identity link (e.g.IdentityLinkType.CANDIDATE
)- Returns:
- a list of authorizations to be automatically added when a new user identity link has been added.
-
newTaskGroupIdentityLink
Invoked whenever a new group identity link has been added to a task.
- Parameters:
task
- the task on which a new identity link has been addedgroupId
- the group for which the identity link has been createdtype
- the type of the identity link (e.g.IdentityLinkType.CANDIDATE
)- Returns:
- a list of authorizations to be automatically added when a new group identity link has been added.
-
deleteTaskUserIdentityLink
Invoked whenever a user identity link of a task has been deleted.
- Parameters:
task
- the task on which the identity link has been deleteduserId
- the user for which the identity link has been deletedtype
- the type of the identity link (e.g.IdentityLinkType.CANDIDATE
)- Returns:
- a list of authorizations to be automatically deleted when a user identity link has been deleted.
-
deleteTaskGroupIdentityLink
Invoked whenever a group identity link of a task has been deleted.
- Parameters:
task
- the task on which the identity link has been deletedgroupId
- the group for which the identity link has been deletedtype
- the type of the identity link (e.g.IdentityLinkType.CANDIDATE
)- Returns:
- a list of authorizations to be automatically deleted when a group identity link has been deleted.
-
newDecisionDefinition
Invoked whenever a new decision definition is created.
- Parameters:
decisionDefinition
- the newly created decision definition- Returns:
- a list of authorizations to be automatically added when a new
DecisionDefinition
is created.
-
newDecisionRequirementsDefinition
AuthorizationEntity[] newDecisionRequirementsDefinition(DecisionRequirementsDefinition decisionRequirementsDefinition) Invoked whenever a new decision requirements definition is created.
- Parameters:
decisionRequirementsDefinition
- the newly created decision requirements definition- Returns:
- a list of authorizations to be automatically added when a new
DecisionRequirementsDefinition
is created.
-