|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface AuthorizationControl
Control for the authorization of users.
Method Summary | |
---|---|
void |
checkAccess(MethodInvocation op)
Checks whether a given operation may be executed. |
boolean |
checkProjectAdminAccess(SessionId sessionId,
ProjectId projectId)
Check if the session is valid for admin access to the given project. |
boolean |
checkProjectAdminAccess(SessionId sessionId,
ProjectId projectId,
PAPrivileges privileg)
Check if the session is valid for admin access to the given project. |
boolean |
checkProjectAdminAccessForOrgUnit(SessionId sessionId,
ACOrgUnitId orgUnitId)
Check if the session is valid for admin access to the given organizational unit. |
boolean |
checkProjectAdminAccessForOrgUnit(SessionId sessionId,
ACOrgUnitId orgUnitId,
Set<ProjectId> projectIds)
Check if the session is valid for admin access to the given organizational unit. |
void |
checkReadAccess(SessionId sessionId,
ProjectId projectId,
Set<org.eclipse.emf.ecore.EObject> modelElements)
Check if the session may read the given model elements in the project. |
void |
checkServerAdminAccess(SessionId sessionId)
Check if the session is valid for server admin access. |
void |
checkSession(SessionId sessionId)
Check if the given session is valid. |
void |
checkWriteAccess(SessionId sessionId,
ProjectId projectId,
Set<org.eclipse.emf.ecore.EObject> modelElements)
Check if the session may write the given model elements in the project. |
SessionId |
resolveSessionById(String sessionId)
Given an session ID as a string, returns the corresponding session, if any. |
ACUser |
resolveUser(ACOrgUnitId orgUnitId)
This method looks up the orgUnit id the server and returns the relating user. |
ACUser |
resolveUser(SessionId sessionId)
This method looks up the session id on the server and returns the relating user. |
Method Detail |
---|
void checkSession(SessionId sessionId) throws AccessControlException
sessionId
- the session id
AccessControlException
- if the session is invalidboolean checkProjectAdminAccess(SessionId sessionId, ProjectId projectId, PAPrivileges privileg) throws AccessControlException
sessionId
- the session idprojectId
- the project id. May be null
privileg
- the PAPrivileges
to be checked
true
, if permission is granted via the server admin role, false
otherwise
AccessControlException
- if the session is invalid for admin accessboolean checkProjectAdminAccessForOrgUnit(SessionId sessionId, ACOrgUnitId orgUnitId) throws AccessControlException
sessionId
- the session idorgUnitId
- the ID of an organizational unit
true
, if permission is granted via the server admin role, false
otherwise
AccessControlException
- if the session is invalid for admin accessboolean checkProjectAdminAccessForOrgUnit(SessionId sessionId, ACOrgUnitId orgUnitId, Set<ProjectId> projectIds) throws AccessControlException
sessionId
- the session idorgUnitId
- the ID of an organizational unitprojectIds
- the set of ProjectId
s for which to check access for
true
, if permission is granted via the server admin role, false
otherwise
AccessControlException
- if the session is invalid for admin accessboolean checkProjectAdminAccess(SessionId sessionId, ProjectId projectId) throws AccessControlException
sessionId
- the session idprojectId
- the project id. May be null
true
, if permission is granted via the server admin role, false
otherwise
AccessControlException
- if the session is invalid for admin accessvoid checkServerAdminAccess(SessionId sessionId) throws AccessControlException
sessionId
- the session id
AccessControlException
- if the session is invalid for server admin accessvoid checkReadAccess(SessionId sessionId, ProjectId projectId, Set<org.eclipse.emf.ecore.EObject> modelElements) throws AccessControlException
sessionId
- session idprojectId
- project idmodelElements
- a set of model elements
AccessControlException
- if the session may not read any of the model elementsvoid checkWriteAccess(SessionId sessionId, ProjectId projectId, Set<org.eclipse.emf.ecore.EObject> modelElements) throws AccessControlException
sessionId
- session idprojectId
- project idmodelElements
- a set of model elements
AccessControlException
- if the session may not write any of the model elementsACUser resolveUser(SessionId sessionId) throws AccessControlException
sessionId
- session id
AccessControlException
- exceptionACUser resolveUser(ACOrgUnitId orgUnitId) throws AccessControlException
orgUnitId
- OrgUnit id
AccessControlException
- exceptionvoid checkAccess(MethodInvocation op) throws AccessControlException
op
- the operation the user intends to execute
AccessControlException
- in case access is deniedSessionId resolveSessionById(String sessionId)
sessionId
- the session ID to be resolved
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |