Skip navigation links
oracle.iam.platformservice.api
Interface AuthorizationService
-
public interface AuthorizationService
The AuthorizationService is an interface specifying a contract that a class providing access control Implementation must implement.
Method Summary |
oracle.iam.platform.authz.api.AuthorizationResult |
hasAccess(java.lang.String subjectId, java.lang.String resourceType)
Check whether a subject can manage the given resource type. |
oracle.iam.platform.authz.api.AuthorizationResult |
hasAccess(java.lang.String subjectId, java.lang.String resourceType, java.lang.String actionId)
Checks whether a subject has access to perform specified action on a resource of type resourceType. |
oracle.iam.platform.authz.api.AuthorizationResult |
hasAccess(java.lang.String subjectId, java.lang.String resourceId, java.lang.String resourceType, java.lang.String action)
Check whether a subject has access on resource identified by resourceId of given resource type for specified action or not. |
hasAccess
oracle.iam.platform.authz.api.AuthorizationResult hasAccess(java.lang.String subjectId,
java.lang.String resourceType)
- Check whether a subject can manage the given resource type.
-
- Parameters:
subjectId
- unique identifier for subject (e.g 'usr_key' of loggedin user)
resourceType
- type of resource to be accessed. (e.g "USER" entity, "RECON" feature ...)
- Returns:
- An object containing decision and obligations, if any.
hasAccess
oracle.iam.platform.authz.api.AuthorizationResult hasAccess(java.lang.String subjectId,
java.lang.String resourceType,
java.lang.String actionId)
- Checks whether a subject has access to perform specified action on a resource of type resourceType. This method is useful when operation to be performed is independent of target such as create, search and browse operation.
-
- Parameters:
subjectId
- unique identifier for subject (e.g 'usr_key' of loggedin user)
resourceType
- type of resource to be accessed. (e.g "USER" entity, "RECON" feature ...)
actionId
- the operation to be performed (e.g. "CREATE" operation)
- Returns:
- An object containing decision and obligations, if any.
hasAccess
oracle.iam.platform.authz.api.AuthorizationResult hasAccess(java.lang.String subjectId,
java.lang.String resourceId,
java.lang.String resourceType,
java.lang.String action)
- Check whether a subject has access on resource identified by resourceId of given resource type for specified action or not. This method is useful when performing an action on a selected resource. The actions such as lookup, enable, disable, delete can make use of this method.
-
- Parameters:
subjectId
- unique identifier for subject (e.g 'usr_key' of loggedin user)
resourceId
- unique identifier of the resource on which user wants to perform the specified operation. (e.g 'usr_key' of the user to be modified, 'act_key' of the organization to be modified)
resourceType
- type of resource to be accessed (e.g "USER" entity)
action
- the operation to be performed on given resource identified by resourceId. (e.g "MODIFY" operation)
- Returns:
- An object containing decision and obligations, if any.
Skip navigation links
Copyright © 2010, Oracle and/or its affiliates. All rights reserved.