|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object atg.nucleus.logging.VariableArgumentApplicationLoggingImpl atg.nucleus.GenericService atg.security.StandardSecurityPolicy atg.security.IdentitySecurityPolicy
public class IdentitySecurityPolicy
An extension of the standard security policy that allows or denies access by specific identities in addition to a normal ACL. This is particularly useful for creating superuser access policies.
Field Summary | |
---|---|
static java.lang.String |
CLASS_VERSION
Class version string |
Fields inherited from class atg.nucleus.GenericService |
---|
SERVICE_INFO_KEY |
Fields inherited from interface atg.security.SecurityPolicy |
---|
DENIED, GRANTED, UNSPECIFIED |
Fields inherited from interface atg.nucleus.logging.TraceApplicationLogging |
---|
DEFAULT_LOG_TRACE_STATUS |
Fields inherited from interface atg.nucleus.logging.ApplicationLogging |
---|
DEFAULT_LOG_DEBUG_STATUS, DEFAULT_LOG_ERROR_STATUS, DEFAULT_LOG_INFO_STATUS, DEFAULT_LOG_WARNING_STATUS |
Constructor Summary | |
---|---|
IdentitySecurityPolicy()
|
Method Summary | |
---|---|
java.lang.String |
getAllowed()
Returns the list of allowed identities. |
java.lang.String |
getDenied()
Returns the list of allowed identities. |
UserAuthority |
getUserAuthority()
Returns the user authority for identities that are valid for registered users. |
boolean |
hasAccess(java.lang.Object pObject,
User pUser,
AccessRight pRight)
Returns true if a user may perform a particular operation on an object. |
protected boolean |
identityHasAccess(User pUser)
Checks to see whether or not an identity is granted access. |
void |
setAllowed(java.lang.String pIdentityList)
Changes the list of allowed identities. |
void |
setDenied(java.lang.String pIdentityList)
Changes the list of allowed identities. |
void |
setUserAuthority(UserAuthority pAuthority)
Changes the user authority for identities that are valid for registered users. |
Methods inherited from class atg.nucleus.logging.VariableArgumentApplicationLoggingImpl |
---|
vlogDebug, vlogDebug, vlogDebug, vlogDebug, vlogError, vlogError, vlogError, vlogError, vlogInfo, vlogInfo, vlogInfo, vlogInfo, vlogTrace, vlogTrace, vlogTrace, vlogTrace, vlogWarning, vlogWarning, vlogWarning, vlogWarning |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static java.lang.String CLASS_VERSION
Constructor Detail |
---|
public IdentitySecurityPolicy()
Method Detail |
---|
public UserAuthority getUserAuthority()
public void setUserAuthority(UserAuthority pAuthority)
public java.lang.String getAllowed()
public void setAllowed(java.lang.String pIdentityList)
public java.lang.String getDenied()
public void setDenied(java.lang.String pIdentityList)
protected boolean identityHasAccess(User pUser)
public boolean hasAccess(java.lang.Object pObject, User pUser, AccessRight pRight) throws SecurityException
hasAccess
in interface SecurityPolicy
hasAccess
in class StandardSecurityPolicy
SecurityException
StandardSecurityPolicy.getCurrentUser()
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |