public class CombinedProvider extends AbstractAccessControlProvider
CombinedProvider
...observationMgr, PARAM_OMIT_DEFAULT_PERMISSIONS, privilegeManager, session
N_ACCESSCONTROL, N_POLICY, N_REPO_POLICY, NT_REP_ACCESS_CONTROL, NT_REP_ACCESS_CONTROLLABLE, NT_REP_ACE, NT_REP_ACL, NT_REP_DENY_ACE, NT_REP_GRANT_ACE, NT_REP_PRINCIPAL_ACCESS_CONTROL, NT_REP_REPO_ACCESS_CONTROLLABLE, P_GLOB, P_PRINCIPAL_NAME, P_PRIVILEGES
Constructor and Description |
---|
CombinedProvider() |
Modifier and Type | Method and Description |
---|---|
boolean |
canAccessRoot(Set<Principal> principals)
Returns
true if the given set of principals can access the
root node of the workspace this provider has been built for;
false otherwise. |
void |
close()
Closes this provider when it is no longer used by the respective
workspace and release resources bound by this provider.
|
CompiledPermissions |
compilePermissions(Set<Principal> principals)
Compiles the effective policy for the specified set of
Principal s. |
AccessControlEditor |
getEditor(Session editingSession)
Returns an
AccessControlEditor for the given Session object
or null if the implementation does not support editing
of access control policies. |
AccessControlPolicy[] |
getEffectivePolicies(Path absPath,
CompiledPermissions permissions)
Returns the effective policies for the node at the given absPath.
|
AccessControlPolicy[] |
getEffectivePolicies(Set<Principal> principals,
CompiledPermissions permissions)
Returns the effective policies for the given principals.
|
void |
init(Session systemSession,
Map configuration)
Tests if the given
systemSession is a SessionImpl and
retrieves the observation manager. |
boolean |
isAcItem(ItemImpl item)
Test if the given node is itself a rep:ACL or a rep:ACE node.
|
boolean |
isAcItem(Path absPath)
Test if the specified path points to an item that defines AC
information.
|
checkInitialized, getAdminPermissions, getPrivilegeManagerImpl, getReadOnlyPermissions, isAdminOrSystem, isLive, isReadOnly
public boolean isAcItem(Path absPath) throws RepositoryException
AccessControlUtils
isAcItem
in interface AccessControlUtils
isAcItem
in class AbstractAccessControlProvider
absPath
- Path to an item.absPath
contains
access control information.RepositoryException
- If an error occurs.AccessControlUtils.isAcItem(Path)
public boolean isAcItem(ItemImpl item) throws RepositoryException
AbstractAccessControlProvider
isAcItem
in interface AccessControlUtils
isAcItem
in class AbstractAccessControlProvider
item
- An item.item
defines
access control related information is should therefore be considered
protected.RepositoryException
- If an error occurs.AccessControlUtils.isAcItem(ItemImpl)
public void close()
AccessControlProvider
close
in interface AccessControlProvider
close
in class AbstractAccessControlProvider
AccessControlProvider.close()
public void init(Session systemSession, Map configuration) throws RepositoryException
AbstractAccessControlProvider
systemSession
is a SessionImpl and
retrieves the observation manager. The it sets the internal 'initialized'
field to true.init
in interface AccessControlProvider
init
in class AbstractAccessControlProvider
systemSession
- System session.configuration
- Configuration used to initialize this provider.RepositoryException
- If the specified session is not a
SessionImpl
or if retrieving the observation manager fails.AccessControlProvider.init(javax.jcr.Session, java.util.Map)
public AccessControlPolicy[] getEffectivePolicies(Path absPath, CompiledPermissions permissions) throws ItemNotFoundException, RepositoryException
AccessControlProvider
absPath
- an absolute path.permissions
- The effective permissions of the editing
sessions that attempts to view the effective policies.absPath
or
an empty array if the implementation cannot determine the effective
policy at the given path.ItemNotFoundException
- If no Node with the specified
absPath
exists.RepositoryException
- If another error occurs.AccessControlProvider.getEffectivePolicies(org.apache.jackrabbit.spi.Path,org.apache.jackrabbit.core.security.authorization.CompiledPermissions)
public AccessControlPolicy[] getEffectivePolicies(Set<Principal> principals, CompiledPermissions permissions) throws RepositoryException
AccessControlProvider
principals
- A set of principal.permissions
- The effective permissions of the editing
sessions that attempts to view the effective policies. @return The effective policies that are in effect for the given
principal
or an empty array.RepositoryException
- If error occurs.AccessControlProvider.getEffectivePolicies(java.util.Set, CompiledPermissions)
public AccessControlEditor getEditor(Session editingSession)
AccessControlProvider
AccessControlEditor
for the given Session object
or null
if the implementation does not support editing
of access control policies.editingSession
- The editing session.null
.AccessControlProvider.getEditor(javax.jcr.Session)
public CompiledPermissions compilePermissions(Set<Principal> principals) throws RepositoryException
AccessControlProvider
Principal
s.principals
- Set of principals to compile the permissions for. If
the order of evaluating permissions for principals is meaningful, the
caller should pass a Set that respects the order of insertion.RepositoryException
- If an error occurs.AccessControlProvider.compilePermissions(Set)
public boolean canAccessRoot(Set<Principal> principals) throws RepositoryException
AccessControlProvider
true
if the given set of principals can access the
root node of the workspace this provider has been built for;
false
otherwise.principals
- Set of principals to be tested for being allowed to
access the root node.true
if the given set of principals can access the
root node of the workspace this provider has been built for;
false
otherwise.RepositoryException
- If an error occurs.AccessControlProvider.canAccessRoot(Set)
Copyright © 2004–2024 The Apache Software Foundation. All rights reserved.