Class UserPerWorkspaceSecurityManager

  • All Implemented Interfaces:

    public class UserPerWorkspaceSecurityManager
    extends DefaultSecurityManager
    Derived security manager implementation that expects that users information is present in each workspace instead of having a single, dedicated "security-workspace" that provides user information. Consequently, the UserManager used to retrieve and manipulate user content is always bound to the Session passed to getUserManager(Session).

    In addition the default (user-based) principal provider created by DefaultSecurityManager cannot be used to retrieve principals. Instead this implementation keeps a distinct pp-registry for each workspace.

    NOTE: While this security manager asserts that a minimal set of system users (admin and anonymous) is present in each workspace it doesn't make any attempt to set or define the access permissions on the tree containing user related information.