org.apache.jackrabbit.oak.spi.security.authorization.accesscontrol

Class ImmutableACL

java.lang.Object

org.apache.jackrabbit.oak.spi.security.authorization.accesscontrol.AbstractAccessControlList

org.apache.jackrabbit.oak.spi.security.authorization.accesscontrol.ImmutableACL

All Implemented Interfaces:

AccessControlList, AccessControlPolicy, JackrabbitAccessControlList, JackrabbitAccessControlPolicy

public class ImmutableACL
extends AbstractAccessControlList

An implementation of the JackrabbitAccessControlList interface that only allows for reading. The write methods throw an AccessControlException.

Constructor Summary

Constructors

Constructor and Description
ImmutableACL(String oakPath, List<? extends JackrabbitAccessControlEntry> entries, RestrictionProvider restrictionProvider, NamePathMapper namePathMapper) Construct a new UnmodifiableAccessControlList

Method Summary

Modifier and Type	Method and Description
boolean	addEntry(Principal principal, Privilege[] privileges, boolean isAllow, Map<String,Value> restrictions)
boolean	addEntry(Principal principal, Privilege[] privileges, boolean isAllow, Map<String,Value> restrictions, Map<String,Value[]> mvRestrictions)
boolean	equals(Object obj)
List<JackrabbitAccessControlEntry>	getEntries()
RestrictionProvider	getRestrictionProvider()
int	hashCode()
void	orderBefore(AccessControlEntry srcEntry, AccessControlEntry destEntry)
void	removeAccessControlEntry(AccessControlEntry ace)

Methods inherited from class org.apache.jackrabbit.oak.spi.security.authorization.accesscontrol.AbstractAccessControlList

addAccessControlEntry, addEntry, getAccessControlEntries, getNamePathMapper, getOakPath, getPath, getRestrictionNames, getRestrictionType, isEmpty, isMultiValueRestriction, size

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ImmutableACL

public ImmutableACL(@Nullable
                    String oakPath,
                    @Nonnull
                    List<? extends JackrabbitAccessControlEntry> entries,
                    @Nonnull
                    RestrictionProvider restrictionProvider,
                    @Nonnull
                    NamePathMapper namePathMapper)

Construct a new UnmodifiableAccessControlList

Parameters:

oakPath - The Oak path of this policy or null.

entries - The access control entries contained in this policy.

restrictionProvider - The restriction provider.

namePathMapper - The NamePathMapper used for conversion.

Method Detail

removeAccessControlEntry

public void removeAccessControlEntry(AccessControlEntry ace)
                              throws AccessControlException

Throws:

AccessControlException

addEntry

public boolean addEntry(Principal principal,
                        Privilege[] privileges,
                        boolean isAllow,
                        Map<String,Value> restrictions)
                 throws AccessControlException

Specified by:

addEntry in interface JackrabbitAccessControlList

Overrides:

addEntry in class AbstractAccessControlList

Throws:

AccessControlException

addEntry

public boolean addEntry(Principal principal,
                        Privilege[] privileges,
                        boolean isAllow,
                        Map<String,Value> restrictions,
                        Map<String,Value[]> mvRestrictions)
                 throws AccessControlException

Throws:

AccessControlException

orderBefore

public void orderBefore(AccessControlEntry srcEntry,
                        AccessControlEntry destEntry)
                 throws AccessControlException

Throws:

AccessControlException

getEntries

@Nonnull
public List<JackrabbitAccessControlEntry> getEntries()

Specified by:

getEntries in class AbstractAccessControlList

getRestrictionProvider

@Nonnull
public RestrictionProvider getRestrictionProvider()

Specified by:

getRestrictionProvider in class AbstractAccessControlList

hashCode

public int hashCode()

Overrides:

hashCode in class Object

equals

public boolean equals(Object obj)

Overrides:

equals in class Object