Package | Description |
---|---|
org.springframework.security.acls.domain |
Basic implementation of access control lists (ACLs) interfaces.
|
org.springframework.security.acls.jdbc |
JDBC-based persistence of ACL information
|
org.springframework.security.acls.model |
Interfaces and shared classes to manage access control lists (ACLs) for domain object instances.
|
Modifier and Type | Class and Description |
---|---|
class |
GrantedAuthoritySid
Represents a
GrantedAuthority as a Sid . |
class |
PrincipalSid
Represents an
Authentication.getPrincipal() as a Sid . |
Modifier and Type | Method and Description |
---|---|
Sid |
AclImpl.getOwner() |
Sid |
AccessControlEntryImpl.getSid() |
Modifier and Type | Method and Description |
---|---|
List<Sid> |
SidRetrievalStrategyImpl.getSids(Authentication authentication) |
Modifier and Type | Method and Description |
---|---|
void |
AclImpl.insertAce(int atIndexLocation,
Permission permission,
Sid sid,
boolean granting) |
void |
AclImpl.setOwner(Sid newOwner) |
Modifier and Type | Method and Description |
---|---|
boolean |
DefaultPermissionGrantingStrategy.isGranted(Acl acl,
List<Permission> permission,
List<Sid> sids,
boolean administrativeMode)
Determines authorization.
|
boolean |
AclImpl.isGranted(List<Permission> permission,
List<Sid> sids,
boolean administrativeMode)
Delegates to the
PermissionGrantingStrategy . |
boolean |
AclImpl.isSidLoaded(List<Sid> sids) |
Constructor and Description |
---|
AccessControlEntryImpl(Serializable id,
Acl acl,
Sid sid,
Permission permission,
boolean granting,
boolean auditSuccess,
boolean auditFailure) |
AclImpl(ObjectIdentity objectIdentity,
Serializable id,
AclAuthorizationStrategy aclAuthorizationStrategy,
AuditLogger auditLogger,
Acl parentAcl,
List<Sid> loadedSids,
boolean entriesInheriting,
Sid owner)
Deprecated.
Use the version which takes a
PermissionGrantingStrategy argument instead. |
AclImpl(ObjectIdentity objectIdentity,
Serializable id,
AclAuthorizationStrategy aclAuthorizationStrategy,
PermissionGrantingStrategy grantingStrategy,
Acl parentAcl,
List<Sid> loadedSids,
boolean entriesInheriting,
Sid owner)
Full constructor, which should be used by persistence tools that do not
provide field-level access features.
|
Constructor and Description |
---|
AclImpl(ObjectIdentity objectIdentity,
Serializable id,
AclAuthorizationStrategy aclAuthorizationStrategy,
AuditLogger auditLogger,
Acl parentAcl,
List<Sid> loadedSids,
boolean entriesInheriting,
Sid owner)
Deprecated.
Use the version which takes a
PermissionGrantingStrategy argument instead. |
AclImpl(ObjectIdentity objectIdentity,
Serializable id,
AclAuthorizationStrategy aclAuthorizationStrategy,
PermissionGrantingStrategy grantingStrategy,
Acl parentAcl,
List<Sid> loadedSids,
boolean entriesInheriting,
Sid owner)
Full constructor, which should be used by persistence tools that do not
provide field-level access features.
|
Modifier and Type | Method and Description |
---|---|
protected void |
JdbcMutableAclService.createObjectIdentity(ObjectIdentity object,
Sid owner)
Creates an entry in the acl_object_identity table for the passed ObjectIdentity.
|
protected Long |
JdbcMutableAclService.createOrRetrieveSidPrimaryKey(Sid sid,
boolean allowCreate)
Retrieves the primary key from acl_sid, creating a new row if needed and the allowCreate property is
true.
|
Modifier and Type | Method and Description |
---|---|
Acl |
JdbcAclService.readAclById(ObjectIdentity object,
List<Sid> sids) |
Map<ObjectIdentity,Acl> |
JdbcAclService.readAclsById(List<ObjectIdentity> objects,
List<Sid> sids) |
Map<ObjectIdentity,Acl> |
LookupStrategy.readAclsById(List<ObjectIdentity> objects,
List<Sid> sids)
Perform database-specific optimized lookup.
|
Map<ObjectIdentity,Acl> |
BasicLookupStrategy.readAclsById(List<ObjectIdentity> objects,
List<Sid> sids)
The main method.
|
Modifier and Type | Method and Description |
---|---|
Sid |
Acl.getOwner()
Determines the owner of the Acl.
|
Sid |
AccessControlEntry.getSid() |
Modifier and Type | Method and Description |
---|---|
List<Sid> |
SidRetrievalStrategy.getSids(Authentication authentication) |
Modifier and Type | Method and Description |
---|---|
void |
MutableAcl.insertAce(int atIndexLocation,
Permission permission,
Sid sid,
boolean granting) |
void |
MutableAcl.setOwner(Sid newOwner)
Changes the present owner to a different owner.
|
void |
OwnershipAcl.setOwner(Sid newOwner) |
Modifier and Type | Method and Description |
---|---|
boolean |
PermissionGrantingStrategy.isGranted(Acl acl,
List<Permission> permission,
List<Sid> sids,
boolean administrativeMode)
Returns true if the the supplied strategy decides that the supplied
Acl grants access
based on the supplied list of permissions and sids. |
boolean |
Acl.isGranted(List<Permission> permission,
List<Sid> sids,
boolean administrativeMode)
This is the actual authorization logic method, and must be used whenever ACL authorization decisions are
required.
|
boolean |
Acl.isSidLoaded(List<Sid> sids)
For efficiency reasons an Acl may be loaded and not contain entries for every
Sid in the system.
|
Acl |
AclService.readAclById(ObjectIdentity object,
List<Sid> sids)
Same as
AclService.readAclsById(List, List) except it returns only a single Acl. |
Map<ObjectIdentity,Acl> |
AclService.readAclsById(List<ObjectIdentity> objects,
List<Sid> sids)
Obtains all the Acls that apply for the passed Objects, but only for the
security identifies passed.
|
Copyright © 2019. All rights reserved.