public class AccessControl_2
extends org.openmdx.base.rest.spi.AbstractRestPort
Modifier and Type | Class and Description |
---|---|
class |
AccessControl_2.CachedPrincipal
CachedPrincipal
|
class |
AccessControl_2.DefaultRealm
Default realm implementation.
|
class |
AccessControl_2.RestInteraction
RestInteraction
|
Modifier and Type | Field and Description |
---|---|
protected static String |
ALL_PERMISSION |
protected org.openmdx.base.resource.cci.ConnectionFactory |
connectionFactory |
protected static org.openmdx.base.naming.Path |
EXTENT_PATTERN |
protected org.openmdx.base.mof.cci.Model_1_0 |
model |
protected static ConcurrentMap<org.openmdx.base.naming.Path,Object[]> |
objectCache |
protected org.openmdx.base.naming.Path |
realmIdentity |
protected static ConcurrentMap<org.openmdx.base.naming.Path,org.openmdx.base.naming.Path> |
sharedAssociationToCompositeParentPathMap |
protected boolean |
useExtendedAccessLevelBasic |
protected static org.openmdx.base.naming.Path |
USER_HOME_PATH_PATTERN |
Constructor and Description |
---|
AccessControl_2()
Constructor.
|
Modifier and Type | Method and Description |
---|---|
protected void |
completeObject(org.openmdx.base.rest.cci.ObjectRecord object)
Complete derived attributes for returned objects.
|
protected void |
completeOwningUserAndGroup(org.openmdx.base.rest.cci.ObjectRecord object)
Complete derived attributes.
|
protected void |
completeReply(org.openmdx.base.rest.cci.ResultRecord objects)
Complete reply.
|
protected org.openmdx.base.rest.cci.ResultRecord |
findObjects(org.openmdx.base.dataprovider.cci.DataproviderRequestProcessor p,
org.openmdx.base.naming.Path reference)
Find objects.
|
org.openmdx.base.resource.cci.ConnectionFactory |
getConnectionFactory()
Deprecated.
|
protected org.openmdx.base.naming.Path |
getGroupIdentity(org.openmdx.base.naming.Path accessPath,
String qualifiedPrincipalName)
Get group identity for principal.
|
javax.resource.cci.Interaction |
getInteraction(org.openmdx.base.rest.cci.RestConnection connection) |
protected static ConcurrentMap<org.openmdx.base.naming.Path,Object[]> |
getObjectCache()
Get object cache.
|
protected List<String> |
getPrincipalChain(javax.resource.cci.Connection connection)
Extract principal name from request header.
|
protected String |
getQualifiedPrincipalName(org.openmdx.base.naming.Path principalIdentity)
Get qualified principal name.
|
protected String |
getQualifiedPrincipalName(org.openmdx.base.naming.Path accessPath,
String principalName)
Get qualified principal name.
|
protected AccessControl_2.DefaultRealm |
getRealm(org.openmdx.base.rest.cci.RequestRecord request,
List<String> principalChain,
javax.jdo.PersistenceManager pm)
Get realm for given request.
|
org.openmdx.base.naming.Path |
getRealmIdentity() |
protected org.openmdx.base.mof.cci.ModelElement_1_0 |
getReferencedType(org.openmdx.base.naming.Path accessPath,
List<org.openmdx.application.dataprovider.cci.FilterProperty> filter)
Get type referenced by access path.
|
protected org.openmdx.base.naming.Path |
getUser(AccessControl_2.CachedPrincipal principal)
Get user identity for principal.
|
protected org.openmdx.base.naming.Path |
getUserIdentity(AccessControl_2.CachedPrincipal principal)
Get user identity for given principal.
|
protected org.openmdx.base.naming.Path |
getUserIdentity(String qualifiedPrincipalName)
Get user identity for given principal.
|
protected org.openmdx.base.naming.Path |
getUserIdentity(String realmName,
String principalName)
Get user identity for principal of given realm.
|
protected boolean |
isPrincipalGroup(javax.resource.cci.MappedRecord object)
Test whether object is instance of PrincipalGroup.
|
protected boolean |
isSecureObject(javax.resource.cci.MappedRecord object)
Test whether object's type is a subclass of SecureObject.
|
protected boolean |
isSecureObject(org.openmdx.base.mof.cci.ModelElement_1_0 type)
Test whether type is a subclass of SecureObject.
|
boolean |
isUseExtendedAccessLevelBasic() |
protected javax.jdo.PersistenceManager |
newDelegatePersistenceManager(org.openmdx.base.rest.cci.RestConnection connection)
Get delegate persistence manager.
|
protected org.openmdx.base.dataprovider.cci.DataproviderRequestProcessor |
newDelegateRequestProcessor(org.openmdx.base.rest.cci.RestConnection connection) |
protected javax.resource.cci.MappedRecord |
newOperationResult(String recordType)
Create new operation result.
|
protected AccessControl_2.DefaultRealm |
newRealm(org.openmdx.base.naming.Path realmIdentity)
Allows to provide a custom-specific realm implementation.
|
protected org.openmdx.base.rest.cci.ObjectRecord |
retrieveObject(org.openmdx.base.dataprovider.cci.DataproviderRequestProcessor p,
org.openmdx.base.naming.Path resourceIdentifier,
boolean preferringNotFoundException)
Retrieve object with given identity.
|
void |
setConnectionFactory(org.openmdx.base.resource.cci.ConnectionFactory connectionFactory)
Deprecated.
|
void |
setRealmIdentity(org.openmdx.base.naming.Path realmIdentity) |
void |
setUseExtendedAccessLevelBasic(boolean useExtendedAccessLevelBasic) |
protected static final org.openmdx.base.naming.Path EXTENT_PATTERN
protected static final org.openmdx.base.naming.Path USER_HOME_PATH_PATTERN
protected static final String ALL_PERMISSION
protected org.openmdx.base.naming.Path realmIdentity
protected org.openmdx.base.mof.cci.Model_1_0 model
protected boolean useExtendedAccessLevelBasic
protected org.openmdx.base.resource.cci.ConnectionFactory connectionFactory
protected static final ConcurrentMap<org.openmdx.base.naming.Path,Object[]> objectCache
protected static final ConcurrentMap<org.openmdx.base.naming.Path,org.openmdx.base.naming.Path> sharedAssociationToCompositeParentPathMap
public javax.resource.cci.Interaction getInteraction(org.openmdx.base.rest.cci.RestConnection connection) throws javax.resource.ResourceException
javax.resource.ResourceException
protected org.openmdx.base.naming.Path getUserIdentity(AccessControl_2.CachedPrincipal principal)
principal
- protected org.openmdx.base.naming.Path getUserIdentity(String qualifiedPrincipalName)
qualifiedPrincipalName
- protected org.openmdx.base.naming.Path getUserIdentity(String realmName, String principalName)
realmName
- principalName
- protected org.openmdx.base.naming.Path getUser(AccessControl_2.CachedPrincipal principal) throws org.openmdx.base.exception.ServiceException
principal
- org.openmdx.base.exception.ServiceException
protected org.openmdx.base.naming.Path getGroupIdentity(org.openmdx.base.naming.Path accessPath, String qualifiedPrincipalName)
accessPath
- qualifiedPrincipalName
- protected String getQualifiedPrincipalName(org.openmdx.base.naming.Path accessPath, String principalName)
accessPath
- principalName
- protected String getQualifiedPrincipalName(org.openmdx.base.naming.Path principalIdentity)
principalIdentity
- protected org.openmdx.base.dataprovider.cci.DataproviderRequestProcessor newDelegateRequestProcessor(org.openmdx.base.rest.cci.RestConnection connection) throws javax.resource.ResourceException
javax.resource.ResourceException
protected javax.jdo.PersistenceManager newDelegatePersistenceManager(org.openmdx.base.rest.cci.RestConnection connection)
protected org.openmdx.base.rest.cci.ObjectRecord retrieveObject(org.openmdx.base.dataprovider.cci.DataproviderRequestProcessor p, org.openmdx.base.naming.Path resourceIdentifier, boolean preferringNotFoundException) throws javax.resource.ResourceException
identity
- preferringNotFoundException
- org.openmdx.base.exception.ServiceException
javax.resource.ResourceException
protected javax.resource.cci.MappedRecord newOperationResult(String recordType) throws javax.resource.ResourceException
recordType
- javax.resource.ResourceException
protected org.openmdx.base.rest.cci.ResultRecord findObjects(org.openmdx.base.dataprovider.cci.DataproviderRequestProcessor p, org.openmdx.base.naming.Path reference) throws javax.resource.ResourceException
reference
- org.openmdx.base.exception.ServiceException
javax.resource.ResourceException
protected void completeOwningUserAndGroup(org.openmdx.base.rest.cci.ObjectRecord object) throws javax.resource.ResourceException
header
- object
- org.openmdx.base.exception.ServiceException
javax.resource.ResourceException
protected void completeObject(org.openmdx.base.rest.cci.ObjectRecord object) throws javax.resource.ResourceException
header
- object
- org.openmdx.base.exception.ServiceException
javax.resource.ResourceException
protected void completeReply(org.openmdx.base.rest.cci.ResultRecord objects) throws javax.resource.ResourceException
header
- reply
- org.openmdx.base.exception.ServiceException
javax.resource.ResourceException
protected boolean isPrincipalGroup(javax.resource.cci.MappedRecord object) throws org.openmdx.base.exception.ServiceException
object
- org.openmdx.base.exception.ServiceException
protected boolean isSecureObject(javax.resource.cci.MappedRecord object) throws javax.resource.ResourceException
object
- org.openmdx.base.exception.ServiceException
javax.resource.ResourceException
protected boolean isSecureObject(org.openmdx.base.mof.cci.ModelElement_1_0 type) throws org.openmdx.base.exception.ServiceException
type
- org.openmdx.base.exception.ServiceException
protected List<String> getPrincipalChain(javax.resource.cci.Connection connection) throws javax.resource.ResourceException
header
- javax.resource.ResourceException
protected AccessControl_2.DefaultRealm newRealm(org.openmdx.base.naming.Path realmIdentity) throws javax.resource.ResourceException
javax.resource.ResourceException
protected AccessControl_2.DefaultRealm getRealm(org.openmdx.base.rest.cci.RequestRecord request, List<String> principalChain, javax.jdo.PersistenceManager pm) throws javax.resource.ResourceException
header
- request
- org.openmdx.base.exception.ServiceException
javax.resource.ResourceException
protected org.openmdx.base.mof.cci.ModelElement_1_0 getReferencedType(org.openmdx.base.naming.Path accessPath, List<org.openmdx.application.dataprovider.cci.FilterProperty> filter) throws org.openmdx.base.exception.ServiceException
accessPath
- filter
- org.openmdx.base.exception.ServiceException
protected static ConcurrentMap<org.openmdx.base.naming.Path,Object[]> getObjectCache()
public org.openmdx.base.naming.Path getRealmIdentity()
public void setRealmIdentity(org.openmdx.base.naming.Path realmIdentity)
realmIdentity
- the realmIdentity to setpublic boolean isUseExtendedAccessLevelBasic()
public void setUseExtendedAccessLevelBasic(boolean useExtendedAccessLevelBasic)
useExtendedAccessLevelBasic
- the useExtendedAccessLevelBasic to setpublic org.openmdx.base.resource.cci.ConnectionFactory getConnectionFactory()
public void setConnectionFactory(org.openmdx.base.resource.cci.ConnectionFactory connectionFactory)
connectionFactory
- the connectionFactory to setThis software is published under the BSD license. Copyright © 2003-${build.year}, CRIXP AG, Switzerland, All rights reserved. Use is subject to license terms.