org.springframework.security.access
Interface PermissionEvaluator
- All Known Implementing Classes:
- AclPermissionEvaluator
public interface PermissionEvaluator
Strategy used in expression evaluation to determine whether a user has a permission or permissions
for a given domain object.
- Since:
- 3.0
- Version:
- $Id: PermissionEvaluator.java 3650 2009-05-11 05:18:20Z ltaylor $
- Author:
- Luke Taylor
hasPermission
boolean hasPermission(Authentication authentication,
Object targetDomainObject,
Object permission)
- Parameters:
authentication
- represents the user in question. Should not be null.targetDomainObject
- the domain object for which permissions should be checked. May be null
in which case implementations should return false, as the null condition can be checked explicitly
in the expression.permission
- a representation of the permission object as supplied by the expression system. Not null.
- Returns:
- true if the permission is granted, false otherwise
hasPermission
boolean hasPermission(Authentication authentication,
Serializable targetId,
String targetType,
Object permission)
- Alternative method for evaluating a permission where only the identifier of the target object
is available, rather than the target instance itself.
- Parameters:
authentication
- represents the user in question. Should not be null.targetId
- the identifier for the object instance (usually a Long)targetType
- a String representing the target's type (usually a Java classname). Not null.permission
- a representation of the permission object as supplied by the expression system. Not null.
- Returns:
- true if the permission is granted, false otherwise
Copyright © 2004-2009 SpringSource, Inc. All Rights Reserved.