public class AclAuthorizationStrategyImpl extends Object implements AclAuthorizationStrategy
AclAuthorizationStrategy
.
Permission will be granted if at least one of the following conditions is true for the current principal.
GrantedAuthority
injected into the
constructor.BasePermission.ADMINISTRATION
permission (as defined by the ACL).CHANGE_AUDITING, CHANGE_GENERAL, CHANGE_OWNERSHIP
Constructor and Description |
---|
AclAuthorizationStrategyImpl(GrantedAuthority... auths)
Constructor.
|
Modifier and Type | Method and Description |
---|---|
protected Sid |
createCurrentUser(Authentication authentication)
Creates a principal-like sid from the authentication information.
|
void |
securityCheck(Acl acl,
int changeType) |
void |
setSidRetrievalStrategy(SidRetrievalStrategy sidRetrievalStrategy) |
public AclAuthorizationStrategyImpl(GrantedAuthority... auths)
GrantedAuthority
instances that can be held to always permit ACL changes.auths
- the GrantedAuthority
s that have special permissions
(index 0 is the authority needed to change ownership, index 1 is the authority
needed to modify auditing details, index 2 is the authority needed to change other
ACL and ACE details) (required)
Alternatively, a single value can be supplied for all three permissions.
public void securityCheck(Acl acl, int changeType)
securityCheck
in interface AclAuthorizationStrategy
protected Sid createCurrentUser(Authentication authentication)
authentication
- the authentication information that can provide principal and
thus the sid's id will be dependant on the value insidepublic void setSidRetrievalStrategy(SidRetrievalStrategy sidRetrievalStrategy)