Package org.springframework.security.acls.model
Interfaces and shared classes to manage access control lists (ACLs) for domain object instances.
-
Interface Summary Interface Description AccessControlEntry Represents an individual permission assignment within anAcl
.Acl Represents an access control list (ACL) for a domain object.AclCache A caching layer forJdbcAclService
.AclService Provides retrieval ofAcl
instances.AuditableAccessControlEntry Represents an ACE that provides auditing information.AuditableAcl A mutable ACL that provides audit capabilities.MutableAcl A mutable Acl.MutableAclService Provides support for creating and storingAcl
instances.ObjectIdentity Represents the identity of an individual domain object instance.ObjectIdentityGenerator Strategy which creates anObjectIdentity
from an object identifier (such as a primary key) and type information.ObjectIdentityRetrievalStrategy Strategy interface that provides the ability to determine whichObjectIdentity
will be returned for a particular domain objectOwnershipAcl A mutable ACL that provides ownership capabilities.Permission Represents a permission granted to a Sid for a given domain object.PermissionGrantingStrategy Allow customization of the logic for determining whether a permission or permissions are granted to a particular sid or sids by anAcl
.Sid A security identity recognised by the ACL system.SidRetrievalStrategy Strategy interface that provides an ability to determine theSid
instances applicable for anAuthentication
. -
Exception Summary Exception Description AclDataAccessException Abstract base class for Acl data operations.AlreadyExistsException Thrown if anAcl
entry already exists for the object.ChildrenExistException Thrown if anAcl
cannot be deleted because childrenAcl
s exist.NotFoundException Thrown if an ACL-related object cannot be found.UnloadedSidException Thrown if anAcl
cannot perform an operation because it only loaded a subset ofSid
s and the caller has requested details for an unloadedSid
.