Interfaces and shared classes to manage access control lists (ACLs) for domain object instances.
Interface Summary Interface Description AccessControlEntryRepresents an individual permission assignment within an
AclRepresents an access control list (ACL) for a domain object. AclCacheA caching layer for
AclServiceProvides retrieval of
AuditableAccessControlEntryRepresents an ACE that provides auditing information. AuditableAclA mutable ACL that provides audit capabilities. MutableAclA mutable Acl. MutableAclServiceProvides support for creating and storing
ObjectIdentityRepresents the identity of an individual domain object instance. ObjectIdentityGeneratorStrategy which creates an
ObjectIdentityfrom an object identifier (such as a primary key) and type information.
ObjectIdentityRetrievalStrategyStrategy interface that provides the ability to determine which
ObjectIdentitywill be returned for a particular domain object
OwnershipAclA mutable ACL that provides ownership capabilities. PermissionRepresents a permission granted to a Sid for a given domain object. PermissionGrantingStrategyAllow customization of the logic for determining whether a permission or permissions are granted to a particular sid or sids by an
SidA security identity recognised by the ACL system. SidRetrievalStrategy
Exception Summary Exception Description AclDataAccessExceptionAbstract base class for Acl data operations. AlreadyExistsExceptionThrown if an
Aclentry already exists for the object.
ChildrenExistExceptionThrown if an
Aclcannot be deleted because children
NotFoundExceptionThrown if an ACL-related object cannot be found. UnloadedSidExceptionThrown if an
Aclcannot perform an operation because it only loaded a subset of
Sids and the caller has requested details for an unloaded