|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface AclService
Service that provides a way to manipulate owner and permission information of an object. The owner and permission
information are defined in an access control list or Acl
. An acl can only be defined for an object that is
AclSecurable
. An acl contains a set of AclEntry
objects which define permissions for a specific
AclPrincipal
. By default, an acl has an AclEntry for the AclOwner
and one for AclMembers
.
Each acl is required to have these two entries. The AclMembers entry represents the members of the parent context of
the AclSecurable object. AclEntries for specific users and groups may also be added to an acl. Each AclEntry consists
of a principal and five permissions: ADMIN, READ, WRITE_PROPERTIES, WRITE_CONTENT, and DELETE. Note that read and
admin permissions can not be taken away from the AclOwner.
Permissions can be set at several levels. Permissions assigned at a specific level override permissions assigned at a
more general level. Here are the levels from specific to general:
owner individual group member of the organization, a project or an analysis
Method Summary | |
---|---|
Acl |
getAcl(AclSecurable aclSecurable)
Gets the acl for the object. |
AclContainer |
getAclContainer(AclContainerSecurable aclContainerSecurable)
Gets the AclContainer for the specified container |
Acl |
updateAcl(AclSecurable aclSecurable,
Acl acl)
Updates the specified object with the acl |
AclContainer |
updateAclContainer(AclContainerSecurable aclContainerSecurable,
AclContainer aclContainer)
Updates the specified container with the aclContainer |
Method Detail |
---|
Acl getAcl(AclSecurable aclSecurable) throws ObjectNotFoundException, PrincipalNotFoundException
aclSecurable
- securable object in which to get the acl
ObjectNotFoundException
- Thrown if the specified object no longer exists
PrincipalNotFoundException
- Thrown if a user or group associated with the acl no longer existsAclContainer getAclContainer(AclContainerSecurable aclContainerSecurable) throws ObjectNotFoundException, PrincipalNotFoundException
aclContainerSecurable
- securable container in which to get the acl
ObjectNotFoundException
- Thrown if the specified object no longer exists
PrincipalNotFoundException
- Thrown if a user or group associated with the acl no longer existsAcl updateAcl(AclSecurable aclSecurable, Acl acl) throws AclUpdateException
aclSecurable
- the object whose acl will be updatedacl
- acl to set on the specified object
AclUpdateException
- Thrown if the specified acl can not be updated for the given objectAclContainer updateAclContainer(AclContainerSecurable aclContainerSecurable, AclContainer aclContainer) throws AclUpdateException
aclContainerSecurable
- the container whose acl will be updatedaclContainer
- aclContainer to set on the specified container
AclUpdateException
- Thrown if the specified acl can not be updated for the given container
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |