Package | Description |
---|---|
com.sas.hls.security.privilege |
Class definitions for identifying and using privileges in the system.
|
com.sas.hls.security.privilege.exception |
Exceptions that can be thrown while manipulating or accessing privileges in the system.
|
com.sas.hls.security.role |
Service and class definitions for manipulating and creating roles, their
availability in contexts, and their membership lists.
|
com.sas.hls.security.role.exception |
Exceptions that can be thrown while manipulating roles or using the roleDefinitionService or roleAssignmentService.
|
Modifier and Type | Field and Description |
---|---|
static Privilege |
GlobalPrivileges.PRIVILEGE_ALLOW_DOWNLOAD
Global privilege allows users to download file content from the repository or workspace.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_ALLOW_VISUAL_ANALYTICS
Global privilege allows users to provide files for SAS Visual Analytics.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_AUDIT_REPORTING
Global privilege allows users to view the audit trail for the entire system.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_AUDIT_VIEWING
Global privilege allows users to view the audit trail for specific objects in the system they have access rights
to view.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_CREATE_MESSAGE
Global privilege allows users to send internal messages to other users within the system.
|
static Privilege |
Privileges.PRIVILEGE_CREATE_PROCESS_FLOWS
Scoped privilege allows users to create process flows within the repository.
|
static Privilege |
Privileges.PRIVILEGE_DISABLE_VERSIONING
Scoped privilege allows users to disable versioning on versioned files.
|
static Privilege |
Privileges.PRIVILEGE_ENABLE_VERSIONING
Scoped privilege allows users to enable versioning on unversioned files.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_GOVERN_STANDARDS
Global privilege allows users to create and update data standards within the repository.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_ALL_SCHEDULES
Global privilege allows users to manage schedules created by other users.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_ALL_SESSIONS
Global privilege allows users to manage SAS Sessions created by other users.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_ALL_SUBSCRIPTIONS
Global privilege allows users to manage subscriptions created by other users.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_CHECKEDOUT_FILES
Global privilege allows users to manage checked out files that are checked out by other users.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_EXTENDED_ATTRIBUTES
Global privilege allows users to create and manage extended attributes within the system.
|
static Privilege |
Privileges.PRIVILEGE_MANAGE_LOCKS
Scoped privilege allows users to create and manage locks on files.
|
static Privilege |
Privileges.PRIVILEGE_MANAGE_MEMBERSHIP
Scoped privilege allows users to manage the memberships of the organization, projects and analyses.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_MESSAGE_OF_THE_DAY
Global privilege allows users to edit the "Message of the Day" message that application users see in their
dashboard view.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_PROCESS_FLOW_DEFINITIONS
Global privilege allows users to manage process flow definitions within the repository.
|
static Privilege |
Privileges.PRIVILEGE_MANAGE_PROCESS_FLOWS
Scoped privilege allows users to manage process flows owned by other users.
|
static Privilege |
Privileges.PRIVILEGE_MANAGE_ROLES
Scoped privilege allows users to manage role definitions, role assignments and role memberships for the
organization, projects and analyses.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_SCHEDULES
Global privilege allows users to create and manage their own schedules.
|
static Privilege |
Privileges.PRIVILEGE_MANAGE_STATE
Scoped privilege allows users to manage the "State" of projects and analyses.
|
static Privilege |
Privileges.PRIVILEGE_MANAGE_STUDIES
Scoped privilege allows users to manage studies.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_USER_ACCOUNTS
Global privilege allows users to create and manage user accounts within the system.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_MANAGE_USERS
Global privilege allows users to manage user detail information within the system.
|
static Privilege |
Privileges.PRIVILEGE_OPEN_CONTEXT
Scoped privilege allows users open context and view details.
|
static Privilege |
Privileges.PRIVILEGE_PERMANENTLY_DELETE
Scoped privilege allows users to permanently delete objects that were logically deleted by other users.
|
static Privilege |
Privileges.PRIVILEGE_PROCESS_FLOW_ADMINISTRATION
Scoped privilege allows users to take ownership of process flows owned by other users.
|
static Privilege |
Privileges.PRIVILEGE_RESTORE
Scoped privilege allows users to restore objects that were logically deleted by other users.
|
static Privilege |
Privileges.PRIVILEGE_SIGN_FILE
Scoped privilege allows users to electronically sign files within the repository.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_SUBMIT_SESSION
Global privilege allows users to submit and execute SAS code within the system.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_VIEW_USERS
Global privilege allows users to view all users.
|
static Privilege |
GlobalPrivileges.PRIVILEGE_WEBDAV_ACCESS
Global privilege allows users to connect and access all WebDAV functionality.
|
Modifier and Type | Field and Description |
---|---|
static Set<Privilege> |
GlobalPrivileges.ALL_GLOBAL_PRIVILEGES
Complete set of global privileges within the system.
|
static Set<Privilege> |
Privileges.ALL_SCOPED_PRIVILEGES
Complete set of scoped privileges within the system.
|
Modifier and Type | Method and Description |
---|---|
Set<Privilege> |
GlobalPrivilegeAssignmentService.getAvailablePrivileges()
Returns a list of global privileges that are available for global assignment.
|
Set<Privilege> |
PrivilegeService.getAvailablePrivileges(PrivilegeContext context)
Get the set of privileges available at a given context.
|
Set<Privilege> |
GlobalPrivilegeAssignmentService.getGrantedPrivileges(UserDescriptor user)
Get the set of privileges which are granted to a user.
|
Modifier and Type | Method and Description |
---|---|
int |
Privilege.compareTo(Privilege p)
Compares this object with the specified object for order.
|
Set<UserDescriptor> |
GlobalPrivilegeAssignmentService.getGrantees(Privilege privilege)
Get the set of users who have been granted the specified privilege
|
void |
GlobalPrivilegeAssignmentService.grantPrivilege(UserDescriptor user,
Privilege privilege)
Directly grant a privilege to a specified user.
|
boolean |
GlobalPrivilegeAssignmentService.hasPrivilege(UserDescriptor user,
Privilege privilege)
Does the specified user have a certain privilege
|
void |
GlobalPrivilegeAssignmentService.revokePrivilege(UserDescriptor user,
Privilege privilege)
Revoke a privilege directly given to a user.
|
Modifier and Type | Method and Description |
---|---|
Set<UserDescriptor> |
GlobalPrivilegeAssignmentService.getAllGrantees(Set<Privilege> privileges)
Return a list of users which have ANY of the specified privileges granted
|
void |
GlobalPrivilegeAssignmentService.grantPrivileges(UserDescriptor user,
Set<Privilege> privileges)
Directly grant privileges to a specified user.
|
void |
GlobalPrivilegeAssignmentService.grantPrivilegesToPrincipals(Set<? extends UserDescriptor> users,
Set<Privilege> privileges)
Directly grant privileges to the specified principals.
|
void |
GlobalPrivilegeAssignmentService.revokePrivileges(UserDescriptor user,
Set<Privilege> privileges)
Revoke a set of privileges directly given to a user.
|
void |
GlobalPrivilegeAssignmentService.revokePrivilegesFromPrincipals(Set<? extends UserDescriptor> users,
Set<Privilege> privileges)
Revoke a set of privileges directly given to a user.
|
void |
GlobalPrivilegeAssignmentService.setPrivileges(UserDescriptor user,
Set<Privilege> privileges)
Set what privileges are directly given to a specified user.
|
Modifier and Type | Method and Description |
---|---|
Set<Privilege> |
PrivilegeExistsException.getExistingPrivileges()
Get the set of privileges which were already defined.
|
Set<Privilege> |
InvalidPrivilegeException.getInvalidPrivileges()
Get the set of privileges which were found to be invalid.
|
Set<Privilege> |
PrivilegeNotFoundException.getNotFoundPrivileges()
Get the set of privileges which were not found.
|
Constructor and Description |
---|
InvalidPrivilegeException(String message,
Set<Privilege> invalidPrivileges)
Constructor specifying multiple invalid privileges
|
PrivilegeExistsException(String message,
Set<Privilege> existingPrivs)
Constructor when multiple privileges are found to be already defined
|
PrivilegeNotFoundException(String message,
Set<Privilege> notFoundPrivileges)
Constructor with detailed message and set of privileges which were not found on the server.
|
Modifier and Type | Method and Description |
---|---|
Set<Privilege> |
Role.getPrivileges()
Get the privileges associated with this role.
|
Modifier and Type | Method and Description |
---|---|
Set<RoleDescriptor> |
RoleDefinitionService.getAllRolesByPrivilege(Privilege privilege)
Get all roles defined which include the specified privilege.
|
Set<RoleDescriptor> |
RoleDefinitionService.getRolesByPrivilege(RoleContext roleContext,
Privilege privilege)
Get all roles defined in a given context which include the specified privilege.
|
boolean |
RoleAssignmentService.hasPrivilegeAtContext(Privilege privilege,
RoleContext roleContext,
Principal member)
Check if the principal has the privilege at the given context.
|
Modifier and Type | Method and Description |
---|---|
Role |
RoleDefinitionService.createRole(RoleContext roleContext,
String name,
String description,
Set<Privilege> privileges)
Create a role and assign role to the specified context.
|
void |
Role.setPrivileges(Set<Privilege> privileges)
Set the privileges associated with this role.
|
Constructor and Description |
---|
Role(Identifiable roleContext,
String name,
String identifier,
String description,
Set<Privilege> privileges)
Constructor
|
Role(ObjectIdentity roleContext,
String name,
String identifier,
String description,
Set<Privilege> privileges)
Constructor
|
Role(ObjectIdentity roleContext,
String name,
String identifier,
String description,
Set<Privilege> privileges,
long revision)
Constructor (internal version)
|
Modifier and Type | Method and Description |
---|---|
Set<Privilege> |
InvalidRolePrivilegeException.getInvalidPrivileges()
Returns the set of privileges which cannot be assigned to the specified role.
|
Constructor and Description |
---|
InvalidRolePrivilegeException(Set<Privilege> invalidPrivileges,
String message)
Constructs an
InvalidRolePrivilegeException with the invalid privileges and specified message. |
Copyright (c) 2017, SAS Institute Inc., Cary, NC, USA