public interface ISecurityManager
Modifier and Type | Method and Description |
---|---|
List |
getSupportedPermissions(IResourceHandle resourceHandle)
Get list of permissions which are supported by the security manager for the
given resource handle, e.g. outcome depends on whether the resource is a
collection or not.
|
boolean |
isAllowed(IResourceHandle resourceHandle,
IPrincipal principal,
IPermission permission)
Checks whether the given principal has the given permission on the given
resource handle.
|
boolean |
isAllowed(IResourceHandle resourceHandle,
IPrincipal principal,
List permissions)
Checks whether the given principal has all of the given permissions on the
given resource handle.
|
Set |
isAllowed(List ridList,
IPrincipal principal,
IPermission permission)
Checks whether the given principal has the given permission on the given
resource identifiers.
|
Set |
isAllowed(List ridList,
IPrincipal principal,
List permissions)
Checks whether the given principal has all of the given permissions on the
given resource identifiers.
|
List getSupportedPermissions(IResourceHandle resourceHandle) throws ResourceException
resourceHandle
- resource handle. May be null
- all supported permissions are returned in this case.IPermission
- can be empty but not null
.ResourceException
- when the resource handle is invalidboolean isAllowed(IResourceHandle resourceHandle, IPrincipal principal, IPermission permission) throws ResourceException
resourceHandle
- resource handleprincipal
- principal for whom the permissions are checkedpermission
- single permission to checkResourceException
- when wrong parameterizedboolean isAllowed(IResourceHandle resourceHandle, IPrincipal principal, List permissions) throws ResourceException
resourceHandle
- resource handleprincipal
- principal for whom the permissions are checkedpermissions
- list of permissions to checkResourceException
- when wrong parameterizedSet isAllowed(List ridList, IPrincipal principal, IPermission permission) throws ResourceException, OperationNotCompletedException
Note: This method needs not to be handled atomically! Although this operation may fail in parts, the operation on one of the many operands provided through the parameter list is always expected to be atomic!
ridList
- list of resource identifiersprincipal
- principal for whom the permissions are checkedpermission
- single permission to checkResourceException
- when wrong parameterizedOperationNotCompletedException
- when the operation failed in
partsSet isAllowed(List ridList, IPrincipal principal, List permissions) throws ResourceException, OperationNotCompletedException
Note: This method needs not to be handled atomically! Although this operation may fail in parts, the operation on one of the many operands provided through the parameter list is always expected to be atomic!
ridList
- list of resource identifiersprincipal
- principal for whom the permissions are checkedpermissions
- list of permissions to checkResourceException
- when wrong parameterizedOperationNotCompletedException
- when the operation failed in
partsAccess Rights |
---|
SC | DC | Public Part | ACH |
---|---|---|---|
[sap.com] KMC-CM
|
[sap.com] tc/km/frwk
|
api
|
EP-KM-CM
|
[sap.com] KMC-WPC
|
[sap.com] tc/kmc/wpc/wpcfacade
|
api
|
EP-PIN-WPC-WCM
|
Copyright 2018 SAP AG Complete Copyright Notice