USER
- is the generic type of the users to authorize.OPERATION
- is the generic type of the operations to perform.OBJECT
- is the generic type of the object to perform the operation
on.public interface DataRelatedAuthorizationManager<USER extends Principal,OPERATION,OBJECT> extends AuthorizationManager<USER,OPERATION>
AuthorizationManager
that is is related
to the data object an operation is performed on. E.g. a user could be allowed
to modify customers but only if they are located in Germany. Modifier and Type | Method and Description |
---|---|
boolean |
isPermitted(USER user,
OPERATION operation,
OBJECT object)
This method determines if the given
user is permitted to
perform the given operation on the given object . |
void |
verifyPermission(USER user,
OPERATION operation,
OBJECT object)
This method verifies that the given
user
is permitted to perform the
given operation on the given object . |
isPermitted, verifyPermission
boolean isPermitted(USER user, OPERATION operation, OBJECT object)
user
is permitted to
perform the given operation
on the given object
.user
- is the user to authorize.operation
- is the operation the user intends to perform.object
- is the object the user intends to perform the operation on.true
if the user
is permitted to perform
the given operation
, false
otherwise.verifyPermission(Principal, Object, Object)
void verifyPermission(USER user, OPERATION operation, OBJECT object) throws SecurityException
user
is permitted
to perform the
given operation
on the given object
.user
- is the user to authorize.operation
- is the operation the user intends to perform.object
- is the object the user intends to perform the operation on.SecurityException
- if the given user
is NOT permitted
to perform the given operation
.Copyright © 2001–2014 mmm-Team. All rights reserved.