public class GrouperNonDbAttrDefAdapter extends BaseAttrDefAdapter implements AttributeDefAdapter
Modifier and Type | Field and Description |
---|---|
protected static Map<Privilege,String> |
priv2list |
Constructor and Description |
---|
GrouperNonDbAttrDefAdapter() |
Modifier and Type | Method and Description |
---|---|
Set<AttributeDef> |
getAttributeDefsWhereSubjectDoesHavePrivilege(GrouperSession grouperSession,
String stemId,
Stem.Scope scope,
Subject subject,
Privilege privilege,
boolean considerAllSubject,
String sqlLikeString)
Get all attributedefs where this subject does have this privilege.
|
Set<AttributeDef> |
getAttributeDefsWhereSubjectDoesntHavePrivilege(GrouperSession grouperSession,
String stemId,
Stem.Scope scope,
Subject subject,
Privilege privilege,
boolean considerAllSubject,
String sqlLikeString)
Get all attributedefs where this subject doesnt have this privilege.
|
Set<AttributeDef> |
getAttributeDefsWhereSubjectHasPriv(GrouperSession s,
Subject subj,
Privilege priv)
Get all attribute defs where this subject has this privilege.
|
Set<AttributeDefPrivilege> |
getPrivs(GrouperSession grouperSession,
AttributeDef attributeDef,
Subject subj)
Get all privileges held by this subject on this attribute definition.
|
Set |
getSubjectsWithPriv(GrouperSession s,
AttributeDef attributeDef,
Privilege priv)
Get all subjects with this privilege on this attribute definition.
|
void |
grantPriv(GrouperSession s,
AttributeDef attributeDef,
Subject subj,
Privilege priv,
String uuid)
Grant the privilege to the subject on this attrDef.
|
boolean |
hasPriv(GrouperSession grouperSession,
AttributeDef attributeDef,
Subject subj,
Privilege priv)
Check whether the subject has this privilege on this attrDef.
|
void |
privilegeCopy(GrouperSession s,
AttributeDef attributeDef1,
AttributeDef attributeDef2,
Privilege priv)
Copies privileges for subjects that have the specified privilege on g1 to g2.
|
void |
privilegeCopy(GrouperSession s,
Subject subj1,
Subject subj2,
Privilege priv)
Copies privileges of type priv on any subject for the given Subject subj1 to the given Subject subj2.
|
Set<PrivilegeSubjectContainer> |
retrievePrivileges(GrouperSession grouperSession,
AttributeDef attributeDef,
Set<Privilege> privileges,
MembershipType membershipType,
QueryPaging queryPaging,
Set<Member> additionalMembers)
get a list of privilege subjects, there are no results with the same subject/privilege combination
|
void |
revokeAllPrivilegesForSubject(GrouperSession grouperSession,
Subject subject)
Revoke all access privileges that this subject has.
|
void |
revokePriv(GrouperSession grouperSession,
AttributeDef attributeDef,
Privilege priv)
Revoke this privilege from everyone on this attrDef.
|
void |
revokePriv(GrouperSession grouperSession,
AttributeDef attributeDef,
Subject subj,
Privilege priv)
Revoke the privilege from the subject on this attrDef.
|
hqlFilterAttrDefsWhereClause, hqlFilterAttributeDefsNotWithPrivWhereClause, hqlFilterAttributeDefsWithPrivWhereClause, postHqlFilterAttributeAssigns, postHqlFilterAttributeDefs, postHqlFilterPermissions, postHqlFilterPITAttributeAssigns
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
hqlFilterAttrDefsWhereClause, hqlFilterAttributeDefsNotWithPrivWhereClause, hqlFilterAttributeDefsWithPrivWhereClause, postHqlFilterAttributeAssigns, postHqlFilterAttributeDefs, postHqlFilterPermissions, postHqlFilterPITAttributeAssigns
public Set getSubjectsWithPriv(GrouperSession s, AttributeDef attributeDef, Privilege priv) throws SchemaException
AttributeDefAdapter
Set admins = ap.getSubjectsWithPriv(s, attrDef, AccessPrivilege.ADMIN);
getSubjectsWithPriv
in interface AttributeDefAdapter
s
- Get privileges within this session context.attributeDef
- Get privileges on this attribute definition.priv
- Get this privilege.Subject
objects.SchemaException
AttributeDefAdapter.getSubjectsWithPriv(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.grouper.privs.Privilege)
public Set<AttributeDef> getAttributeDefsWhereSubjectHasPriv(GrouperSession s, Subject subj, Privilege priv) throws SchemaException
AttributeDefAdapter
try { Set isAdmin = ap.getAttributeDefsWhereSubjectHasPriv( s, subj, AccessPrivilege.ADMIN ); } catch (SchemaException eS) { // Invalid priv }
getAttributeDefsWhereSubjectHasPriv
in interface AttributeDefAdapter
s
- Get privileges within this session context.subj
- Get privileges for this subject.priv
- Get this privilege.AttributeDef
objects.SchemaException
AttributeDefAdapter.getAttributeDefsWhereSubjectHasPriv(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.privs.Privilege)
public Set<AttributeDefPrivilege> getPrivs(GrouperSession grouperSession, AttributeDef attributeDef, Subject subj)
AttributeDefAdapter
Set privs = ap.getPrivs(s, g, subj);
getPrivs
in interface AttributeDefAdapter
grouperSession
- Get privileges within this session context.attributeDef
- Get privileges on this attrDef.subj
- Get privileges for this member.AttributeDefAdapter.getPrivs(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.subject.Subject)
public void grantPriv(GrouperSession s, AttributeDef attributeDef, Subject subj, Privilege priv, String uuid) throws GrantPrivilegeException, InsufficientPrivilegeException, SchemaException
AttributeDefAdapter
try { ap.grantPriv(s, g, subj, AccessPrivilege.ADMIN); } catch (GrantPrivilegeException e0) { // Unable to grant the privilege } catch (InsufficientPrivilegeException e1) { // Not privileged to grant the privilege } catch (SchemaException e2) { // Invalid privilege }
grantPriv
in interface AttributeDefAdapter
s
- Grant privilege in this session context.attributeDef
- Grant privilege on this attrDef.subj
- Grant privilege to this subject.priv
- Grant this privilege.uuid
- is uuid or null if assign oneGrantPrivilegeException
InsufficientPrivilegeException
SchemaException
AttributeDefAdapter.grantPriv(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.privs.Privilege, String)
public boolean hasPriv(GrouperSession grouperSession, AttributeDef attributeDef, Subject subj, Privilege priv) throws SchemaException
AttributeDefAdapter
try { ap.hasPriv(s, g, subject, AccessPrivilege.ADMIN); } catch (SchemaException e) { // Invalid privilege }
hasPriv
in interface AttributeDefAdapter
grouperSession
- Check privilege in this session context.attributeDef
- Check privilege on this attrDef.subj
- Check privilege for this subject.priv
- Check this privilege.SchemaException
AttributeDefAdapter.hasPriv(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.privs.Privilege)
public void privilegeCopy(GrouperSession s, AttributeDef attributeDef1, AttributeDef attributeDef2, Privilege priv) throws InsufficientPrivilegeException, GrantPrivilegeException, SchemaException
AttributeDefAdapter
privilegeCopy
in interface AttributeDefAdapter
InsufficientPrivilegeException
GrantPrivilegeException
SchemaException
AttributeDefAdapter.privilegeCopy(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.grouper.privs.Privilege)
public void privilegeCopy(GrouperSession s, Subject subj1, Subject subj2, Privilege priv) throws InsufficientPrivilegeException, GrantPrivilegeException, SchemaException
AttributeDefAdapter
privilegeCopy
in interface AttributeDefAdapter
InsufficientPrivilegeException
GrantPrivilegeException
SchemaException
AttributeDefAdapter.privilegeCopy(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.privs.Privilege)
public void revokePriv(GrouperSession grouperSession, AttributeDef attributeDef, Privilege priv) throws InsufficientPrivilegeException, RevokePrivilegeException, SchemaException
AttributeDefAdapter
try { ap.revokePriv(s, g, AccessPrivilege.ADMIN); } catch (InsufficientPrivilegeException eIP) { // Not privileged to revoke the privilege } catch (RevokePrivilegeException eRP) { // Unable to revoke the privilege }
revokePriv
in interface AttributeDefAdapter
grouperSession
- Revoke privilege in this session context.attributeDef
- Revoke privilege on this group.priv
- Revoke this privilege.InsufficientPrivilegeException
RevokePrivilegeException
SchemaException
AttributeDefAdapter.revokePriv(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.grouper.privs.Privilege)
public void revokePriv(GrouperSession grouperSession, AttributeDef attributeDef, Subject subj, Privilege priv) throws InsufficientPrivilegeException, RevokePrivilegeException, SchemaException
AttributeDefAdapter
try { ap.revokePriv(s, g, subj, AccessPrivilege.ADMIN); } catch (InsufficientPrivilegeException eIP) { // Not privileged to revoke the privilege } catch (RevokePrivilegeException eRP) { // Unable to revoke the privilege }
revokePriv
in interface AttributeDefAdapter
grouperSession
- Revoke privilege in this session context.attributeDef
- Revoke privilege on this attrDef.subj
- Revoke privilege from this subject.priv
- Revoke this privilege.InsufficientPrivilegeException
RevokePrivilegeException
SchemaException
AttributeDefAdapter.revokePriv(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.privs.Privilege)
public void revokeAllPrivilegesForSubject(GrouperSession grouperSession, Subject subject)
AttributeDefAdapter
public Set<AttributeDef> getAttributeDefsWhereSubjectDoesntHavePrivilege(GrouperSession grouperSession, String stemId, Stem.Scope scope, Subject subject, Privilege privilege, boolean considerAllSubject, String sqlLikeString)
getAttributeDefsWhereSubjectDoesntHavePrivilege
in interface AttributeDefAdapter
grouperSession
- stemId
- scope
- subject
- privilege
- considerAllSubject
- sqlLikeString
- public Set<PrivilegeSubjectContainer> retrievePrivileges(GrouperSession grouperSession, AttributeDef attributeDef, Set<Privilege> privileges, MembershipType membershipType, QueryPaging queryPaging, Set<Member> additionalMembers)
AttributeDefAdapter
retrievePrivileges
in interface AttributeDefAdapter
grouperSession
- grouper sessionattributeDef
- to search onprivileges
- if blank, get allmembershipType
- if immediate, effective, or blank for allqueryPaging
- if a certain page should be returned based on subjectadditionalMembers
- additional members to query that the user is finding or addingAttributeDefAdapter.retrievePrivileges(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.grouper.attr.AttributeDef, java.util.Set, edu.internet2.middleware.grouper.membership.MembershipType, edu.internet2.middleware.grouper.internal.dao.QueryPaging, Set)
public Set<AttributeDef> getAttributeDefsWhereSubjectDoesHavePrivilege(GrouperSession grouperSession, String stemId, Stem.Scope scope, Subject subject, Privilege privilege, boolean considerAllSubject, String sqlLikeString)
getAttributeDefsWhereSubjectDoesHavePrivilege
in interface AttributeDefAdapter
grouperSession
- stemId
- scope
- subject
- privilege
- considerAllSubject
- sqlLikeString
- Copyright © 2016 Internet2. All rights reserved.