Class PermissionRoleDelegate

java.lang.Object
edu.internet2.middleware.grouper.permissions.PermissionRoleDelegate
All Implemented Interfaces:
Serializable

public class PermissionRoleDelegate extends Object implements Serializable
delegate the role
See Also:
  • Constructor Details

    • PermissionRoleDelegate

      public PermissionRoleDelegate(Group group1)
      Parameters:
      group1 -
  • Method Details

    • assignRolePermission

      @Deprecated public AttributeAssignResult assignRolePermission(AttributeDefName attributeDefName)
      Deprecated.
      use assignRolePermission(attributeDefName, permissionAllowed) instead, will be removed some time after 2.0
      add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission
      Parameters:
      attributeDefName -
      Returns:
      if new, and the assignment
    • assignRolePermission

      public AttributeAssignResult assignRolePermission(AttributeDefName attributeDefName, PermissionAllowed permissionAllowed)
      add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission
      Parameters:
      attributeDefName -
      permissionAllowed -
      Returns:
      if new, and the assignment
    • removeRolePermission

      public AttributeAssignResult removeRolePermission(AttributeDefName attributeDefName)
      remove a permission from a role, which means that any subject in the role will not directly have this permission, and any role in the roleSet directed graph will also not get this permission from this role
      Parameters:
      attributeDefName -
      Returns:
      result
    • retrieveAssignment

      public AttributeAssign retrieveAssignment(Member member, String action, AttributeDefName attributeDefName, boolean checkSecurity, boolean exceptionfNotFound)
      Parameters:
      member -
      action -
      attributeDefName -
      checkSecurity -
      exceptionfNotFound -
      Returns:
      the assignment
    • assignSubjectRolePermission

      @Deprecated public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Subject subject)
      Deprecated.
      use assignSubjectRolePermission(attributeDefName, subject, permissionAllowed) will be removed some time after 2.0
      add a permission to a role / subject pair (effective membership)
      Parameters:
      attributeDefName -
      subject -
      Returns:
      if new, and the assignment
    • assignSubjectRolePermission

      public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Subject subject, PermissionAllowed permissionAllowed)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      attributeDefName -
      subject -
      permissionAllowed -
      Returns:
      if new, and the assignment
    • removeSubjectRolePermission

      public AttributeAssignResult removeSubjectRolePermission(AttributeDefName attributeDefName, Subject subject)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      attributeDefName -
      subject -
      Returns:
      result
    • assignRolePermission

      @Deprecated public AttributeAssignResult assignRolePermission(String action, AttributeDefName attributeDefName)
      Deprecated.
      use assignRolePermission(action, attributeDefName, permissionAllowed), will remove this some time after 2.0
      add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      Returns:
      if new, and the assignment
    • assignRolePermission

      public AttributeAssignResult assignRolePermission(String action, AttributeDefName attributeDefName, PermissionAllowed permissionAllowed)
      add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      permissionAllowed - allowed or disallowed
      Returns:
      if new, and the assignment
    • assignSubjectRolePermission

      @Deprecated public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject)
      Deprecated.
      use assignSubjectRolePermission(action, attributeDefName, subject, permissionAllowed) instead
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      subject -
      Returns:
      if new, and the assignment
    • assignSubjectRolePermission

      public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject, PermissionAllowed permissionAllowed)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      subject -
      permissionAllowed -
      Returns:
      if new, and the assignment
    • removeRolePermission

      public AttributeAssignResult removeRolePermission(String action, AttributeDefName attributeDefName)
      remove a permission from a role, which means that any subject in the role will not directly have this permission, and any role in the roleSet directed graph will also not get this permission from this role
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      Returns:
      result
    • removeSubjectRolePermission

      public AttributeAssignResult removeSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      subject -
      Returns:
      result
    • assignSubjectRolePermission

      @Deprecated public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Member member)
      Deprecated.
      use assignSubjectRolePermission(attributeDefName, member, permissionAllowed) will be removed some time after 2.0
      add a permission to a role / subject pair (effective membership)
      Parameters:
      attributeDefName -
      member -
      Returns:
      if new, and the assignment
    • assignSubjectRolePermission

      public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Member member, PermissionAllowed permissionAllowed)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      attributeDefName -
      member -
      permissionAllowed -
      Returns:
      if new, and the assignment
    • assignSubjectRolePermission

      @Deprecated public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member)
      Deprecated.
      use assignSubjectRolePermission(action, attributeDefName, member, permissionAllowed) will be removed some time after 2.0
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      member -
      Returns:
      if new, and the assignment
    • assignSubjectRolePermission

      public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member, PermissionAllowed permissionAllowed)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      member -
      permissionAllowed -
      Returns:
      if new, and the assignment
    • removeSubjectRolePermission

      public AttributeAssignResult removeSubjectRolePermission(AttributeDefName attributeDefName, Member member)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      attributeDefName -
      member -
      Returns:
      result
    • removeSubjectRolePermission

      public AttributeAssignResult removeSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      member -
      Returns:
      attribute assign result
    • delegateRolePermission

      public AttributeAssignResult delegateRolePermission(AttributeDefName attributeDefName, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions)
      add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission. Note: the subject assigning must have delegate or grant on permission
      Parameters:
      attributeDefName -
      assign - true to assign, false to remove
      attributeAssignDelegateOptions - options in the assignment, null if none
      Returns:
      if new, and the assignment
    • delegateRolePermission

      public AttributeAssignResult delegateRolePermission(String action, AttributeDefName attributeDefName, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions)
      add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission Note: the subject assigning must have delegate or grant on permission
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      assign - true to assign, false to remove
      attributeAssignDelegateOptions - options in the assignment, null if none
      Returns:
      if new, and the assignment
    • delegateSubjectRolePermission

      public AttributeAssignResult delegateSubjectRolePermission(AttributeDefName attributeDefName, Member member, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions)
      add a permission to a role / subject pair (effective membership) Note: the subject assigning must have delegate or grant on permission
      Parameters:
      attributeDefName -
      member -
      assign - true to assign, false to remove
      attributeAssignDelegateOptions - options in the assignment, null if none
      Returns:
      if new, and the assignment
    • delegateSubjectRolePermission

      public AttributeAssignResult delegateSubjectRolePermission(AttributeDefName attributeDefName, Subject subject, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      attributeDefName -
      subject -
      assign - true to assign, false to remove
      attributeAssignDelegateOptions - options in the assignment, null if none
      Returns:
      if new, and the assignment
    • delegateSubjectRolePermission

      public AttributeAssignResult delegateSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      member -
      assign - true to assign, false to remove
      attributeAssignDelegateOptions - options in the assignment, null if none
      Returns:
      if new, and the assignment
    • delegateSubjectRolePermission

      public AttributeAssignResult delegateSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions)
      add a permission to a role / subject pair (effective membership)
      Parameters:
      action - is the action on the assignment (e.g. read, write, assign (default))
      attributeDefName -
      subject -
      assign - true to assign, false to remove
      attributeAssignDelegateOptions - options in the assignment, null if none
      Returns:
      if new, and the assignment