Class PermissionRoleDelegate
java.lang.Object
edu.internet2.middleware.grouper.permissions.PermissionRoleDelegate
- All Implemented Interfaces:
Serializable
delegate the role
- See Also:
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionassignRolePermission(AttributeDefName attributeDefName) Deprecated.use assignRolePermission(attributeDefName, permissionAllowed) instead, will be removed some time after 2.0assignRolePermission(AttributeDefName attributeDefName, PermissionAllowed permissionAllowed) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permissionassignRolePermission(String action, AttributeDefName attributeDefName) Deprecated.use assignRolePermission(action, attributeDefName, permissionAllowed), will remove this some time after 2.0assignRolePermission(String action, AttributeDefName attributeDefName, PermissionAllowed permissionAllowed) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permissionassignSubjectRolePermission(AttributeDefName attributeDefName, Member member) Deprecated.use assignSubjectRolePermission(attributeDefName, member, permissionAllowed) will be removed some time after 2.0assignSubjectRolePermission(AttributeDefName attributeDefName, Member member, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)assignSubjectRolePermission(AttributeDefName attributeDefName, Subject subject) Deprecated.use assignSubjectRolePermission(attributeDefName, subject, permissionAllowed) will be removed some time after 2.0assignSubjectRolePermission(AttributeDefName attributeDefName, Subject subject, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member) Deprecated.use assignSubjectRolePermission(action, attributeDefName, member, permissionAllowed) will be removed some time after 2.0assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject) Deprecated.use assignSubjectRolePermission(action, attributeDefName, subject, permissionAllowed) insteadassignSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)delegateRolePermission(AttributeDefName attributeDefName, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission.delegateRolePermission(String action, AttributeDefName attributeDefName, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission Note: the subject assigning must have delegate or grant on permissiondelegateSubjectRolePermission(AttributeDefName attributeDefName, Member member, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership) Note: the subject assigning must have delegate or grant on permissiondelegateSubjectRolePermission(AttributeDefName attributeDefName, Subject subject, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership)delegateSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership)delegateSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership)removeRolePermission(AttributeDefName attributeDefName) remove a permission from a role, which means that any subject in the role will not directly have this permission, and any role in the roleSet directed graph will also not get this permission from this roleremoveRolePermission(String action, AttributeDefName attributeDefName) remove a permission from a role, which means that any subject in the role will not directly have this permission, and any role in the roleSet directed graph will also not get this permission from this roleremoveSubjectRolePermission(AttributeDefName attributeDefName, Member member) add a permission to a role / subject pair (effective membership)removeSubjectRolePermission(AttributeDefName attributeDefName, Subject subject) add a permission to a role / subject pair (effective membership)removeSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member) add a permission to a role / subject pair (effective membership)removeSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject) add a permission to a role / subject pair (effective membership)retrieveAssignment(Member member, String action, AttributeDefName attributeDefName, boolean checkSecurity, boolean exceptionfNotFound)
-
Constructor Details
-
PermissionRoleDelegate
- Parameters:
group1-
-
-
Method Details
-
assignRolePermission
Deprecated.use assignRolePermission(attributeDefName, permissionAllowed) instead, will be removed some time after 2.0add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission- Parameters:
attributeDefName-- Returns:
- if new, and the assignment
-
assignRolePermission
public AttributeAssignResult assignRolePermission(AttributeDefName attributeDefName, PermissionAllowed permissionAllowed) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission- Parameters:
attributeDefName-permissionAllowed-- Returns:
- if new, and the assignment
-
removeRolePermission
remove a permission from a role, which means that any subject in the role will not directly have this permission, and any role in the roleSet directed graph will also not get this permission from this role- Parameters:
attributeDefName-- Returns:
- result
-
retrieveAssignment
public AttributeAssign retrieveAssignment(Member member, String action, AttributeDefName attributeDefName, boolean checkSecurity, boolean exceptionfNotFound) - Parameters:
member-action-attributeDefName-checkSecurity-exceptionfNotFound-- Returns:
- the assignment
-
assignSubjectRolePermission
@Deprecated public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Subject subject) Deprecated.use assignSubjectRolePermission(attributeDefName, subject, permissionAllowed) will be removed some time after 2.0add a permission to a role / subject pair (effective membership)- Parameters:
attributeDefName-subject-- Returns:
- if new, and the assignment
-
assignSubjectRolePermission
public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Subject subject, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)- Parameters:
attributeDefName-subject-permissionAllowed-- Returns:
- if new, and the assignment
-
removeSubjectRolePermission
public AttributeAssignResult removeSubjectRolePermission(AttributeDefName attributeDefName, Subject subject) add a permission to a role / subject pair (effective membership)- Parameters:
attributeDefName-subject-- Returns:
- result
-
assignRolePermission
@Deprecated public AttributeAssignResult assignRolePermission(String action, AttributeDefName attributeDefName) Deprecated.use assignRolePermission(action, attributeDefName, permissionAllowed), will remove this some time after 2.0add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-- Returns:
- if new, and the assignment
-
assignRolePermission
public AttributeAssignResult assignRolePermission(String action, AttributeDefName attributeDefName, PermissionAllowed permissionAllowed) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-permissionAllowed- allowed or disallowed- Returns:
- if new, and the assignment
-
assignSubjectRolePermission
@Deprecated public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject) Deprecated.use assignSubjectRolePermission(action, attributeDefName, subject, permissionAllowed) insteadadd a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-subject-- Returns:
- if new, and the assignment
-
assignSubjectRolePermission
public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-subject-permissionAllowed-- Returns:
- if new, and the assignment
-
removeRolePermission
remove a permission from a role, which means that any subject in the role will not directly have this permission, and any role in the roleSet directed graph will also not get this permission from this role- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-- Returns:
- result
-
removeSubjectRolePermission
public AttributeAssignResult removeSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject) add a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-subject-- Returns:
- result
-
assignSubjectRolePermission
@Deprecated public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Member member) Deprecated.use assignSubjectRolePermission(attributeDefName, member, permissionAllowed) will be removed some time after 2.0add a permission to a role / subject pair (effective membership)- Parameters:
attributeDefName-member-- Returns:
- if new, and the assignment
-
assignSubjectRolePermission
public AttributeAssignResult assignSubjectRolePermission(AttributeDefName attributeDefName, Member member, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)- Parameters:
attributeDefName-member-permissionAllowed-- Returns:
- if new, and the assignment
-
assignSubjectRolePermission
@Deprecated public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member) Deprecated.use assignSubjectRolePermission(action, attributeDefName, member, permissionAllowed) will be removed some time after 2.0add a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-member-- Returns:
- if new, and the assignment
-
assignSubjectRolePermission
public AttributeAssignResult assignSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member, PermissionAllowed permissionAllowed) add a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-member-permissionAllowed-- Returns:
- if new, and the assignment
-
removeSubjectRolePermission
public AttributeAssignResult removeSubjectRolePermission(AttributeDefName attributeDefName, Member member) add a permission to a role / subject pair (effective membership)- Parameters:
attributeDefName-member-- Returns:
- result
-
removeSubjectRolePermission
public AttributeAssignResult removeSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member) add a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-member-- Returns:
- attribute assign result
-
delegateRolePermission
public AttributeAssignResult delegateRolePermission(AttributeDefName attributeDefName, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission. Note: the subject assigning must have delegate or grant on permission- Parameters:
attributeDefName-assign- true to assign, false to removeattributeAssignDelegateOptions- options in the assignment, null if none- Returns:
- if new, and the assignment
-
delegateRolePermission
public AttributeAssignResult delegateRolePermission(String action, AttributeDefName attributeDefName, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role, which means that any subject in the role will get this permission, and any role in the roleSet directed graph will also get the permission Note: the subject assigning must have delegate or grant on permission- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-assign- true to assign, false to removeattributeAssignDelegateOptions- options in the assignment, null if none- Returns:
- if new, and the assignment
-
delegateSubjectRolePermission
public AttributeAssignResult delegateSubjectRolePermission(AttributeDefName attributeDefName, Member member, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership) Note: the subject assigning must have delegate or grant on permission- Parameters:
attributeDefName-member-assign- true to assign, false to removeattributeAssignDelegateOptions- options in the assignment, null if none- Returns:
- if new, and the assignment
-
delegateSubjectRolePermission
public AttributeAssignResult delegateSubjectRolePermission(AttributeDefName attributeDefName, Subject subject, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership)- Parameters:
attributeDefName-subject-assign- true to assign, false to removeattributeAssignDelegateOptions- options in the assignment, null if none- Returns:
- if new, and the assignment
-
delegateSubjectRolePermission
public AttributeAssignResult delegateSubjectRolePermission(String action, AttributeDefName attributeDefName, Member member, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-member-assign- true to assign, false to removeattributeAssignDelegateOptions- options in the assignment, null if none- Returns:
- if new, and the assignment
-
delegateSubjectRolePermission
public AttributeAssignResult delegateSubjectRolePermission(String action, AttributeDefName attributeDefName, Subject subject, boolean assign, AttributeAssignDelegateOptions attributeAssignDelegateOptions) add a permission to a role / subject pair (effective membership)- Parameters:
action- is the action on the assignment (e.g. read, write, assign (default))attributeDefName-subject-assign- true to assign, false to removeattributeAssignDelegateOptions- options in the assignment, null if none- Returns:
- if new, and the assignment
-