org.openlowcode.server.security

Class ActionAnarchySecurityManager

java.lang.Object

org.openlowcode.server.security.ActionSecurityManager

org.openlowcode.server.security.ActionAnarchySecurityManager

public class ActionAnarchySecurityManager
extends ActionSecurityManager

The anarchy security manager gives access to any connected user to the action. As rights given by security manager are permissive, it is not possible to restrain access to an action where anarchy has been declared.

Author:

Open Lowcode SAS

Constructor Summary

Constructors

Constructor and Description
ActionAnarchySecurityManager()

Method Summary

Modifier and Type	Method and Description
boolean	filterObjectData() this method tells if the security manager has to filter the output of the action Note: both queryObjectData and filterObjectData cannot be true at the same time
void	freezeUnauthorizedObjects(DataObject<?>[] dataarray, SecurityBuffer buffer) this method will look at an array of objects, and unfreeze all authorized objects.
java.util.function.Function<TableAlias,QueryFilter>	getOutputFilterCondition()
boolean	isAuthorizedForCurrentUser(java.lang.String context, SActionData input, SecurityBuffer buffer)
boolean	queryObjectData() this method tells if the security manager has to query an object (typically to get the object localization and state).
java.lang.String	toString()

Methods inherited from class org.openlowcode.server.security.ActionSecurityManager

buildListSummary, buildListSummary, buildListSummary

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructor Detail

ActionAnarchySecurityManager

public ActionAnarchySecurityManager()

Method Detail

queryObjectData

public boolean queryObjectData()

Description copied from class: ActionSecurityManager

this method tells if the security manager has to query an object (typically to get the object localization and state). If so, the method business logic will get as attribute the object instead of the object id, to prevent double query and improve performance on database

Specified by:

queryObjectData in class ActionSecurityManager

Returns:

true if the security manager needs to query object data

isAuthorizedForCurrentUser

public boolean isAuthorizedForCurrentUser(java.lang.String context,
                                          SActionData input,
                                          SecurityBuffer buffer)

Specified by:

isAuthorizedForCurrentUser in class ActionSecurityManager

Returns:

true if the user is authorized for the action, false if the user is not authorized

filterObjectData

public boolean filterObjectData()

Description copied from class: ActionSecurityManager

this method tells if the security manager has to filter the output of the action Note: both queryObjectData and filterObjectData cannot be true at the same time

Specified by:

filterObjectData in class ActionSecurityManager

Returns:

true if the security manager filters object data

getOutputFilterCondition

public java.util.function.Function<TableAlias,QueryFilter> getOutputFilterCondition()

Specified by:

getOutputFilterCondition in class ActionSecurityManager

Returns:

null if unconditional access, or the function else

freezeUnauthorizedObjects

public void freezeUnauthorizedObjects(DataObject<?>[] dataarray,
                                      SecurityBuffer buffer)

Description copied from class: ActionSecurityManager

this method will look at an array of objects, and unfreeze all authorized objects. Note: for the method to work, the objects have to be frozen first

Specified by:

freezeUnauthorizedObjects in class ActionSecurityManager

Parameters:

dataarray - the array of objects;

toString

public java.lang.String toString()

Overrides:

toString in class java.lang.Object