Uses of Record Class
com.evolveum.midpoint.security.enforcer.api.SecurityEnforcer.Options
Packages that use SecurityEnforcer.Options
-
Uses of SecurityEnforcer.Options in com.evolveum.midpoint.security.enforcer.api
Methods in com.evolveum.midpoint.security.enforcer.api that return SecurityEnforcer.OptionsModifier and TypeMethodDescriptionstatic SecurityEnforcer.Options
SecurityEnforcer.Options.create()
@NotNull SecurityEnforcer.Options
SecurityEnforcer.Options.withApplicableAutzConsumer
(Consumer<Authorization> applicableAutzConsumer) Sends all the applicable authorizations to the specified consumer.@NotNull SecurityEnforcer.Options
SecurityEnforcer.Options.withCustomOwnerResolver
(OwnerResolver resolver) Custom owner resolver to be used for this operation.@NotNull SecurityEnforcer.Options
SecurityEnforcer.Options.withLogCollector
(SecurityEnforcer.LogCollector logCollector) Sends all the tracing messages also to the specified collector (besides logging them as usual).@NotNull SecurityEnforcer.Options
SecurityEnforcer.Options.withNoFailOnNoAccess()
Methods in com.evolveum.midpoint.security.enforcer.api with parameters of type SecurityEnforcer.OptionsModifier and TypeMethodDescriptiondefault void
SecurityEnforcer.authorize
(@NotNull String operationUrl, @Nullable AuthorizationPhaseType phase, @NotNull AbstractAuthorizationParameters params, @NotNull SecurityEnforcer.Options options, @NotNull Task task, @NotNull OperationResult result) Evaluates authorization: simply returns if the currently logged it user is authorized for a specified action.SecurityEnforcer.compileOperationConstraints
(@Nullable MidPointPrincipal principal, @NotNull PrismObjectValue<?> value, @Nullable AuthorizationPhaseType phase, @NotNull String[] actionUrls, @NotNull SecurityEnforcer.Options enforcerOptions, @NotNull CompileConstraintsOptions compileConstraintsOptions, @NotNull Task task, @NotNull OperationResult result) Compiles the security constraints related to given `actionUrls` and `phase` for a given principal against the `object`.<O extends ObjectType>
@NotNull ObjectSecurityConstraintsSecurityEnforcer.compileSecurityConstraints
(@NotNull PrismObject<O> object, boolean fullInformationAvailable, @NotNull SecurityEnforcer.Options options, @NotNull Task task, @NotNull OperationResult result) Compiles relevant security constraints (ObjectSecurityConstraints
) for a current principal against given `object`.@NotNull AccessDecision
SecurityEnforcer.decideAccess
(@Nullable MidPointPrincipal principal, @NotNull String operationUrl, @Nullable AuthorizationPhaseType phase, @NotNull AbstractAuthorizationParameters params, @NotNull SecurityEnforcer.Options options, @NotNull Task task, @NotNull OperationResult result) General access-decision method.default boolean
SecurityEnforcer.isAuthorized
(@NotNull String operationUrl, @Nullable AuthorizationPhaseType phase, @NotNull AbstractAuthorizationParameters params, @NotNull SecurityEnforcer.Options options, @NotNull Task task, @NotNull OperationResult result) Returns `true` if the currently logged-in user is authorized for specified action (represented by `operationUrl`), returns `false` otherwise.<T> @Nullable ObjectFilter
SecurityEnforcer.preProcessObjectFilter
(@Nullable MidPointPrincipal principal, @NotNull String[] operationUrls, @NotNull String[] searchByOperationUrls, @Nullable AuthorizationPhaseType phase, @NotNull Class<T> filterType, @Nullable ObjectFilter origFilter, @Nullable String limitAuthorizationAction, @NotNull List<OrderConstraintsType> paramOrderConstraints, @NotNull SecurityEnforcer.Options options, @NotNull Task task, @NotNull OperationResult result) Returns a filter that covers all the objects for which the principal is authorized to apply `operationUrls`.