|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Objectedu.internet2.middleware.grouper.privs.BaseNamingAdapter
edu.internet2.middleware.grouper.privs.GrouperNonDbNamingAdapter
edu.internet2.middleware.grouper.GrouperNamingAdapter
public class GrouperNamingAdapter
Default implementation of the Grouper NamingPrivilege
interface.
This implementation uses the Groups Registry and custom list types to manage naming privileges.
| Constructor Summary | |
|---|---|
GrouperNamingAdapter()
|
|
| Method Summary | |
|---|---|
boolean |
hqlFilterStemsNotWithPrivWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String stemColumn,
Privilege privilege,
boolean considerAllSubject)
for a stem query, check to make sure the subject cant see the records (if filtering HQL, you can do the postHqlFilterStems instead if you like). |
boolean |
hqlFilterStemsWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String stemColumn,
java.util.Set<Privilege> privInSet)
for a stem query, check to make sure the subject can see the records (if filtering HQL, you can do the postHqlFilterGroups instead if you like). |
java.util.Set<Stem> |
postHqlFilterStems(GrouperSession grouperSession,
java.util.Set<Stem> inputStems,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> privInSet)
after HQL is run, filter stems. |
| Methods inherited from class edu.internet2.middleware.grouper.privs.GrouperNonDbNamingAdapter |
|---|
getPrivs, getStemsWhereSubjectDoesntHavePrivilege, getStemsWhereSubjectHasPriv, getSubjectsWithPriv, grantPriv, hasPriv, privilegeCopy, privilegeCopy, revokeAllPrivilegesForSubject, revokePriv, revokePriv |
| Methods inherited from class java.lang.Object |
|---|
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Constructor Detail |
|---|
public GrouperNamingAdapter()
| Method Detail |
|---|
public boolean hqlFilterStemsWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String stemColumn,
java.util.Set<Privilege> privInSet)
NamingAdapter
hqlFilterStemsWhereClause in interface NamingAdapterhqlFilterStemsWhereClause in class BaseNamingAdaptersubject - which needs view access to the groupshql - is the select and part part (hql prefix)stemColumn - is the name of the stem column to join toprivInSet - find a privilege which is in this set
(e.g. for view, send all access privs). There are pre-canned sets in AccessAdapter
BaseNamingAdapter.hqlFilterStemsWhereClause(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.hibernate.HqlQuery, java.lang.StringBuilder, java.lang.String, java.util.Set)
public java.util.Set<Stem> postHqlFilterStems(GrouperSession grouperSession,
java.util.Set<Stem> inputStems,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> privInSet)
NamingAdapter
postHqlFilterStems in interface NamingAdapterpostHqlFilterStems in class BaseNamingAdaptersubject - which needs view access to the groupsprivInSet - find a privilege which is in this set
(e.g. for view, send all access privs). There are pre-canned sets in NamingPrivilege
BaseNamingAdapter.postHqlFilterStems(edu.internet2.middleware.grouper.GrouperSession, java.util.Set, edu.internet2.middleware.subject.Subject, java.util.Set)
public boolean hqlFilterStemsNotWithPrivWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String stemColumn,
Privilege privilege,
boolean considerAllSubject)
NamingAdapter
hqlFilterStemsNotWithPrivWhereClause in interface NamingAdapterhqlFilterStemsNotWithPrivWhereClause in class BaseNamingAdaptersubject - which needs view access to the groupshql - is the select and part part (hql prefix)stemColumn - is the name of the stem column to join toprivilege - find a privilege which is in this set
(e.g. naming privs).considerAllSubject - if true, then consider GrouperAll when seeing if doesnt have privilege, else do consider
NamingAdapter.hqlFilterStemsNotWithPrivWhereClause(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.hibernate.HqlQuery, java.lang.StringBuilder, java.lang.String, Privilege, boolean)
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||