|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Objectedu.internet2.middleware.grouper.privs.BaseAccessAdapter
public abstract class BaseAccessAdapter
Base class for access adapter
| Constructor Summary | |
|---|---|
BaseAccessAdapter()
|
|
| Method Summary | |
|---|---|
boolean |
hqlFilterGroupsNotWithPrivWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String groupColumn,
Privilege privilege,
boolean considerAllSubject)
for a group query, check to make sure the subject cant see the records (if filtering HQL, you can do the postHqlFilterGroups instead if you like). |
boolean |
hqlFilterGroupsWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String groupColumn,
java.util.Set<Privilege> privInSet)
for a group query, check to make sure the subject can see the records (if filtering HQL, you can do the postHqlFilterGroups instead if you like). |
java.util.Set<Group> |
postHqlFilterGroups(GrouperSession grouperSession,
java.util.Set<Group> inputGroups,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> privInSet)
after HQL is run, filter groups. |
java.util.Set<Membership> |
postHqlFilterMemberships(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Membership> memberships)
filter memberships for things the subject can see |
java.util.Set<Stem> |
postHqlFilterStemsWithGroups(GrouperSession grouperSession,
java.util.Set<Stem> stems,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> inPrivSet)
after HQL is run, filter stems with groups. |
| Methods inherited from class java.lang.Object |
|---|
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Methods inherited from interface edu.internet2.middleware.grouper.privs.AccessAdapter |
|---|
getGroupsWhereSubjectDoesntHavePrivilege, getGroupsWhereSubjectHasPriv, getPrivs, getStemsWhereGroupThatSubjectHasPrivilege, getSubjectsWithPriv, grantPriv, hasPriv, privilegeCopy, privilegeCopy, retrievePrivileges, revokeAllPrivilegesForSubject, revokePriv, revokePriv |
| Constructor Detail |
|---|
public BaseAccessAdapter()
| Method Detail |
|---|
public java.util.Set<Group> postHqlFilterGroups(GrouperSession grouperSession,
java.util.Set<Group> inputGroups,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> privInSet)
AccessAdapter
postHqlFilterGroups in interface AccessAdaptersubject - which needs view access to the groupsprivInSet - find a privilege which is in this set
(e.g. for view, send all access privs). There are pre-canned sets in AccessAdapter
AccessAdapter.postHqlFilterGroups(edu.internet2.middleware.grouper.GrouperSession, java.util.Set, edu.internet2.middleware.subject.Subject, java.util.Set)
public java.util.Set<Stem> postHqlFilterStemsWithGroups(GrouperSession grouperSession,
java.util.Set<Stem> stems,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> inPrivSet)
AccessAdapter
postHqlFilterStemsWithGroups in interface AccessAdapterAccessAdapter.postHqlFilterStemsWithGroups(edu.internet2.middleware.grouper.GrouperSession, java.util.Set, edu.internet2.middleware.subject.Subject, java.util.Set)
public boolean hqlFilterGroupsWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String groupColumn,
java.util.Set<Privilege> privInSet)
AccessAdapter
hqlFilterGroupsWhereClause in interface AccessAdaptersubject - which needs view access to the groupshql - is the select and part part (hql prefix)groupColumn - is the name of the group column to join toprivInSet - find a privilege which is in this set
(e.g. for view, send all access privs). There are pre-canned sets in AccessPrivilege
AccessAdapter.hqlFilterGroupsWhereClause(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.hibernate.HqlQuery, java.lang.StringBuilder, java.lang.String, java.util.Set)
public boolean hqlFilterGroupsNotWithPrivWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String groupColumn,
Privilege privilege,
boolean considerAllSubject)
AccessAdapter
hqlFilterGroupsNotWithPrivWhereClause in interface AccessAdaptersubject - which needs view access to the groupshql - is the select and part part (hql prefix)groupColumn - is the name of the group column to join toprivilege - find a privilege which is in this set
(e.g. for view, send view).considerAllSubject - if true, then consider GrouperAll when seeing if doesnt have privilege, else do consider
AccessAdapter.hqlFilterGroupsNotWithPrivWhereClause(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.hibernate.HqlQuery, java.lang.StringBuilder, java.lang.String, Privilege, boolean)
public java.util.Set<Membership> postHqlFilterMemberships(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Membership> memberships)
AccessAdapter
postHqlFilterMemberships in interface AccessAdapterAccessAdapter.postHqlFilterMemberships(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, java.util.Set)
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||