|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Objectedu.internet2.middleware.grouper.privs.NamingResolverDecorator
edu.internet2.middleware.grouper.privs.CachingNamingResolver
public class CachingNamingResolver
Decorator that provides caching for NamingResolver.
| Field Summary | |
|---|---|
static java.lang.String |
CACHE_HASPRIV
|
| Constructor Summary | |
|---|---|
CachingNamingResolver(NamingResolver resolver)
|
|
| Method Summary | |
|---|---|
void |
flushCache()
flush cache if caching resolver |
GrouperSession |
getGrouperSession()
get a reference to the session |
CacheStats |
getStats(java.lang.String cache)
|
void |
grantPrivilege(Stem stem,
edu.internet2.middleware.subject.Subject subject,
Privilege privilege,
java.lang.String uuid)
Grant privilege to subject on group. |
boolean |
hasPrivilege(Stem stem,
edu.internet2.middleware.subject.Subject subject,
Privilege privilege)
Check whether subject has privilege on group. |
boolean |
hqlFilterStemsNotWithPrivWhereClause(edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String stemColumn,
Privilege privilege,
boolean considerAllSubject)
for a stem query, check to make sure the subject cant see the records |
java.util.Set<Stem> |
postHqlFilterStems(java.util.Set<Stem> stems,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> privInSet)
after HQL is run, filter stems. |
void |
privilegeCopy(Stem stem1,
Stem stem2,
Privilege priv)
Copies privileges for subjects that have the specified privilege on stem1 to stem2. |
void |
privilegeCopy(edu.internet2.middleware.subject.Subject subj1,
edu.internet2.middleware.subject.Subject subj2,
Privilege priv)
Copies privileges of type priv on any subject for the given Subject subj1 to the given Subject subj2. |
void |
revokeAllPrivilegesForSubject(edu.internet2.middleware.subject.Subject subject)
Revoke all naming privileges that this subject has. |
void |
revokePrivilege(Stem stem,
Privilege privilege)
Revoke privilege from all subjects on group. |
void |
revokePrivilege(Stem stem,
edu.internet2.middleware.subject.Subject subject,
Privilege privilege)
Revoke privilege from subject on group. |
void |
stop()
clean up resources, session is stopped |
| Methods inherited from class edu.internet2.middleware.grouper.privs.NamingResolverDecorator |
|---|
getDecoratedResolver, getPrivileges, getStemsWhereSubjectDoesntHavePrivilege, getStemsWhereSubjectHasPrivilege, getSubjectsWithPrivilege, hqlFilterStemsWhereClause |
| Methods inherited from class java.lang.Object |
|---|
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Field Detail |
|---|
public static final java.lang.String CACHE_HASPRIV
| Constructor Detail |
|---|
public CachingNamingResolver(NamingResolver resolver)
resolver - | Method Detail |
|---|
public void flushCache()
NamingResolver
flushCache in interface NamingResolverflushCache in class NamingResolverDecoratorNamingResolver.flushCache()public GrouperSession getGrouperSession()
NamingResolver
getGrouperSession in interface NamingResolvergetGrouperSession in class NamingResolverDecoratorNamingResolver.getGrouperSession()public CacheStats getStats(java.lang.String cache)
cache -
public void grantPrivilege(Stem stem,
edu.internet2.middleware.subject.Subject subject,
Privilege privilege,
java.lang.String uuid)
throws java.lang.IllegalArgumentException,
UnableToPerformException
NamingResolver
grantPrivilege in interface NamingResolvergrantPrivilege in class NamingResolverDecoratoruuid - if known or null
java.lang.IllegalArgumentException - if any parameter is null.
UnableToPerformException - if the privilege could not be granted.NamingResolver.grantPrivilege(Stem, Subject, Privilege, String)
public boolean hasPrivilege(Stem stem,
edu.internet2.middleware.subject.Subject subject,
Privilege privilege)
throws java.lang.IllegalArgumentException
NamingResolver
hasPrivilege in interface NamingResolverhasPrivilege in class NamingResolverDecoratorjava.lang.IllegalArgumentException - if any parameter is null.NamingResolver.hasPrivilege(Stem, Subject, Privilege)
public void revokePrivilege(Stem stem,
Privilege privilege)
throws java.lang.IllegalArgumentException,
UnableToPerformException
NamingResolver
revokePrivilege in interface NamingResolverrevokePrivilege in class NamingResolverDecoratorjava.lang.IllegalArgumentException - if any parameter is null.
UnableToPerformException - if the privilege could not be revoked.NamingResolver.revokePrivilege(Stem, Privilege)
public void revokePrivilege(Stem stem,
edu.internet2.middleware.subject.Subject subject,
Privilege privilege)
throws java.lang.IllegalArgumentException,
UnableToPerformException
NamingResolver
revokePrivilege in interface NamingResolverrevokePrivilege in class NamingResolverDecoratorjava.lang.IllegalArgumentException - if any parameter is null.
UnableToPerformException - if the privilege could not be revoked.NamingResolver.revokePrivilege(Stem, Subject, Privilege)
public void privilegeCopy(Stem stem1,
Stem stem2,
Privilege priv)
throws java.lang.IllegalArgumentException,
UnableToPerformException
NamingResolver
privilegeCopy in interface NamingResolverprivilegeCopy in class NamingResolverDecoratorjava.lang.IllegalArgumentException
UnableToPerformExceptionNamingResolver.privilegeCopy(edu.internet2.middleware.grouper.Stem, edu.internet2.middleware.grouper.Stem, edu.internet2.middleware.grouper.privs.Privilege)
public void privilegeCopy(edu.internet2.middleware.subject.Subject subj1,
edu.internet2.middleware.subject.Subject subj2,
Privilege priv)
throws java.lang.IllegalArgumentException,
UnableToPerformException
NamingResolver
privilegeCopy in interface NamingResolverprivilegeCopy in class NamingResolverDecoratorjava.lang.IllegalArgumentException
UnableToPerformExceptionNamingResolver.privilegeCopy(edu.internet2.middleware.subject.Subject, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.privs.Privilege)
public java.util.Set<Stem> postHqlFilterStems(java.util.Set<Stem> stems,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<Privilege> privInSet)
NamingResolver
postHqlFilterStems in interface NamingResolverpostHqlFilterStems in class NamingResolverDecoratorsubject - which needs view access to the groupsprivInSet - find a privilege which is in this set
(e.g. for view, send all access privs). There are pre-canned sets in NamingPrivilege
NamingResolver.postHqlFilterStems(java.util.Set, edu.internet2.middleware.subject.Subject, java.util.Set)public void stop()
NamingResolver
stop in interface NamingResolverstop in class NamingResolverDecoratorNamingResolver.stop()public void revokeAllPrivilegesForSubject(edu.internet2.middleware.subject.Subject subject)
NamingResolver
revokeAllPrivilegesForSubject in interface NamingResolverrevokeAllPrivilegesForSubject in class NamingResolverDecoratorNamingResolver.revokeAllPrivilegesForSubject(edu.internet2.middleware.subject.Subject)
public boolean hqlFilterStemsNotWithPrivWhereClause(edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String stemColumn,
Privilege privilege,
boolean considerAllSubject)
NamingResolver
hqlFilterStemsNotWithPrivWhereClause in interface NamingResolverhqlFilterStemsNotWithPrivWhereClause in class NamingResolverDecoratorsubject - which needs view access to the groupshql - the select and current from partstemColumn - is the name of the group column to join toprivilege - find a privilege which is in this set (e.g. stem or create)considerAllSubject - if true, then consider GrouperAll when seeign if subject has priv, else do not
edu.internet2.middleware.grouper.privs.NamingResolver#hqlFilterStemsNotWithPrivWhereClause(edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.hibernate.HqlQuery, java.lang.StringBuilder, java.lang.String, Privilege)
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||