|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Objectedu.internet2.middleware.grouper.privs.BaseAttrDefAdapter
edu.internet2.middleware.grouper.privs.GrouperNonDbAttrDefAdapter
edu.internet2.middleware.grouper.privs.GrouperAttributeDefAdapter
public class GrouperAttributeDefAdapter
Grouper Attribute Definition Access Privilege interface.Unless you are implementing a new implementation of this interface, you should not need to directly use these methods as they are all wrapped by methods in the
This access adapter affects the HQL queries to give better performanceAttributeDefclass.
| Constructor Summary | |
|---|---|
GrouperAttributeDefAdapter()
|
|
| Method Summary | |
|---|---|
boolean |
hqlFilterAttrDefsWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hqlTables,
java.lang.StringBuilder hqlWhereClause,
java.lang.String attributeDefColumn,
java.util.Set<Privilege> privInSet)
for an attrDef query, check to make sure the subject can see the records (if filtering HQL, you can do the postHqlFilterAttrDefs instead if you like). |
boolean |
hqlFilterAttributeDefsNotWithPrivWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String attributeDefColumn,
Privilege privilege,
boolean considerAllSubject)
for an attributeDef query, check to make sure the subject cant see the records (if filtering HQL, you can do the postHqlFilterAttributeDefs instead if you like). |
java.util.Set<AttributeAssign> |
postHqlFilterAttributeAssigns(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<AttributeAssign> attributeAssigns)
filter attribute assignments for things the subject can see, assume underlying assignments are ok to view |
java.util.Set<PermissionEntry> |
postHqlFilterPermissions(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<PermissionEntry> permissionEntries)
filter permissionEntries for things the subject can see, assume underlying assignments are ok to view |
java.util.Set<PITAttributeAssign> |
postHqlFilterPITAttributeAssigns(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<PITAttributeAssign> pitAttributeAssigns)
filter pit attribute assignments for things the subject can see, assume underlying assignments are ok to view |
| Methods inherited from class edu.internet2.middleware.grouper.privs.GrouperNonDbAttrDefAdapter |
|---|
getAttributeDefsWhereSubjectDoesntHavePrivilege, getAttributeDefsWhereSubjectHasPriv, getPrivs, getSubjectsWithPriv, grantPriv, hasPriv, privilegeCopy, privilegeCopy, retrievePrivileges, revokeAllPrivilegesForSubject, revokePriv, revokePriv |
| Methods inherited from class edu.internet2.middleware.grouper.privs.BaseAttrDefAdapter |
|---|
postHqlFilterAttributeDefs |
| Methods inherited from class java.lang.Object |
|---|
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Methods inherited from interface edu.internet2.middleware.grouper.privs.AttributeDefAdapter |
|---|
postHqlFilterAttributeDefs |
| Constructor Detail |
|---|
public GrouperAttributeDefAdapter()
| Method Detail |
|---|
public boolean hqlFilterAttrDefsWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hqlTables,
java.lang.StringBuilder hqlWhereClause,
java.lang.String attributeDefColumn,
java.util.Set<Privilege> privInSet)
AttributeDefAdapter
hqlFilterAttrDefsWhereClause in interface AttributeDefAdapterhqlFilterAttrDefsWhereClause in class BaseAttrDefAdaptersubject - which needs view access to the attrDefshqlTables - is the select and part part (hql prefix)hqlWhereClause - is there where clause part of the queryattributeDefColumn - is the name of the attrDef column to join toprivInSet - find a privilege which is in this set
(e.g. for view, send all access privs). There are pre-canned sets in AccessPrivilege
BaseAttrDefAdapter.hqlFilterAttrDefsWhereClause(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.hibernate.HqlQuery, java.lang.StringBuilder, java.lang.StringBuilder, java.lang.String, java.util.Set)
public java.util.Set<AttributeAssign> postHqlFilterAttributeAssigns(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<AttributeAssign> attributeAssigns)
AttributeDefAdapter
postHqlFilterAttributeAssigns in interface AttributeDefAdapterpostHqlFilterAttributeAssigns in class BaseAttrDefAdapterAttributeDefAdapter.postHqlFilterAttributeAssigns(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, java.util.Set)
public java.util.Set<PITAttributeAssign> postHqlFilterPITAttributeAssigns(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<PITAttributeAssign> pitAttributeAssigns)
AttributeDefAdapter
postHqlFilterPITAttributeAssigns in interface AttributeDefAdapterpostHqlFilterPITAttributeAssigns in class BaseAttrDefAdapterAttributeDefAdapter.postHqlFilterPITAttributeAssigns(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, java.util.Set)
public java.util.Set<PermissionEntry> postHqlFilterPermissions(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
java.util.Set<PermissionEntry> permissionEntries)
AttributeDefAdapter
postHqlFilterPermissions in interface AttributeDefAdapterpostHqlFilterPermissions in class BaseAttrDefAdapterBaseAttrDefAdapter.postHqlFilterPermissions(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, java.util.Set)
public boolean hqlFilterAttributeDefsNotWithPrivWhereClause(GrouperSession grouperSession,
edu.internet2.middleware.subject.Subject subject,
HqlQuery hqlQuery,
java.lang.StringBuilder hql,
java.lang.String attributeDefColumn,
Privilege privilege,
boolean considerAllSubject)
AttributeDefAdapter
hqlFilterAttributeDefsNotWithPrivWhereClause in interface AttributeDefAdapterhqlFilterAttributeDefsNotWithPrivWhereClause in class BaseAttrDefAdaptersubject - which needs view access to the groupshql - is the select and part part (hql prefix)attributeDefColumn - is the name of the attributeDef column to join toprivilege - find a privilege which is in this set
(e.g. attributeDef privs).considerAllSubject - if true, then consider GrouperAll when seeing if doesnt have privilege, else do consider
AttributeDefAdapter.hqlFilterAttributeDefsNotWithPrivWhereClause(edu.internet2.middleware.grouper.GrouperSession, edu.internet2.middleware.subject.Subject, edu.internet2.middleware.grouper.hibernate.HqlQuery, java.lang.StringBuilder, java.lang.String, Privilege, boolean)
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||