Class AclAdvice
java.lang.Object
gemma.gsec.acl.BaseAclAdvice
ubic.gemma.core.security.authorization.acl.AclAdvice
@Component
public class AclAdvice
extends gemma.gsec.acl.BaseAclAdvice
For permissions modification to be triggered, the method name must match certain patterns, which include "create", or
"remove". These patterns are defined in the
Pointcuts. Other methods that would require
changes to permissions will not work without modifying the source code. *- Author:
- Paul
-
Constructor Summary
ConstructorsConstructorDescriptionAclAdvice(gemma.gsec.acl.domain.AclService aclService, SessionFactory sessionFactory, org.springframework.security.acls.model.ObjectIdentityRetrievalStrategy objectIdentityRetrievalStrategy) -
Method Summary
Modifier and TypeMethodDescriptionprotected booleancanSkipAclCheck(Object object) protected booleancanSkipAssociationCheck(Object object, String propertyName) protected voidcreateOrUpdateAclSpecialCases(org.springframework.security.acls.model.MutableAcl acl, org.springframework.security.acls.model.Acl parentAcl, org.springframework.security.acls.model.Sid sid, gemma.gsec.model.Securable object) protected org.springframework.security.core.GrantedAuthoritygetUserGroupGrantedAuthority(gemma.gsec.model.Securable object) protected StringgetUserName(gemma.gsec.model.Securable user) protected booleanobjectIsUser(gemma.gsec.model.Securable object) protected booleanobjectIsUserGroup(gemma.gsec.model.Securable object) protected booleanspecialCaseForAssociationFollow(Object object, String property) protected booleanspecialCaseToKeepPrivateOnCreation(gemma.gsec.model.Securable object) Methods inherited from class gemma.gsec.acl.BaseAclAdvice
currentUserIsAdmin, currentUserIsAnonymous, currentUserIsRunningAsAdmin, doAclAdvice, getAclService, locateParentAcl, makeObjectIdentity, setupBaseAces, specialCaseToAllowRemovingAcesFromChild
-
Constructor Details
-
AclAdvice
@Autowired public AclAdvice(gemma.gsec.acl.domain.AclService aclService, SessionFactory sessionFactory, org.springframework.security.acls.model.ObjectIdentityRetrievalStrategy objectIdentityRetrievalStrategy)
-
-
Method Details
-
canSkipAclCheck
- Overrides:
canSkipAclCheckin classgemma.gsec.acl.BaseAclAdvice
-
canSkipAssociationCheck
- Overrides:
canSkipAssociationCheckin classgemma.gsec.acl.BaseAclAdvice
-
createOrUpdateAclSpecialCases
protected void createOrUpdateAclSpecialCases(org.springframework.security.acls.model.MutableAcl acl, @Nullable org.springframework.security.acls.model.Acl parentAcl, org.springframework.security.acls.model.Sid sid, gemma.gsec.model.Securable object) - Overrides:
createOrUpdateAclSpecialCasesin classgemma.gsec.acl.BaseAclAdvice
-
getUserGroupGrantedAuthority
protected org.springframework.security.core.GrantedAuthority getUserGroupGrantedAuthority(gemma.gsec.model.Securable object) - Specified by:
getUserGroupGrantedAuthorityin classgemma.gsec.acl.BaseAclAdvice
-
getUserName
- Specified by:
getUserNamein classgemma.gsec.acl.BaseAclAdvice
-
objectIsUser
protected boolean objectIsUser(gemma.gsec.model.Securable object) - Specified by:
objectIsUserin classgemma.gsec.acl.BaseAclAdvice
-
objectIsUserGroup
protected boolean objectIsUserGroup(gemma.gsec.model.Securable object) - Specified by:
objectIsUserGroupin classgemma.gsec.acl.BaseAclAdvice
-
specialCaseForAssociationFollow
- Overrides:
specialCaseForAssociationFollowin classgemma.gsec.acl.BaseAclAdvice
-
specialCaseToKeepPrivateOnCreation
protected boolean specialCaseToKeepPrivateOnCreation(gemma.gsec.model.Securable object) - Overrides:
specialCaseToKeepPrivateOnCreationin classgemma.gsec.acl.BaseAclAdvice
-