Package org.glassfish.security.services.spi.authorization

Interface RoleMappingProvider

  • All Superinterfaces:
    SecurityProvider
    All Known Implementing Classes:
    SimpleRoleMappingProviderImpl
    @Contract
public interface RoleMappingProvider
extends SecurityProvider
    RoleMappingProvider instances are used by the RoleMappingService to evaluate role policy conditions. The security provider is part of a plug-in mechanism which allows decisions to be handled by a configured implementation.

    • Method Detail

      • isUserInRole

        boolean isUserInRole​(String appContext,
                     AzSubject subject,
                     AzResource resource,
                     String role,
                     AzEnvironment environment,
                     List<AzAttributeResolver> attributeResolvers)
        Determine whether the user (AzSubject) has the indicated role for a given resource (AzResource) and application context.
        Parameters:
        appContext - The application context for the query (can be null).
        subject - The target Subject.
        resource - The URI resource for the query.
        role - The target role.
        environment - The attributes collection representing the environment.
        attributeResolvers - The ordered list of attribute resolvers.

      • findOrCreateDeploymentContext

        RoleMappingService.RoleDeploymentContext findOrCreateDeploymentContext​(String appContext)
        Find an existing RoleDeploymentContext, or create a new one if one does not already exist for the specified application context.
        Parameters:
        appContext - The application context for which the RoleDeploymentContext is desired.