All Superinterfaces:
SecurityProvider
All Known Implementing Classes:
SimpleRoleMappingProviderImpl
RoleMappingProvider
instances are used by the
RoleMappingService
to evaluate role policy conditions.
The security provider is part of a plug-in mechanism which allows decisions
to be handled by a configured implementation.
Method Summary
All Methods Instance Methods Abstract Methods
Find an existing RoleDeploymentContext
, or create a new one if one does not
already exist for the specified application context.
boolean
Determine whether the user (AzSubject
) has the indicated role
for a given resource (AzResource
) and application context.
Method Details
isUserInRole
Determine whether the user (AzSubject
) has the indicated role
for a given resource (AzResource
) and application context.
Parameters:
appContext
- The application context for the query (can be null).
subject
- The target Subject
.
resource
- The URI
resource for the query.
role
- The target role.
environment
- The attributes collection representing the environment.
attributeResolvers
- The ordered list of attribute resolvers.
findOrCreateDeploymentContext
Find an existing RoleDeploymentContext
, or create a new one if one does not
already exist for the specified application context.
Parameters:
appContext
- The application context for which the RoleDeploymentContext
is desired.