All Classes and Interfaces
Class
Description
Abstract
AfterInvocationProvider
which provides commonly-used ACL-related
services.Provides an abstract superclass for
Permission
implementations.Represents an individual permission assignment within an
Acl
.An immutable default implementation of
AccessControlEntry
.Represents an access control list (ACL) for a domain object.
Strategy used by
AclImpl
to determine whether a principal is permitted to call
adminstrative methods on the AclImpl
.Default implementation of
AclAuthorizationStrategy
.A caching layer for
JdbcAclService
.Abstract base class for Acl data operations.
Given a
Collection
of domain object instances returned from a secure
object invocation, remove any Collection
elements the principal does not
have appropriate permission to access as defined by the AclService
.Given a domain object instance returned from a secure object invocation, ensures the
principal has appropriate permission as defined by the
AclService
.
Given a domain object instance passed as a method argument, ensures the principal has
appropriate permission as indicated by the
AclService
.Utility methods for displaying ACL information.
Base implementation of
Acl
.Batch loads ACLs for collections of objects to allow optimised filtering.
Used by Spring Security's expression-based access control implementation to evaluate
permissions for a particular object using the ACL module.
Provides retrieval of
Acl
instances.Thrown if an
Acl
entry already exists for the object.Represents an ACE that provides auditing information.
A mutable ACL that provides audit capabilities.
Used by
AclImpl
to log audit events.A set of standard permissions.
Performs lookups in a manner that is compatible with ANSI SQL.
Thrown if an
Acl
cannot be deleted because children Acl
s exist.A basic implementation of
AuditLogger
.Represents a
Permission
that is constructed at runtime from other
permissions.Default implementation of
PermissionFactory
.Represents a
GrantedAuthority
as a Sid
.Thrown if an ACL identity could not be extracted from an object.
Simple JDBC-based implementation of
AclService
.Provides a base JDBC implementation of
MutableAclService
.Performs lookups for
AclService
.A mutable Acl.
Provides support for creating and storing
Acl
instances.Thrown if an ACL-related object cannot be found.
Represents the identity of an individual domain object instance.
Strategy which creates an
ObjectIdentity
from an object identifier (such as a
primary key) and type information.Simple implementation of
ObjectIdentity
.Strategy interface that provides the ability to determine which
ObjectIdentity
will be returned for a particular domain objectBasic implementation of
ObjectIdentityRetrievalStrategy
and
ObjectIdentityGenerator that uses the constructors of
ObjectIdentityImpl
to create the ObjectIdentity
.A mutable ACL that provides ownership capabilities.
Represents a permission granted to a Sid for a given domain object.
Provides a simple mechanism to retrieve
Permission
instances from integer
masks.Allow customization of the logic for determining whether a permission or permissions
are granted to a particular sid or sids by an
Acl
.Represents an
Authentication.getPrincipal()
as a Sid
.A security identity recognised by the ACL system.
Strategy interface that provides an ability to determine the
Sid
instances
applicable for an Authentication
.Basic implementation of
SidRetrievalStrategy
that creates a Sid
for the
principal, as well as every granted authority the principal holds.Simple implementation of
AclCache
that
delegates to Cache
implementation.Thrown if an
Acl
cannot perform an operation because it only loaded a subset of
Sid
s and the caller has requested details for an unloaded Sid
.