All Classes and Interfaces
Class
Description
Abstract
AfterInvocationProvider which provides commonly-used ACL-related
services.Provides an abstract superclass for
Permission implementations.Represents an individual permission assignment within an
Acl.An immutable default implementation of
AccessControlEntry.Represents an access control list (ACL) for a domain object.
Strategy used by
AclImpl to determine whether a principal is permitted to call
adminstrative methods on the AclImpl.Default implementation of
AclAuthorizationStrategy.A caching layer for
JdbcAclService.Abstract base class for Acl data operations.
Given a
Collection of domain object instances returned from a secure
object invocation, remove any Collection elements the principal does not
have appropriate permission to access as defined by the AclService.Given a domain object instance returned from a secure object invocation, ensures the
principal has appropriate permission as defined by the
AclService.
Given a domain object instance passed as a method argument, ensures the principal has
appropriate permission as indicated by the
AclService.Utility methods for displaying ACL information.
Base implementation of
Acl.Batch loads ACLs for collections of objects to allow optimised filtering.
Used by Spring Security's expression-based access control implementation to evaluate
permissions for a particular object using the ACL module.
Provides retrieval of
Acl instances.Thrown if an
Acl entry already exists for the object.Represents an ACE that provides auditing information.
A mutable ACL that provides audit capabilities.
Used by
AclImpl to log audit events.A set of standard permissions.
Performs lookups in a manner that is compatible with ANSI SQL.
Thrown if an
Acl cannot be deleted because children Acls exist.A basic implementation of
AuditLogger.Represents a
Permission that is constructed at runtime from other
permissions.Default implementation of
PermissionFactory.Represents a
GrantedAuthority as a Sid.Thrown if an ACL identity could not be extracted from an object.
Simple JDBC-based implementation of
AclService.Provides a base JDBC implementation of
MutableAclService.Performs lookups for
AclService.A mutable Acl.
Provides support for creating and storing
Acl instances.Thrown if an ACL-related object cannot be found.
Represents the identity of an individual domain object instance.
Strategy which creates an
ObjectIdentity from an object identifier (such as a
primary key) and type information.Simple implementation of
ObjectIdentity.Strategy interface that provides the ability to determine which
ObjectIdentity
will be returned for a particular domain objectBasic implementation of
ObjectIdentityRetrievalStrategy and
ObjectIdentityGenerator that uses the constructors of
ObjectIdentityImpl to create the ObjectIdentity.A mutable ACL that provides ownership capabilities.
Represents a permission granted to a Sid for a given domain object.
Provides a simple mechanism to retrieve
Permission instances from integer
masks.Allow customization of the logic for determining whether a permission or permissions
are granted to a particular sid or sids by an
Acl.Represents an
Authentication.getPrincipal() as a Sid.A security identity recognised by the ACL system.
Strategy interface that provides an ability to determine the
Sid instances
applicable for an Authentication.Basic implementation of
SidRetrievalStrategy that creates a Sid for the
principal, as well as every granted authority the principal holds.Simple implementation of
AclCache that
delegates to Cache implementation.Thrown if an
Acl cannot perform an operation because it only loaded a subset of
Sids and the caller has requested details for an unloaded Sid
.