Class DefaultPermissionFactory
- java.lang.Object
-
- org.jboss.as.controller.access.rbac.DefaultPermissionFactory
-
- All Implemented Interfaces:
AuthorizerConfiguration.ScopedRoleListener
,PermissionFactory
public class DefaultPermissionFactory extends Object implements PermissionFactory, AuthorizerConfiguration.ScopedRoleListener
DefaultPermissionFactory
implementation that supports the WildFly default role-based access control permission scheme.- Author:
- Brian Stansberry (c) 2013 Red Hat Inc.
-
-
Constructor Summary
Constructors Constructor Description DefaultPermissionFactory(RoleMapper roleMapper, AuthorizerConfiguration authorizerConfiguration)
Creates a newDefaultPermissionFactory
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description PermissionCollection
getRequiredPermissions(Action action, TargetAttribute target)
PermissionCollection
getRequiredPermissions(Action action, TargetResource target)
PermissionCollection
getRequiredPermissions(JmxAction action, JmxTarget target)
PermissionCollection
getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, Action action, TargetAttribute target)
PermissionCollection
getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, Action action, TargetResource target)
PermissionCollection
getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, JmxAction action, JmxTarget target)
void
scopedRoleAdded(AuthorizerConfiguration.ScopedRole added)
Notification that a scoped role is being added.void
scopedRoleRemoved(AuthorizerConfiguration.ScopedRole removed)
Notification that a scoped role has been removed.
-
-
-
Constructor Detail
-
DefaultPermissionFactory
public DefaultPermissionFactory(RoleMapper roleMapper, AuthorizerConfiguration authorizerConfiguration)
Creates a newDefaultPermissionFactory
- Parameters:
roleMapper
- the role mapper. Cannot benull
authorizerConfiguration
- the configuration for theAuthorizer
that is using this factory. Cannot benull
-
-
Method Detail
-
getUserPermissions
public PermissionCollection getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, Action action, TargetAttribute target)
- Specified by:
getUserPermissions
in interfacePermissionFactory
-
getUserPermissions
public PermissionCollection getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, Action action, TargetResource target)
- Specified by:
getUserPermissions
in interfacePermissionFactory
-
getUserPermissions
public PermissionCollection getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, JmxAction action, JmxTarget target)
- Specified by:
getUserPermissions
in interfacePermissionFactory
-
getRequiredPermissions
public PermissionCollection getRequiredPermissions(Action action, TargetAttribute target)
- Specified by:
getRequiredPermissions
in interfacePermissionFactory
-
getRequiredPermissions
public PermissionCollection getRequiredPermissions(Action action, TargetResource target)
- Specified by:
getRequiredPermissions
in interfacePermissionFactory
-
getRequiredPermissions
public PermissionCollection getRequiredPermissions(JmxAction action, JmxTarget target)
- Specified by:
getRequiredPermissions
in interfacePermissionFactory
-
scopedRoleAdded
public void scopedRoleAdded(AuthorizerConfiguration.ScopedRole added)
Description copied from interface:AuthorizerConfiguration.ScopedRoleListener
Notification that a scoped role is being added. The notification will be received before the role becomes visible in the roles collections exposed by theAuthorizerConfiguration
.- Specified by:
scopedRoleAdded
in interfaceAuthorizerConfiguration.ScopedRoleListener
- Parameters:
added
- the scoped role
-
scopedRoleRemoved
public void scopedRoleRemoved(AuthorizerConfiguration.ScopedRole removed)
Description copied from interface:AuthorizerConfiguration.ScopedRoleListener
Notification that a scoped role has been removed. The notification will be received after the role is no longer visible in the roles collections exposed by theAuthorizerConfiguration
.- Specified by:
scopedRoleRemoved
in interfaceAuthorizerConfiguration.ScopedRoleListener
- Parameters:
removed
- the scoped role
-
-