ome.security.basic

Class GroupChmodStrategy

java.lang.Object

ome.security.basic.GroupChmodStrategy

All Implemented Interfaces:

ChmodStrategy, org.springframework.context.ApplicationContextAware

public class GroupChmodStrategy
extends Object
implements ChmodStrategy, org.springframework.context.ApplicationContextAware

ChmodStrategy which only permits modifying the permissions on groups.

Since:

4.4

Author:

Josh Moore, josh at glencoesoftware.com

Constructor Summary

Constructors

Constructor and Description
GroupChmodStrategy(BasicACLVoter voter, SessionFactory osf, SqlAction sql, ExtendedMetadata em)

Method Summary

Methods

Modifier and Type	Method and Description
void	check(IObject obj, Object check) Here we used the checks returned from ExtendedMetadata to iterate through every non-system table and check that it has no FKs which point to back to its rows and violate the read permissions which are being reduced.
void	chmod(IObject obj, String permissions) Change the permissions for the given object.
Object[]	getChecks(IObject obj, String permissions) Return all the checks necessary to validate the given object if it were to have its permissions.
void	setApplicationContext(org.springframework.context.ApplicationContext ctx) Set the ApplicationContext that this object runs in.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

GroupChmodStrategy

public GroupChmodStrategy(BasicACLVoter voter,
                  SessionFactory osf,
                  SqlAction sql,
                  ExtendedMetadata em)

Method Detail

setApplicationContext

public void setApplicationContext(org.springframework.context.ApplicationContext ctx)
                           throws org.springframework.beans.BeansException

Description copied from interface: org.springframework.context.ApplicationContextAware

Set the ApplicationContext that this object runs in. Normally this call will be used to initialize the object.

Invoked after population of normal bean properties but before an init callback such as InitializingBean.afterPropertiesSet() or a custom init-method. Invoked after ResourceLoaderAware.setResourceLoader(org.springframework.core.io.ResourceLoader), ApplicationEventPublisherAware.setApplicationEventPublisher(org.springframework.context.ApplicationEventPublisher) and MessageSourceAware, if applicable.

Specified by:

setApplicationContext in interface org.springframework.context.ApplicationContextAware

Parameters:

ctx - the ApplicationContext object to be used by this object

Throws:

org.springframework.context.ApplicationContextException - in case of context initialization errors

org.springframework.beans.BeansException - if thrown by application context methods

See Also:

BeanInitializationException

getChecks

public Object[] getChecks(IObject obj,
                 String permissions)

Description copied from interface: ChmodStrategy

Return all the checks necessary to validate the given object if it were to have its permissions. The Object return value should be assumed opaque, and is primarily intended for passing it back to ChmodStrategy.check(IObject, Object).

Specified by:

getChecks in interface ChmodStrategy

chmod

public void chmod(IObject obj,
         String permissions)

Description copied from interface: ChmodStrategy

Change the permissions for the given object. This may do nothing if the permissions do not differ from the current settings. In any case, this method is intended to return quickly. Once the change takes place, it will be necessary to run #check(IObject, String) to guarantee that no invalid links are present.

Specified by:

chmod in interface ChmodStrategy

check

public void check(IObject obj,
         Object check)

Here we used the checks returned from ExtendedMetadata to iterate through every non-system table and check that it has no FKs which point to back to its rows and violate the read permissions which are being reduced.

Specified by:

check in interface ChmodStrategy