• Home
• org.bedework
• bw-calendar-facade
• 4.1.4
• source code
• AccessUtilI.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.bedework.calfacade.util.AccessUtilI Maven / Gradle / Ivy

/* ********************************************************************
    Licensed to Jasig under one or more contributor license
    agreements. See the NOTICE file distributed with this work
    for additional information regarding copyright ownership.
    Jasig licenses this file to you under the Apache License,
    Version 2.0 (the "License"); you may not use this file
    except in compliance with the License. You may obtain a
    copy of the License at:

    http://www.apache.org/licenses/LICENSE-2.0

    Unless required by applicable law or agreed to in writing,
    software distributed under the License is distributed on
    an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
    KIND, either express or implied. See the License for the
    specific language governing permissions and limitations
    under the License.
*/
package org.bedework.calfacade.util;

import org.bedework.access.Ace;
import org.bedework.access.AceWho;
import org.bedework.access.CurrentAccess;
import org.bedework.access.PrivilegeDefs;
import org.bedework.calfacade.BwCalendar;
import org.bedework.calfacade.base.BwShareableContainedDbentity;
import org.bedework.calfacade.base.ShareableEntity;
import org.bedework.calfacade.svc.PrincipalInfo;

import java.io.Serializable;
import java.util.Collection;

/** An access helper interface. This interface makes some assumptions about the
 * classes it deals with but there is no explicit hibernate, or other
 * persistence engine, dependencies.
 *
 * 
It assumes that it has access to the parent object when needed,
 * continuing on up to the root. For systems which do not allow for a
 * retrieval of the parent on calls to the getCalendar method, the getParent
 * method for this class will need to be overridden. This would presumably
 * take place within the core implementation.
 *
 *
 * @author Mike Douglass   douglm  bedework.edu
 */
public interface AccessUtilI extends PrivilegeDefs, Serializable {
  /**
   *
   * @param cb PrincipalInfo object
   */
  void init(PrincipalInfo cb);

  /** Called at request start
   *
   */
  void open();

  /** Called at request end
   *
   */
  void close();

  /** Called to get the parent object for a shared entity. This method should be
   * overriden if explicit calls to the back end calendar are required.
   *
   * @param val shareable contained entity - so parent can be located
   * @return parent calendar or null.
   */
  BwCalendar getParent(BwShareableContainedDbentity val);

  /* ====================================================================
   *                   Access control
   * ==================================================================== */

  /* * Get the default public access
   *
   * @return String value for default access
   * /
  String getDefaultPublicAccess();

  /* *
   *
   * @return String default user access
   * /
  String getDefaultPersonalAccess();
   */

  /** Change the access to the given calendar entity using the supplied aces.
   * We are changing access so we remove all access for each who in the list and
   * then add the new aces.
   *
   * @param ent        Shareable entity
   * @param aces       Collection of ace objects
   * @param replaceAll true to replace the entire access list.
   */
  void changeAccess(ShareableEntity ent,
                           Collection aces,
                           boolean replaceAll);

  /** Remove any explicit access for the given who to the given calendar entity.
  *
  * @param ent      Shareable entity
  * @param who      AceWho
  */
 void defaultAccess(ShareableEntity ent,
                           AceWho who);

  /** Return a Collection of the objects after checking access
   *
   * @param ents          Collection of BwShareableDbentity
   * @param desiredAccess access we want
   * @param alwaysReturn boolean flag behaviour on no access
   * @return Collection   of checked objects
   */
  Collection
                 checkAccess(Collection ents,
                                int desiredAccess,
                                boolean alwaysReturn);

  /** Check access for the given entity. Returns the current access
   *
   * 
We special case the access to the user root e.g /user and the home
   * directory, e.g. /user/douglm
   *
   * We deny access to /user to anybody without superuser access. This
   * prevents user browsing. This could be made a system property if the
   * organization wants user browsing.
   *
   * Default access to the home directory is read, write-content to the owner
   * only and unlimited to superuser.
   *
   * Specific access should be no more than read, write-content to the home
   * directory.
   *
   * @param ent  shareable entity
   * @param desiredAccess access we want
   * @param alwaysReturnResult boolean flag behaviour on no access
   * @return  CurrentAccess
   */
  CurrentAccess checkAccess(ShareableEntity ent,
                            int desiredAccess,
                        boolean alwaysReturnResult);
}