Class FolderReadPermissionForNonAnonymous
java.lang.Object
ch.tocco.nice2.dms.spi.security.policyprocessor.AbstractDmsPolicyProcessor
ch.tocco.nice2.dms.impl.security.policyprocessor.FolderReadPermissionForNonAnonymous
- All Implemented Interfaces:
PolicyProcessor
Efficient implementation of the following rule for Folder entities:
grant access(read) except &anonymous if
not system
and entity_model == null
and exists (relNode_right where relNode_permission.unique_id == "read" and relRole.relLogin_role.relPrincipal.username == principal.name)
and not mail_box;
-
Field Summary
Fields inherited from class ch.tocco.nice2.dms.spi.security.policyprocessor.AbstractDmsPolicyProcessor
context, evaluationService, typeManager -
Constructor Summary
ConstructorsConstructorDescriptionFolderReadPermissionForNonAnonymous(Context context, TypeManager typeManager, PermissionMatrixEvaluationService evaluationService) -
Method Summary
Modifier and TypeMethodDescriptionprotected NodegetAdditionalCondition(EntityModel entityModel) protected Stringprotected booleanisSupported(Principal principal) Methods inherited from class ch.tocco.nice2.dms.spi.security.policyprocessor.AbstractDmsPolicyProcessor
getEntityModel, prependRule, processPolicy
-
Constructor Details
-
FolderReadPermissionForNonAnonymous
public FolderReadPermissionForNonAnonymous(Context context, TypeManager typeManager, PermissionMatrixEvaluationService evaluationService)
-
-
Method Details
-
isSupported
- Specified by:
isSupportedin classAbstractDmsPolicyProcessor
-
getNodePermissionName
- Specified by:
getNodePermissionNamein classAbstractDmsPolicyProcessor
-
getAdditionalCondition
- Specified by:
getAdditionalConditionin classAbstractDmsPolicyProcessor
-