org.kuali.ole.sec.service.impl

Class AccessSecurityServiceImpl

java.lang.Object

org.kuali.ole.sec.service.impl.AccessSecurityServiceImpl

All Implemented Interfaces:

AccessSecurityService

public class AccessSecurityServiceImpl
extends Object
implements AccessSecurityService

See Also:

AccessSecurityService

Field Summary

Fields

Modifier and Type	Field and Description
protected org.kuali.rice.core.api.config.property.ConfigurationService	configurationService
protected ContractsAndGrantsModuleService	contractsAndGrantsModuleService
protected org.kuali.rice.kns.service.DataDictionaryService	dataDictionaryService
protected org.kuali.rice.coreservice.framework.parameter.ParameterService	parameterService

Constructor Summary

Constructors

Constructor and Description
AccessSecurityServiceImpl()

Method Summary

Methods

Modifier and Type	Method and Description
void	applySecurityRestrictions(List<? extends org.kuali.rice.krad.bo.BusinessObject> results, org.kuali.rice.kim.api.identity.Person person, org.kuali.rice.kim.api.common.template.Template permissionTemplate, Map<String,String> additionalPermissionDetails) Retrieves any setup security permissions for the given person and evaluates against List of business objects.
void	applySecurityRestrictionsForGLInquiry(List<? extends org.kuali.rice.krad.bo.BusinessObject> results, org.kuali.rice.kim.api.identity.Person person) Retrieves any setup security permissions (with gl inquiry template) for the given person and evaluates against List of business objects.
void	applySecurityRestrictionsForLookup(List<? extends org.kuali.rice.krad.bo.BusinessObject> results, org.kuali.rice.kim.api.identity.Person person) Retrieves any setup security permissions (with lookup template) for the given person and evaluates against List of business objects.
boolean	canEditDocumentAccountingLine(AccountingDocument document, AccountingLine accountingLine, org.kuali.rice.kim.api.identity.Person person) Checks any edit access security permissions setup for the user and for accounting lines of the given document type
boolean	canEditDocumentAccountingLine(AccountingDocument document, AccountingLine accountingLine, org.kuali.rice.kim.api.identity.Person person, AccessSecurityRestrictionInfo restrictionInfo) Checks any edit access security permissions setup for the user and for accounting lines of the given document type
boolean	canViewDocument(AccountingDocument document, org.kuali.rice.kim.api.identity.Person person, AccessSecurityRestrictionInfo restrictionInfo) Checks view access on all accounting lines contained on the document for given user
boolean	canViewDocumentAccountingLine(AccountingDocument document, AccountingLine accountingLine, org.kuali.rice.kim.api.identity.Person person) Checks any view access security permissions setup for the user and for accounting lines of the given document type
boolean	canViewDocumentNotesAttachments(AccountingDocument document, org.kuali.rice.kim.api.identity.Person person) Checks access is allowed to view document notes based on the document's accounting lines
boolean	canViewGLPE(org.kuali.rice.krad.document.Document document, GeneralLedgerPendingEntry pendingEntry, org.kuali.rice.kim.api.identity.Person person) Calls access security service to check view access on given GLPE for current user.
protected boolean	checkForEditLineOverrides(AccountingDocument document, AccountingLine line, org.kuali.rice.kim.api.identity.Person person) Checks parameter overrides for edit line permission.
protected boolean	checkForViewDocumentOverrides(AccountingDocument document, org.kuali.rice.kim.api.identity.Person person) Checks parameter overrides for view document permission.
protected boolean	checkForViewLineOverrides(AccountingDocument document, AccountingLine line, org.kuali.rice.kim.api.identity.Person person) Checks parameter overrides for view line permission.
protected boolean	checkForWorkflowRoutingRequests(AccountingDocument document, org.kuali.rice.kim.api.identity.Person person) Checks for any workflow requests (approve, acknowledge, fyi) for the document to the given person
void	compareListSizeAndAddMessageIfChanged(int previousListSize, List<?> results, String messageKey) Compares the size of the given list against the given previous size and if different adds an info message
protected AccessPermissionEvaluator	constructAccessPermissionEvaluator(Class<? extends AccessPermissionEvaluator> accessPermissionEvaluatorClass, Map<String,String> attributeSet, Map<String,Object> otherKeyValues, org.kuali.rice.kim.api.identity.Person person) Constructs a new instance of the AccessPermissionEvaluator class and sets the constraint, operator, and value based on the given qualification
protected boolean	evaluateSecurityOnAccountingLinesByTemplate(AccountingDocument document, org.kuali.rice.kim.api.identity.Person person, org.kuali.rice.kim.api.common.template.Template permissionTemplate, AccessSecurityRestrictionInfo restrictionInfo) Iterates through source and target accounting lines for the given document and evaluates any permissions with the given template id against the accounting line values
protected boolean	evaluateSecurityPermissions(Class<? extends AccessPermissionEvaluator> accessPermissionEvaluatorClass, List<org.kuali.rice.kim.api.permission.Permission> permissions, String value, org.kuali.rice.kim.api.identity.Person person, Map<String,Object> otherKeyValues) Checks whether the given value is allowed based on the given permissions and user
protected boolean	evaluateSecurityPermissionsByTemplate(org.kuali.rice.krad.bo.BusinessObject businessObject, Class entryClass, org.kuali.rice.kim.api.identity.Person person, org.kuali.rice.kim.api.common.template.Template permissionTemplate, Map<String,String> additionalPermissionDetails, AccessSecurityRestrictionInfo restrictionInfo) Validates any security permissions setup for the user and attributes of the class against the business object values
Collection<String>	getAccessSecurityControlledDocumentTypeNames() Returns all the documents for which access security controls are in place.
protected Map<String,String>	getDocumentTypeDetail(AccountingDocument document) Constructs a new Map and adds document type name detail with value from document instance
org.kuali.rice.kim.api.common.template.Template	getEditAccountingLineWithFieldValueTemplate() Gets the Edit Accounting Line With Field Value Template Id.
org.kuali.rice.kim.api.common.template.Template	getEditDocumentWithFieldValueTemplate() Gets the Edit Document With Field Value Template Id.
org.kuali.rice.kim.api.common.template.Template	getInquiryWithFieldValueTemplate() Gets the Inquiry With Field Value Template Id.
org.kuali.rice.kim.api.common.template.Template	getLookupWithFieldValueTemplate() Gets the Lookup With Field Value Template Id.
org.kuali.rice.kim.api.permission.PermissionService	getPermissionService()
org.kuali.rice.kim.api.role.RoleService	getRoleService()
org.kuali.rice.kim.api.common.template.Template	getViewAccountingLineWithFieldValueTemplate() Gets the View Accounting Line With Field Value Template Id.
org.kuali.rice.kim.api.common.template.Template	getViewDocumentWithFieldValueTemplate() Gets the View Document With Field Values template ID.
org.kuali.rice.kim.api.common.template.Template	getViewNotesAttachmentsWithFieldValueTemplate() Gets the View Notes Attachments With Field Value Template Id.
boolean	isAccessSecurityControlledDocumentType(String documentTypeName)
protected boolean	isAccessSecurityEnabled() Helper method to check system parameter that turns access security on/off
void	setConfigurationService(org.kuali.rice.core.api.config.property.ConfigurationService configurationService)
void	setContractsAndGrantsModuleService(ContractsAndGrantsModuleService contractsAndGrantsModuleService) Sets the contractsAndGrantsModuleService attribute value.
void	setDataDictionaryService(org.kuali.rice.kns.service.DataDictionaryService dataDictionaryService) Sets the dataDictionaryService attribute value.
void	setParameterService(org.kuali.rice.coreservice.framework.parameter.ParameterService parameterService) Sets the parameterService attribute value.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

dataDictionaryService

protected org.kuali.rice.kns.service.DataDictionaryService dataDictionaryService

parameterService

protected org.kuali.rice.coreservice.framework.parameter.ParameterService parameterService

contractsAndGrantsModuleService

protected ContractsAndGrantsModuleService contractsAndGrantsModuleService

configurationService

protected org.kuali.rice.core.api.config.property.ConfigurationService configurationService

Constructor Detail

AccessSecurityServiceImpl

public AccessSecurityServiceImpl()

Method Detail

applySecurityRestrictionsForGLInquiry

public void applySecurityRestrictionsForGLInquiry(List<? extends org.kuali.rice.krad.bo.BusinessObject> results,
                                         org.kuali.rice.kim.api.identity.Person person)

Description copied from interface: AccessSecurityService

Retrieves any setup security permissions (with gl inquiry template) for the given person and evaluates against List of business objects. Any instances not passing validation are removed from given list.

Specified by:

applySecurityRestrictionsForGLInquiry in interface AccessSecurityService

Parameters:

results - List of business object instances with data to check

person - Person to apply security for

See Also:

AccessSecurityService.applySecurityRestrictionsForGLInquiry(java.util.List, org.kuali.rice.kim.api.identity.Person)

applySecurityRestrictionsForLookup

public void applySecurityRestrictionsForLookup(List<? extends org.kuali.rice.krad.bo.BusinessObject> results,
                                      org.kuali.rice.kim.api.identity.Person person)

Description copied from interface: AccessSecurityService

Retrieves any setup security permissions (with lookup template) for the given person and evaluates against List of business objects. Any instances not passing validation are removed from given list.

Specified by:

applySecurityRestrictionsForLookup in interface AccessSecurityService

Parameters:

results - List of business object instances with data to check

person - Person to apply security for

See Also:

AccessSecurityService.applySecurityRestrictionsForLookup(java.util.List, org.kuali.rice.kim.api.identity.Person)

applySecurityRestrictions

public void applySecurityRestrictions(List<? extends org.kuali.rice.krad.bo.BusinessObject> results,
                             org.kuali.rice.kim.api.identity.Person person,
                             org.kuali.rice.kim.api.common.template.Template permissionTemplate,
                             Map<String,String> additionalPermissionDetails)

Retrieves any setup security permissions for the given person and evaluates against List of business objects. Any instances not passing validation are removed from given list.

Specified by:

applySecurityRestrictions in interface AccessSecurityService

Parameters:

results - List of business object instances with data to check

person - Person to apply security for

templateId - KIM template id for permissions to check

additionalPermissionDetails - Any additional details that should be matched on when retrieving permissions

canEditDocumentAccountingLine

public boolean canEditDocumentAccountingLine(AccountingDocument document,
                                    AccountingLine accountingLine,
                                    org.kuali.rice.kim.api.identity.Person person,
                                    AccessSecurityRestrictionInfo restrictionInfo)

Description copied from interface: AccessSecurityService

Checks any edit access security permissions setup for the user and for accounting lines of the given document type

Specified by:

canEditDocumentAccountingLine in interface AccessSecurityService

Parameters:

document - AccountingDocument instance that contains the line to be validated, doc type of instance is used for retrieving permissions

accountingLine - AccountingLine instance with values to check

person - the user who we are checking access for

restrictionInfo - Object providing information on a restriction if one is found

Returns:

boolean true if user has edit access for the accounting line, false otherwise

See Also:

AccessSecurityService.canEditDocumentAccountingLine(org.kuali.ole.sys.document.AccountingDocument, org.kuali.ole.sys.businessobject.AccountingLine, org.kuali.rice.kim.api.identity.Person, org.kuali.ole.sec.businessobject.AccessSecurityRestrictionInfo)

canEditDocumentAccountingLine

public boolean canEditDocumentAccountingLine(AccountingDocument document,
                                    AccountingLine accountingLine,
                                    org.kuali.rice.kim.api.identity.Person person)

Description copied from interface: AccessSecurityService

Checks any edit access security permissions setup for the user and for accounting lines of the given document type

Specified by:

canEditDocumentAccountingLine in interface AccessSecurityService

Parameters:

document - AccountingDocument instance that contains the line to be validated, doc type of instance is used for retrieving permissions

accountingLine - AccountingLine instance with values to check

person - the user who we are checking access for

Returns:

boolean true if user has edit access for the accounting line, false otherwise

See Also:

AccessSecurityService.canEditDocumentAccountingLine(org.kuali.ole.sys.document.AccountingDocument, org.kuali.ole.sys.businessobject.AccountingLine, org.kuali.rice.kim.api.identity.Person)

canViewDocument

public boolean canViewDocument(AccountingDocument document,
                      org.kuali.rice.kim.api.identity.Person person,
                      AccessSecurityRestrictionInfo restrictionInfo)

Description copied from interface: AccessSecurityService

Checks view access on all accounting lines contained on the document for given user

Specified by:

canViewDocument in interface AccessSecurityService

Parameters:

document - AccountingDocument instance with accounting lines to check, doc type of instance is used for retrieving permissions

person - the user who we are checking access for

restrictionInfo - Object providing information on a restriction if one is found

Returns:

boolean true if the user has view access for all accounting lines on the document, false if access is denied on one or more lines

See Also:

AccessSecurityService.canViewDocument(org.kuali.ole.sys.document.AccountingDocument, org.kuali.rice.kim.api.identity.Person, org.kuali.ole.sec.businessobject.AccessSecurityRestrictionInfo)

canViewDocumentAccountingLine

public boolean canViewDocumentAccountingLine(AccountingDocument document,
                                    AccountingLine accountingLine,
                                    org.kuali.rice.kim.api.identity.Person person)

Description copied from interface: AccessSecurityService

Checks any view access security permissions setup for the user and for accounting lines of the given document type

Specified by:

canViewDocumentAccountingLine in interface AccessSecurityService

Parameters:

document - AccountingDocument that contains the line to be validated, doc type of instance is used for retrieving permissions

accountingLine - AccountingLine instance with values to check

person - the user who we are checking access for

Returns:

boolean true if user has view access for the accounting line, false otherwise

See Also:

AccessSecurityService.canViewDocumentAccountingLine(org.kuali.ole.sys.document.AccountingDocument, org.kuali.ole.sys.businessobject.AccountingLine, org.kuali.rice.kim.api.identity.Person)

canViewDocumentNotesAttachments

public boolean canViewDocumentNotesAttachments(AccountingDocument document,
                                      org.kuali.rice.kim.api.identity.Person person)

Description copied from interface: AccessSecurityService

Checks access is allowed to view document notes based on the document's accounting lines

Specified by:

canViewDocumentNotesAttachments in interface AccessSecurityService

Parameters:

document - AccountingDocument instance with accounting lines to check, doc type of instance is used for retrieving permissions

person - the user who we are checking access for

Returns:

boolean true if the user has permission to view the notes/attachments, false otherwise

See Also:

AccessSecurityService.canViewDocumentNotesAttachments(org.kuali.ole.sys.document.AccountingDocument, org.kuali.rice.kim.api.identity.Person)

evaluateSecurityOnAccountingLinesByTemplate

protected boolean evaluateSecurityOnAccountingLinesByTemplate(AccountingDocument document,
                                                  org.kuali.rice.kim.api.identity.Person person,
                                                  org.kuali.rice.kim.api.common.template.Template permissionTemplate,
                                                  AccessSecurityRestrictionInfo restrictionInfo)

Iterates through source and target accounting lines for the given document and evaluates any permissions with the given template id against the accounting line values

Parameters:

document - AccountingDocument instance with accounting lines to check, doc type of instance is used for retrieving permissions

person - the user who we are checking access for

templateId - KIM template id for the permissions to check

restrictionInfo - Object providing information on a restriction if one is found

Returns:

boolean true if all accounting lines pass permissions, false if at least one accounting line does not pass

checkForWorkflowRoutingRequests

protected boolean checkForWorkflowRoutingRequests(AccountingDocument document,
                                      org.kuali.rice.kim.api.identity.Person person)

Checks for any workflow requests (approve, acknowledge, fyi) for the document to the given person

Parameters:

document - Document to check for routing requests

person - Person to check for routing requests

Returns:

boolean true if there are workflow requests, false if not

checkForViewDocumentOverrides

protected boolean checkForViewDocumentOverrides(AccountingDocument document,
                                    org.kuali.rice.kim.api.identity.Person person)

Checks parameter overrides for view document permission. Currently only have initiator override parameter

Parameters:

document - Document that we are checking permissions for

person - Person we are checking permissions for

Returns:

boolean true if overrides are turned on and the person meets the override conditions, false if overrides are not turned on or the person does not meet condition

checkForViewLineOverrides

protected boolean checkForViewLineOverrides(AccountingDocument document,
                                AccountingLine line,
                                org.kuali.rice.kim.api.identity.Person person)

Checks parameter overrides for view line permission. Currently only have initiator, fiscal officer, and principal investigator overrides

Parameters:

document - Document that we are checking permissions for

person - Person we are checking permissions for

line - AccountingLine we are checking permissions for

Returns:

boolean true if any override is turned on and the person meets the override conditions, false otherwise

checkForEditLineOverrides

protected boolean checkForEditLineOverrides(AccountingDocument document,
                                AccountingLine line,
                                org.kuali.rice.kim.api.identity.Person person)

Checks parameter overrides for edit line permission. Currently only have fiscal officer and principal investigator overrides

Parameters:

document - Document that we are checking permissions for

person - Person we are checking permissions for

line - AccountingLine we are checking permissions for

Returns:

boolean true if any override is turned on and the person meets the override conditions, false otherwise

evaluateSecurityPermissionsByTemplate

protected boolean evaluateSecurityPermissionsByTemplate(org.kuali.rice.krad.bo.BusinessObject businessObject,
                                            Class entryClass,
                                            org.kuali.rice.kim.api.identity.Person person,
                                            org.kuali.rice.kim.api.common.template.Template permissionTemplate,
                                            Map<String,String> additionalPermissionDetails,
                                            AccessSecurityRestrictionInfo restrictionInfo)

Validates any security permissions setup for the user and attributes of the class against the business object values

Parameters:

businessObject - instance with attribute values to validate

entryClass - Class of business object to pull attribute restrictions for

person - the user who we are checking access for

templateId - type of security permissions to check

additionalPermissionDetails - any additional details that should be used for retrieving permissions

restrictionInfo - Object providing information on a restriction if one is found

Returns:

boolean true if user has access given by template to the business object, false otherwise

getDocumentTypeDetail

protected Map<String,String> getDocumentTypeDetail(AccountingDocument document)

Constructs a new Map and adds document type name detail with value from document instance

Parameters:

document - AccountingDocument instance which document type will be set from

Returns:

Map containing document type name detail

evaluateSecurityPermissions

protected boolean evaluateSecurityPermissions(Class<? extends AccessPermissionEvaluator> accessPermissionEvaluatorClass,
                                  List<org.kuali.rice.kim.api.permission.Permission> permissions,
                                  String value,
                                  org.kuali.rice.kim.api.identity.Person person,
                                  Map<String,Object> otherKeyValues)

Checks whether the given value is allowed based on the given permissions and user

Parameters:

accessPermissionEvaluatorClass - Class of type AccessPermissionEvaluator that will be used to evaluate the security restriction

permissions - List of permissions to evaluate

value - the value that will be checked

person - the user who we are checking access for

otherKeyValues - Map for other key field name/value pairs

Returns:

boolean true if access is allowed false if not

constructAccessPermissionEvaluator

protected AccessPermissionEvaluator constructAccessPermissionEvaluator(Class<? extends AccessPermissionEvaluator> accessPermissionEvaluatorClass,
                                                           Map<String,String> attributeSet,
                                                           Map<String,Object> otherKeyValues,
                                                           org.kuali.rice.kim.api.identity.Person person)

Constructs a new instance of the AccessPermissionEvaluator class and sets the constraint, operator, and value based on the given qualification

Parameters:

accessPermissionEvaluatorClass - Class to create instance of (must implement AccessPermissionEvaluator interface)

attributeSet - Map containing the qualifier values

otherKeyValues - Map for other key field name/value pairs

person - Person who permission should be evaluated for

Returns:

new instance of type AccessPermissionEvaluator

See Also:

AccessPermissionEvaluator

isAccessSecurityEnabled

protected boolean isAccessSecurityEnabled()

Helper method to check system parameter that turns access security on/off

Returns:

boolean indicating whether access security is turned on (true) or off (false)

setDataDictionaryService

public void setDataDictionaryService(org.kuali.rice.kns.service.DataDictionaryService dataDictionaryService)

Sets the dataDictionaryService attribute value.

Parameters:

dataDictionaryService - The dataDictionaryService to set.

setParameterService

public void setParameterService(org.kuali.rice.coreservice.framework.parameter.ParameterService parameterService)

Sets the parameterService attribute value.

Parameters:

parameterService - The parameterService to set.

setConfigurationService

public void setConfigurationService(org.kuali.rice.core.api.config.property.ConfigurationService configurationService)

getPermissionService

public org.kuali.rice.kim.api.permission.PermissionService getPermissionService()

getRoleService

public org.kuali.rice.kim.api.role.RoleService getRoleService()

setContractsAndGrantsModuleService

public void setContractsAndGrantsModuleService(ContractsAndGrantsModuleService contractsAndGrantsModuleService)

Sets the contractsAndGrantsModuleService attribute value.

Parameters:

contractsAndGrantsModuleService - The contractsAndGrantsModuleService to set.

getEditAccountingLineWithFieldValueTemplate

public org.kuali.rice.kim.api.common.template.Template getEditAccountingLineWithFieldValueTemplate()

Description copied from interface: AccessSecurityService

Gets the Edit Accounting Line With Field Value Template Id.

Specified by:

getEditAccountingLineWithFieldValueTemplate in interface AccessSecurityService

Returns:

the Edit Accounting Line With Field Value Template Id

See Also:

org.kuali.ole.sec.service.AccessSecurityService#getEditAccountingLineWithFieldValueTemplateId()

getEditDocumentWithFieldValueTemplate

public org.kuali.rice.kim.api.common.template.Template getEditDocumentWithFieldValueTemplate()

Description copied from interface: AccessSecurityService

Gets the Edit Document With Field Value Template Id.

Specified by:

getEditDocumentWithFieldValueTemplate in interface AccessSecurityService

Returns:

the Edit Document With Field Value Template Id

See Also:

org.kuali.ole.sec.service.AccessSecurityService#getEditDocumentWithFieldValueTemplateId()

getInquiryWithFieldValueTemplate

public org.kuali.rice.kim.api.common.template.Template getInquiryWithFieldValueTemplate()

Description copied from interface: AccessSecurityService

Gets the Inquiry With Field Value Template Id.

Specified by:

getInquiryWithFieldValueTemplate in interface AccessSecurityService

Returns:

the InquiryWithFieldValueTemplateId

See Also:

org.kuali.ole.sec.service.AccessSecurityService#getInquiryWithFieldValueTemplateId()

getLookupWithFieldValueTemplate

public org.kuali.rice.kim.api.common.template.Template getLookupWithFieldValueTemplate()

Description copied from interface: AccessSecurityService

Gets the Lookup With Field Value Template Id.

Specified by:

getLookupWithFieldValueTemplate in interface AccessSecurityService

Returns:

the Lookup With Field Value Template Id

See Also:

org.kuali.ole.sec.service.AccessSecurityService#getLookupWithFieldValueTemplateId()

getViewAccountingLineWithFieldValueTemplate

public org.kuali.rice.kim.api.common.template.Template getViewAccountingLineWithFieldValueTemplate()

Description copied from interface: AccessSecurityService

Gets the View Accounting Line With Field Value Template Id.

Specified by:

getViewAccountingLineWithFieldValueTemplate in interface AccessSecurityService

Returns:

the View Accounting Line With Field Value Template Id

See Also:

org.kuali.ole.sec.service.AccessSecurityService#getViewAccountingLineWithFieldValueTemplateId()

getViewDocumentWithFieldValueTemplate

public org.kuali.rice.kim.api.common.template.Template getViewDocumentWithFieldValueTemplate()

Description copied from interface: AccessSecurityService

Gets the View Document With Field Values template ID.

Specified by:

getViewDocumentWithFieldValueTemplate in interface AccessSecurityService

Returns:

the View Document With Field Values template ID

See Also:

org.kuali.ole.sec.service.AccessSecurityService#getViewDocumentWithFieldValueTemplateId()

getViewNotesAttachmentsWithFieldValueTemplate

public org.kuali.rice.kim.api.common.template.Template getViewNotesAttachmentsWithFieldValueTemplate()

Description copied from interface: AccessSecurityService

Gets the View Notes Attachments With Field Value Template Id.

Specified by:

getViewNotesAttachmentsWithFieldValueTemplate in interface AccessSecurityService

Returns:

the View Notes Attachments With Field Value Template Id

See Also:

org.kuali.ole.sec.service.AccessSecurityService#getViewNotesAttachmentsWithFieldValueTemplateId()

canViewGLPE

public boolean canViewGLPE(org.kuali.rice.krad.document.Document document,
                  GeneralLedgerPendingEntry pendingEntry,
                  org.kuali.rice.kim.api.identity.Person person)

Calls access security service to check view access on given GLPE for current user. Access to view the GLPE on the document should be related to the view permissions for an accounting line with the same account attributes. Called from generalLedgerPendingEntries.tag

Specified by:

canViewGLPE in interface AccessSecurityService

Parameters:

pendingEntry - GeneralLedgerPendingEntry to check access for

Returns:

boolean true if given user has view permission, false otherwise

compareListSizeAndAddMessageIfChanged

public void compareListSizeAndAddMessageIfChanged(int previousListSize,
                                         List<?> results,
                                         String messageKey)

Compares the size of the given list against the given previous size and if different adds an info message

Specified by:

compareListSizeAndAddMessageIfChanged in interface AccessSecurityService

Parameters:

previousListSize - int giving previous size of list to compare to

results - List to get size for and compare

messageKey - String key of message that should be added

getAccessSecurityControlledDocumentTypeNames

public Collection<String> getAccessSecurityControlledDocumentTypeNames()

Description copied from interface: AccessSecurityService

Returns all the documents for which access security controls are in place.

Specified by:

getAccessSecurityControlledDocumentTypeNames in interface AccessSecurityService

isAccessSecurityControlledDocumentType

public boolean isAccessSecurityControlledDocumentType(String documentTypeName)

Specified by:

isAccessSecurityControlledDocumentType in interface AccessSecurityService