Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.kuali.rice.krad.service.impl
Class DataObjectAuthorizationServiceImpl

java.lang.Object
  extended by org.kuali.rice.krad.service.impl.DataObjectAuthorizationServiceImpl
All Implemented Interfaces:
DataObjectAuthorizationService
Direct Known Subclasses:
BusinessObjectAuthorizationServiceImpl
public class DataObjectAuthorizationServiceImpl
extends Object
implements DataObjectAuthorizationService

Implementation of DataObjectAuthorizationService that uses the configured AttributeSecurity for a field to determine authorization checks that need to be performed

Author:
Kuali Rice Team (rice.collab@kuali.org)

Constructor Summary
DataObjectAuthorizationServiceImpl()
           
 
Method Summary
 boolean attributeValueNeedsToBeEncryptedOnFormsAndLinks(Class<?> dataObjectClass, String attributeName)
          Indicates whether the given attribute of the given data object class has any security defined (such as read-only, masked, ...) and therefore data for the attribute should be securely passed
 boolean canCreate(Class<?> dataObjectClass, Person user, String docTypeName)
          Indicates whether the given user has permission to create records of the given data object class with the given document type
 boolean canMaintain(Object dataObject, Person user, String docTypeName)
          Indicates whether the given user has permission to maintain (edit/delete) the give data object instance with the given document type
protected  DataDictionaryService getDataDictionaryService()
           
protected  DocumentHelperService getDocumentHelperService()
           
 void setDataDictionaryService(DataDictionaryService dataDictionaryService)
           
 void setDocumentHelperService(DocumentHelperService documentHelperService)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

DataObjectAuthorizationServiceImpl

public DataObjectAuthorizationServiceImpl()
Method Detail

attributeValueNeedsToBeEncryptedOnFormsAndLinks

public boolean attributeValueNeedsToBeEncryptedOnFormsAndLinks(Class<?> dataObjectClass,
                                                               String attributeName)
Description copied from interface: DataObjectAuthorizationService
Indicates whether the given attribute of the given data object class has any security defined (such as read-only, masked, ...) and therefore data for the attribute should be securely passed

Specified by:
attributeValueNeedsToBeEncryptedOnFormsAndLinks in interface DataObjectAuthorizationService
Parameters:
dataObjectClass - - class that contains the attribute
attributeName - - name of the attribute (property) within the class
Returns:
boolean true if the attribute should be secured, false if security is not needed
See Also:
attributeValueNeedsToBeEncryptedOnFormsAndLinks(java.lang.Class, java.lang.String)

canCreate

public boolean canCreate(Class<?> dataObjectClass,
                         Person user,
                         String docTypeName)
Description copied from interface: DataObjectAuthorizationService
Indicates whether the given user has permission to create records of the given data object class with the given document type

Specified by:
canCreate in interface DataObjectAuthorizationService
Parameters:
dataObjectClass - - class of data object to check authorization for
user - - person requesting action
docTypeName - - name of the document type that provides the action
Returns:
boolean true if the user has create authorization, false if not
See Also:
canCreate(java.lang.Class, org.kuali.rice.kim.api.identity.Person, java.lang.String)

canMaintain

public boolean canMaintain(Object dataObject,
                           Person user,
                           String docTypeName)
Description copied from interface: DataObjectAuthorizationService
Indicates whether the given user has permission to maintain (edit/delete) the give data object instance with the given document type

Specified by:
canMaintain in interface DataObjectAuthorizationService
Parameters:
dataObject - - data object instance to check authorization for
user - - person requesting action
docTypeName - - name of the document type that provides the action
Returns:
boolean true if the user has maintain authorization, false if not
See Also:
canMaintain(java.lang.Object, org.kuali.rice.kim.api.identity.Person, java.lang.String)

getDataDictionaryService

protected DataDictionaryService getDataDictionaryService()

setDataDictionaryService

public void setDataDictionaryService(DataDictionaryService dataDictionaryService)

getDocumentHelperService

protected DocumentHelperService getDocumentHelperService()

setDocumentHelperService

public void setDocumentHelperService(DocumentHelperService documentHelperService)
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2005-2011 The Kuali Foundation. All Rights Reserved.