org.fcrepo.auth

Interface FedoraPolicyEnforcementPoint

public interface FedoraPolicyEnforcementPoint

Policy Enforcement Points implement the various authorization decisions needed by Fedora. Implementations will translate enforcement calls into their given policy framework.

Author:

Gregory Jansen

Method Summary

Methods

Modifier and Type	Method and Description
Iterator<org.modeshape.jcr.value.Path>	filterPathsForReading(Iterator<org.modeshape.jcr.value.Path> paths, Set<Principal> allPrincipals, Principal userPrincipal) Filter the collection of JCR paths, selecting those the user has permission to read.
boolean	hasModeShapePermission(org.modeshape.jcr.value.Path absPath, String[] actions, Set<Principal> allPrincipals, Principal userPrincipal) Is the action permitted to the user or other any other principal on the given node path?

Method Detail

hasModeShapePermission

boolean hasModeShapePermission(org.modeshape.jcr.value.Path absPath,
                             String[] actions,
                             Set<Principal> allPrincipals,
                             Principal userPrincipal)

Is the action permitted to the user or other any other principal on the given node path?

Parameters:

context -

absPath -

actions -

userPrincipal -

allPrincipals -

Returns:

filterPathsForReading

Iterator<org.modeshape.jcr.value.Path> filterPathsForReading(Iterator<org.modeshape.jcr.value.Path> paths,
                                                           Set<Principal> allPrincipals,
                                                           Principal userPrincipal)

Filter the collection of JCR paths, selecting those the user has permission to read.

Parameters:

paths - an iterator of paths

allPrincipals - all the authenticated principals

userPrincipal - the user principal

Returns:

an iterator of permitted paths