org.fcrepo.auth

Class FedoraUserSecurityContext

java.lang.Object

org.fcrepo.auth.FedoraUserSecurityContext

All Implemented Interfaces:

org.modeshape.jcr.security.AdvancedAuthorizationProvider, org.modeshape.jcr.security.SecurityContext

public class FedoraUserSecurityContext
extends Object
implements org.modeshape.jcr.security.SecurityContext, org.modeshape.jcr.security.AdvancedAuthorizationProvider

The security context for Fedora servlet users. These users are not necessarily authenticated by the container, i.e. users may include the general public. This security context delegates all access decisions to the configured Fedora policy enforcement point.

Author:

Gregory Jansen

Nested Class Summary

Nested classes/interfaces inherited from interface org.modeshape.jcr.security.AdvancedAuthorizationProvider

org.modeshape.jcr.security.AdvancedAuthorizationProvider.Context

Constructor Summary

Constructors

Modifier	Constructor and Description
protected	FedoraUserSecurityContext(org.modeshape.jcr.api.ServletCredentials credentials, Set<Principal> principals, FedoraPolicyEnforcementPoint pep) Constructs a new security context.

Method Summary

Methods

Modifier and Type	Method and Description
Principal	getEffectiveUserPrincipal() Get the user principal associated with this context.
String	getUserName()
boolean	hasPermission(org.modeshape.jcr.security.AdvancedAuthorizationProvider.Context context, org.modeshape.jcr.value.Path absPath, String... actions)
boolean	hasRole(String roleName)
boolean	isAnonymous()
void	logout()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

FedoraUserSecurityContext

protected FedoraUserSecurityContext(org.modeshape.jcr.api.ServletCredentials credentials,
                         Set<Principal> principals,
                         FedoraPolicyEnforcementPoint pep)

Constructs a new security context.

Parameters:

request - the servlet request

principals - security principals associated with this request

pep - the policy enforcement point

Method Detail

isAnonymous

public boolean isAnonymous()

Specified by:

isAnonymous in interface org.modeshape.jcr.security.SecurityContext

See Also:

SecurityContext.isAnonymous()

getUserName

public final String getUserName()

Specified by:

getUserName in interface org.modeshape.jcr.security.SecurityContext

See Also:

SecurityContext.getUserName()

hasRole

public final boolean hasRole(String roleName)

Specified by:

hasRole in interface org.modeshape.jcr.security.SecurityContext

See Also:

SecurityContext.hasRole(String)

getEffectiveUserPrincipal

public Principal getEffectiveUserPrincipal()

Get the user principal associated with this context.

Returns:

logout

public void logout()

Specified by:

logout in interface org.modeshape.jcr.security.SecurityContext

See Also:

SecurityContext.logout()

hasPermission

public boolean hasPermission(org.modeshape.jcr.security.AdvancedAuthorizationProvider.Context context,
                    org.modeshape.jcr.value.Path absPath,
                    String... actions)

Specified by:

hasPermission in interface org.modeshape.jcr.security.AdvancedAuthorizationProvider