org.openurp.app.security.service

Class CacheableAuthorityManager

java.lang.Object

org.beangle.commons.dao.impl.BaseServiceImpl

org.openurp.app.security.service.CacheableAuthorityManager

All Implemented Interfaces:

org.beangle.commons.bean.Initializing, org.beangle.security.access.AuthorityManager

public class CacheableAuthorityManager
extends org.beangle.commons.dao.impl.BaseServiceImpl
implements org.beangle.security.access.AuthorityManager, org.beangle.commons.bean.Initializing

Field Summary

Fields

Modifier and Type	Field and Description
protected Map<String,Set<?>>	authorities 角色权限
protected RemoteAuthorityService	authorityService
protected Set<String>	ignores
protected Set<?>	protectedResources 公有资源names
protected Set<String>	publicResources 公开资源name
protected Set<String>	roots

Fields inherited from class org.beangle.commons.dao.impl.BaseServiceImpl

entityDao, eventMulticaster, logger

Constructor Summary

Constructors

Constructor and Description
CacheableAuthorityManager()

Method Summary

Modifier and Type	Method and Description
void	init()
boolean	isAuthorized(org.beangle.security.core.context.SecurityContext context) 资源是否被授权 1)检查是否是属于公有资源 2)检查角色权限
boolean	isAuthorized(org.beangle.security.core.context.SecurityContext context, org.beangle.commons.security.Request request)
boolean	isRoot(String user)
void	refreshCache() 加载三类资源
Set<?>	refreshRolePermissions(String authority)
void	setAuthorityService(RemoteAuthorityService authorityService)
void	setIgnores(Set<String> ignores)

Methods inherited from class org.beangle.commons.dao.impl.BaseServiceImpl

getEntityDao, getEventMulticaster, publish, setEntityDao, setEventMulticaster

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

authorities

protected Map<String,Set<?>> authorities

角色权限

publicResources

protected Set<String> publicResources

公开资源name

protectedResources

protected Set<?> protectedResources

公有资源names

roots

protected Set<String> roots

authorityService

protected RemoteAuthorityService authorityService

ignores

protected Set<String> ignores

Constructor Detail

CacheableAuthorityManager

public CacheableAuthorityManager()

Method Detail

isAuthorized

public boolean isAuthorized(org.beangle.security.core.context.SecurityContext context)

资源是否被授权
1)检查是否是属于公有资源
2)检查角色权限

Specified by:

isAuthorized in interface org.beangle.security.access.AuthorityManager

isAuthorized

public boolean isAuthorized(org.beangle.security.core.context.SecurityContext context,
                            org.beangle.commons.security.Request request)

Specified by:

isAuthorized in interface org.beangle.security.access.AuthorityManager

refreshRolePermissions

public Set<?> refreshRolePermissions(String authority)

refreshCache

public void refreshCache()

加载三类资源

init

public void init()
          throws Exception

Specified by:

init in interface org.beangle.commons.bean.Initializing

Throws:

Exception

setAuthorityService

public void setAuthorityService(RemoteAuthorityService authorityService)

isRoot

public boolean isRoot(String user)

Specified by:

isRoot in interface org.beangle.security.access.AuthorityManager

setIgnores

public void setIgnores(Set<String> ignores)