Package org.projectnessie.server.authz
Class CelAccessChecker
- java.lang.Object
-
- org.projectnessie.server.authz.CelAccessChecker
-
- All Implemented Interfaces:
org.projectnessie.services.authz.AccessChecker
@ApplicationScoped public class CelAccessChecker extends Object implements org.projectnessie.services.authz.AccessChecker
A reference implementation of theAccessCheckerthat performs access checks using CEL expressions.
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description static classCelAccessChecker.AuthorizationRuleType
-
Constructor Summary
Constructors Constructor Description CelAccessChecker(QuarkusNessieAuthorizationConfig config, CompiledAuthorizationRules compiledRules)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description voidcanAssignRefToHash(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref)voidcanCommitChangeAgainstReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref)voidcanCreateReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref)voidcanDeleteEntity(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref, org.projectnessie.model.ContentKey key, String contentId)voidcanDeleteReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref)voidcanListCommitLog(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref)voidcanReadEntityValue(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref, org.projectnessie.model.ContentKey key, String contentId)voidcanReadEntries(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref)voidcanUpdateEntity(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref, org.projectnessie.model.ContentKey key, String contentId)voidcanViewReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref)
-
-
-
Constructor Detail
-
CelAccessChecker
@Inject public CelAccessChecker(QuarkusNessieAuthorizationConfig config, CompiledAuthorizationRules compiledRules)
-
-
Method Detail
-
canViewReference
public void canViewReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref) throws AccessControlException- Specified by:
canViewReferencein interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canCreateReference
public void canCreateReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref) throws AccessControlException- Specified by:
canCreateReferencein interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canAssignRefToHash
public void canAssignRefToHash(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref) throws AccessControlException- Specified by:
canAssignRefToHashin interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canDeleteReference
public void canDeleteReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref) throws AccessControlException- Specified by:
canDeleteReferencein interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canReadEntries
public void canReadEntries(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref) throws AccessControlException- Specified by:
canReadEntriesin interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canListCommitLog
public void canListCommitLog(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref) throws AccessControlException- Specified by:
canListCommitLogin interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canCommitChangeAgainstReference
public void canCommitChangeAgainstReference(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref) throws AccessControlException- Specified by:
canCommitChangeAgainstReferencein interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canReadEntityValue
public void canReadEntityValue(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref, org.projectnessie.model.ContentKey key, String contentId) throws AccessControlException- Specified by:
canReadEntityValuein interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canUpdateEntity
public void canUpdateEntity(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref, org.projectnessie.model.ContentKey key, String contentId) throws AccessControlException- Specified by:
canUpdateEntityin interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
canDeleteEntity
public void canDeleteEntity(org.projectnessie.services.authz.AccessContext context, org.projectnessie.versioned.NamedRef ref, org.projectnessie.model.ContentKey key, String contentId) throws AccessControlException- Specified by:
canDeleteEntityin interfaceorg.projectnessie.services.authz.AccessChecker- Throws:
AccessControlException
-
-