public class ACDFEngine extends Object
ACITupleFilter
s sequentially:
RelatedUserClassFilter
RelatedProtectedItemFilter
MaxValueCountFilter
MaxImmSubFilter
RestrictedByFilter
MicroOperationFilter
HighestPrecedenceFilter
MostSpecificUserClassFilter
MostSpecificProtectedItemFilter
Constructor and Description |
---|
ACDFEngine(org.apache.directory.api.ldap.model.schema.SchemaManager schemaManager)
Creates a new instance.
|
Modifier and Type | Method and Description |
---|---|
void |
checkPermission(AciContext aciContext)
Checks the user with the specified name can access the specified resource
(entry, attribute type, or attribute value) and throws
LdapNoPermissionException
if the user doesn't have any permission to perform the specified grants. |
boolean |
hasPermission(AciContext aciContext)
Returns true if the user with the specified name can access the specified resource
(entry, attribute type, or attribute value) and throws
LdapNoPermissionException
if the user doesn't have any permission to perform the specified grants. |
public ACDFEngine(org.apache.directory.api.ldap.model.schema.SchemaManager schemaManager)
schemaManager
- The server schemaManagerpublic void checkPermission(AciContext aciContext) throws org.apache.directory.api.ldap.model.exception.LdapException
LdapNoPermissionException
if the user doesn't have any permission to perform the specified grants.aciContext
- the container for ACI itemsorg.apache.directory.api.ldap.model.exception.LdapException
- if failed to evaluate ACI itemspublic boolean hasPermission(AciContext aciContext) throws org.apache.directory.api.ldap.model.exception.LdapException
LdapNoPermissionException
if the user doesn't have any permission to perform the specified grants.aciContext
- the container for ACI itemsorg.apache.directory.api.ldap.model.exception.LdapException
- if failed to evaluate ACI itemsCopyright © 2003–2020 The Apache Software Foundation. All rights reserved.