DynamoSecurityService (OpenContent 3.2.0 Javadoc)

java.lang.Object
- com.tsgrp.opencontent.dynamo.security.DynamoSecurityService

public class DynamoSecurityService
extends java.lang.Object

Constructor Summary

Constructors
Constructor and Description

DynamoSecurityService()

Constructors
Constructor and Description
`DynamoSecurityService()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`checkPermission(java.lang.String ticket, java.lang.String objectId, int requestedPermit, DynamoConfig dynamoConfig)` Permission check against the requested object for the requested permissions level.
`java.lang.String`	`createLifeCycleACL(java.lang.String ticket, java.lang.String aclName, DynamoConfig dynamoConfig)` Create a new ACL in DynamoDB
`java.lang.String`	`determineLifeCycleAcl(java.lang.String ticket, java.lang.String objectType, java.lang.String state, EnhancedCompleteObject eco)` Determine lifecycle acl
`com.amazonaws.services.dynamodbv2.document.Item`	`getAclItem(java.lang.String aclId, DynamoConfig dynamoConfig)` Returns an acl item
`java.util.List<java.util.Map<java.lang.String,com.amazonaws.services.dynamodbv2.model.AttributeValue>>`	`getAclItems(DynamoConfig dynamoConfig)` Returns a list of all the acls
`java.util.List<java.lang.String>`	`getAclNames(java.lang.String ticket, DynamoConfig dynamoConfig)` Return a list of ALL of the ACL names that exist in the repository
`java.lang.String`	`getObjectAclId(java.lang.String objectId, DynamoConfig dynamoConfig)` Get the acl id of the given object
`java.util.List<java.lang.String>`	`getUserAcls(java.lang.String ticket, int minPermit, DynamoConfig dynamoConfig)` For the currently logged-in user, retrieve a list of the ids of all ACLs in which the user has at least minimumPermission
`int`	`getUserPermission(java.lang.String ticket, java.lang.String aclId, java.lang.String userName, DynamoConfig dynamoConfig)` Gets the permission level of the user for this specific ACL (which will be the greater of the user's permit and the group_all permit) TODO: assumes right now that the user only appears once in the ACL...

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- DynamoSecurityService
```
public DynamoSecurityService()
```

Method Detail

checkPermission

public void checkPermission(java.lang.String ticket,
                            java.lang.String objectId,
                            int requestedPermit,
                            DynamoConfig dynamoConfig)
                     throws OCForbiddenRuntimeException

Permission check against the requested object for the requested permissions level. Throws an exception if the user does not have the requested permissions level

Parameters:: {String} - ticket; {String} - objectId; {int} - requestedPermit
Throws:: OCForbiddenRuntimeException

getObjectAclId

public java.lang.String getObjectAclId(java.lang.String objectId,
                                       DynamoConfig dynamoConfig)

Get the acl id of the given object

Parameters:: {String} - objectId
Returns:: {String} id of the ACL on a given object

getUserPermission
```
public int getUserPermission(java.lang.String ticket,
                             java.lang.String aclId,
                             java.lang.String userName,
                             DynamoConfig dynamoConfig)
```
Gets the permission level of the user for this specific ACL (which will be the greater of the user's permit and the group_all permit) TODO: assumes right now that the user only appears once in the ACL... if a user is added more than once, the "last" one that comes back from Dynamo will be the one that is evaluated against

Parameters:

{String} - ticket

{String} - aclId

{String} - userName

Returns:

{int} permission int level from DynamoConstants

getAclItem

@Cacheable(value="dynamo-acl",
           key="#aclId",
           unless="#result == null")
public com.amazonaws.services.dynamodbv2.document.Item getAclItem(java.lang.String aclId,
                                                                                                                                                                  DynamoConfig dynamoConfig)

Returns an acl item

Parameters:: {String} - acl id; {DynamoConfig} - dynamoConfig
Returns:: {Item} acl

getAclItems

@Cacheable(value="dynamo-acls",
           key="#root.methodName",
           unless="#result == null")
public java.util.List<java.util.Map<java.lang.String,com.amazonaws.services.dynamodbv2.model.AttributeValue>> getAclItems(DynamoConfig dynamoConfig)

Returns a list of all the acls

Parameters:: dynamoConfig -
Returns:: {List> list of acls

getUserAcls
```
public java.util.List<java.lang.String> getUserAcls(java.lang.String ticket,
                                                    int minPermit,
                                                    DynamoConfig dynamoConfig)
```
For the currently logged-in user, retrieve a list of the ids of all ACLs in which the user has at least minimumPermission

Parameters:

{String} - ticket

{int} - minPermit - for example, 2 means the user must have at least browse permission in the acl

Returns:

{List} user acls

getAclNames

public java.util.List<java.lang.String> getAclNames(java.lang.String ticket,
                                                    DynamoConfig dynamoConfig)

Return a list of ALL of the ACL names that exist in the repository

Parameters:: {String} - ticket
Returns:: {List} acl names

createLifeCycleACL

public java.lang.String createLifeCycleACL(java.lang.String ticket,
                                           java.lang.String aclName,
                                           DynamoConfig dynamoConfig)

Create a new ACL in DynamoDB

Parameters:: {String} - ticket an authentication ticket; {String} - aclName the name of the new ACL
Returns:: {String} the object ID of the created ACL, or null on failure

determineLifeCycleAcl

public java.lang.String determineLifeCycleAcl(java.lang.String ticket,
                                              java.lang.String objectType,
                                              java.lang.String state,
                                              EnhancedCompleteObject eco)

Determine lifecycle acl

Parameters:: {String} - ticket; {String} - object type; {String} - state; {EnhancedCompleteObject} - eco
Returns:: {String} acl id

Class DynamoSecurityService

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

DynamoSecurityService