|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface AccessControl
Control who should be accessing which methods on which classes.
Method Summary | |
---|---|
void |
addExcludeRule(java.lang.String scriptName,
java.lang.String methodName)
Add an exclude rule. |
void |
addIncludeRule(java.lang.String scriptName,
java.lang.String methodName)
Add an include rule. |
void |
addRoleRestriction(java.lang.String scriptName,
java.lang.String methodName,
java.lang.String role)
J2EE role based security allows us to restrict methods to only being used by people in certain roles. |
void |
assertExecutionIsPossible(Creator creator,
java.lang.String className,
java.lang.reflect.Method method)
Check the method for accessibility at runtime, and return an error message if anything is wrong. |
void |
assertIsDisplayable(Creator creator,
java.lang.String className,
java.lang.reflect.Method method)
Check the method for accessibility at 'compile-time' (i.e. |
Method Detail |
---|
void assertExecutionIsPossible(Creator creator, java.lang.String className, java.lang.reflect.Method method) throws java.lang.SecurityException
See notes on getReasonToNotDisplay()
. This method should
duplicate the tests made by that method.
This is not a great becuase it mixes 2 bits of information in the same variable (is it wrong, and what is wrong) but without multi-value returns in Java this seems like the most simple implementation.
creator
- Where does the method come from?className
- The Javascript name of the classmethod
- What is the method to execute?
java.lang.SecurityException
- If the given method is disallowedassertIsDisplayable(Creator, String, Method)
void assertIsDisplayable(Creator creator, java.lang.String className, java.lang.reflect.Method method) throws java.lang.SecurityException
This method is similar to getReasonToNotExecute()
except
that there may be checks (like security checks) that we wish to make only
at runtime in case the situation changes between 'compile-time' and
runtime.
This is not a great becuase it mixes 2 bits of information in the same variable (is it wrong, and what is wrong) but without multi-value returns in Java this seems like the most simple implementation.
creator
- Where does the method come from?className
- The Javascript name of the classmethod
- What is the method to execute?
java.lang.SecurityException
- If the given method is disallowedassertExecutionIsPossible(Creator, String, Method)
void addRoleRestriction(java.lang.String scriptName, java.lang.String methodName, java.lang.String role)
scriptName
- The name of the creator to JavascriptmethodName
- The name of the method (without brackets)role
- The new role name to add to the list for the given scriptName and methodNamevoid addIncludeRule(java.lang.String scriptName, java.lang.String methodName)
scriptName
- The name of the creator to JavascriptmethodName
- The name of the method (without brackets)void addExcludeRule(java.lang.String scriptName, java.lang.String methodName)
scriptName
- The name of the creator to JavascriptmethodName
- The name of the method (without brackets)addIncludeRule(String, String)
|
Copyright ? 2005 | |||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |