org.apache.jetspeed.security

Interface RoleManager

All Superinterfaces:

PrincipalTypeManager, Serializable

public interface RoleManager
extends PrincipalTypeManager

Describes the service interface for managing roles.

Version:

$Id: RoleManager.java 1595089 2014-05-16 02:42:46Z taylor $

Method Summary

Methods

Modifier and Type	Method and Description
Role	addRole(String roleName) Add a new role
Role	addRole(String roleName, boolean mapped) Add a new role and optionally map/replicate it to an external storage manager (if configured).
void	addRoleToGroup(String roleName, String groupName) Add a role to a group.
void	addRoleToRole(Role from, Role to, String associationName) Add a hierarchical association between two roles.
void	addRoleToUser(String username, String roleName) Add a role to a user.
Role	getRole(String roleName) Get a role Role for a given role name.
List<String>	getRoleNames(String nameFilter) Retrieves a detached and modifiable List of role names, finding roles matching the corresponding role name filter.
List<Role>	getRoles(String nameFilter) Retrieves a detached and modifiable Role list matching the corresponding role name filter.
List<Role>	getRolesAssociatedFrom(Role from, String associationName) Retrieve all the roles which are associated from the provided role.
List<Role>	getRolesAssociatedTo(Role to, String associationName) Retrieve all the roles which are associated to the provided role.
List<Role>	getRolesForUser(String username) Retrieves a detached and modifiable Role list of all the roles associated to a specific user.
List<Role>	getRolesInGroup(String groupName) Retrieves a detached and modifiable Role list of all the roles associated to a specific group.
boolean	isGroupInRole(String groupName, String roleName) Whether or not a role is in a group.
boolean	isUserInRole(String username, String roleName) Whether or not a user is in a role.
Role	newRole(String name, boolean mapped)
Role	newTransientRole(String name)
void	removeRole(String roleName) Remove a given role
void	removeRoleFromGroup(String roleName, String groupName) Remove a role from a group.
void	removeRoleFromRole(Role from, Role to, String associationName) Remove a hierarchical association between two roles.
void	removeRoleFromUser(String username, String roleName) Remove a user from a role.
boolean	roleExists(String roleName) Whether or not a role exists.
void	updateRole(Role role) Updates a role and all its attributes

Methods inherited from interface org.apache.jetspeed.security.PrincipalTypeManager

getPrincipalManager, getPrincipalType

Method Detail

newRole

Role newRole(String name,
           boolean mapped)

newTransientRole

Role newTransientRole(String name)

addRole

Role addRole(String roleName)
             throws SecurityException

Add a new role

If an external security storage manager is used, the role will be mapped/replicated to it as well.

Parameters:

roleName - The role name

Returns:

the new Role

Throws:

throws - a security exception if the role already exists.

SecurityException

addRole

Role addRole(String roleName,
           boolean mapped)
             throws SecurityException

Add a new role and optionally map/replicate it to an external storage manager (if configured).

Parameters:

roleName - The role name.

mapped - if the new Role should be mapped/replicated to an external security storage manager (if used) or not.

Returns:

the new Role

Throws:

throws - a security exception if the role already exists.

SecurityException

removeRole

void removeRole(String roleName)
                throws SecurityException

Remove a given role

Parameters:

roleName -

Throws:

throws - a security exception.

SecurityException

roleExists

boolean roleExists(String roleName)

Whether or not a role exists.

Parameters:

roleName -

Returns:

Whether or not a role exists.

getRole

Role getRole(String roleName)
             throws SecurityException

Get a role Role for a given role name.

Parameters:

roleName - The role name

Returns:

The Role.

Throws:

throws - a security exception if the role does not exist.

SecurityException

getRolesForUser

List<Role> getRolesForUser(String username)
                           throws SecurityException

Retrieves a detached and modifiable Role list of all the roles associated to a specific user.

Parameters:

username - The user name.

Returns:

A List of Role.

Throws:

throws - a security exception if the user does not exist.

SecurityException

getRolesInGroup

List<Role> getRolesInGroup(String groupName)
                           throws SecurityException

Retrieves a detached and modifiable Role list of all the roles associated to a specific group.

Parameters:

groupName - The group name

Returns:

A Collection of Role.

Throws:

throws - a security exception if the group does not exist.

SecurityException

addRoleToUser

void addRoleToUser(String username,
                 String roleName)
                   throws SecurityException

Add a role to a user.

Parameters:

username - The user name

roleName - The role name

Throws:

throws - a security exception if the role or the user do not exist.

SecurityException

removeRoleFromUser

void removeRoleFromUser(String username,
                      String roleName)
                        throws SecurityException

Remove a user from a role.

Parameters:

username - The user name.

roleName - The role name

Throws:

throws - a security exception.

SecurityException

isUserInRole

boolean isUserInRole(String username,
                   String roleName)
                     throws SecurityException

Whether or not a user is in a role.

Parameters:

username - The user name.

roleName - The role name

Returns:

Whether or not a user is in a role.

Throws:

throws - a security exception if the role or the user does not exist.

SecurityException

addRoleToGroup

void addRoleToGroup(String roleName,
                  String groupName)
                    throws SecurityException

Add a role to a group.

Parameters:

roleName - The role name

groupName - The group name

Throws:

throws - a security exception.

SecurityException

removeRoleFromGroup

void removeRoleFromGroup(String roleName,
                       String groupName)
                         throws SecurityException

Remove a role from a group.

Parameters:

roleName - The role name

groupName - The group name

Throws:

throws - a security exception.

SecurityException

isGroupInRole

boolean isGroupInRole(String groupName,
                    String roleName)
                      throws SecurityException

Whether or not a role is in a group.

Parameters:

groupName - The group name

roleName - The role name

Returns:

Whether or not a role is in a group.

Throws:

throws - a security exception if the role or the group does not exist.

SecurityException

getRoles

List<Role> getRoles(String nameFilter)
                    throws SecurityException

Retrieves a detached and modifiable Role list matching the corresponding role name filter.

Parameters:

nameFilter - The filter used to retrieve matching roles.

Returns:

a list of Role

Throws:

SecurityException

getRoleNames

List<String> getRoleNames(String nameFilter)
                          throws SecurityException

Retrieves a detached and modifiable List of role names, finding roles matching the corresponding role name filter.

Parameters:

nameFilter - The filter used to retrieve matching roles.

Returns:

A list of role names

Throws:

SecurityException

updateRole

void updateRole(Role role)
                throws SecurityException

Updates a role and all its attributes

Parameters:

role -

Throws:

SecurityException

addRoleToRole

void addRoleToRole(Role from,
                 Role to,
                 String associationName)
                   throws SecurityException

Add a hierarchical association between two roles.

Default supported hierarchical associations are JetspeedPrincipalAssociationType.IS_A and JetspeedPrincipalAssociationType.IS_PART_OF, but it will depend on the actual runtime configuration if the required JetspeedPrincipalAssociationType is available.

Parameters:

from - The role for the from side of the association

to - The role for the to side of the association

associationName - The name of the JetspeedPrincipalAssociationType to create

Throws:

SecurityException

removeRoleFromRole

void removeRoleFromRole(Role from,
                      Role to,
                      String associationName)
                        throws SecurityException

Remove a hierarchical association between two roles.

Default supported hierarchical associations are JetspeedPrincipalAssociationType.IS_A and JetspeedPrincipalAssociationType.IS_PART_OF, but it will depend on the actual runtime configuration if the required JetspeedPrincipalAssociationType is available.

Parameters:

from - The role for the from side of the association

to - The role for the to side of the association

associationName - The name of the JetspeedPrincipalAssociationType to create

Throws:

SecurityException

getRolesAssociatedTo

List<Role> getRolesAssociatedTo(Role to,
                              String associationName)

Retrieve all the roles which are associated to the provided role.

Default supported hierarchical associations are JetspeedPrincipalAssociationType.IS_A and JetspeedPrincipalAssociationType.IS_PART_OF, but it will depend on the actual runtime configuration if the required JetspeedPrincipalAssociationType is available.

If the corresponding JetspeedPrincipalAssociationType is not available, this method will simply return a empty list.

For a JetspeedPrincipalAssociationType.IS_PART_OF association, this will return all the nested roles which together represent the provided role.

For a JetspeedPrincipalAssociationType.IS_A association, this will return all the roles which extend the provided role.

Note: this method will only return the directly associated roles, not further derived associations.

Parameters:

to - The role for the to side of the association

associationName - The name of the JetspeedPrincipalAssociationType to create

getRolesAssociatedFrom

List<Role> getRolesAssociatedFrom(Role from,
                                String associationName)

Retrieve all the roles which are associated from the provided role.

Default supported hierarchical associations are JetspeedPrincipalAssociationType.IS_A and JetspeedPrincipalAssociationType.IS_PART_OF, but it will depend on the actual runtime configuration if the required JetspeedPrincipalAssociationType is available.

If the corresponding JetspeedPrincipalAssociationType is not available, this method will simply return a empty list.

For a JetspeedPrincipalAssociationType.IS_PART_OF association, this will return (at most) the single role where the provided role is part of.

For a JetspeedPrincipalAssociationType.IS_A association, this will return all the roles which the provided role extends.

Note: this method will only return the directly associated role(s), not further derived associations.

Parameters:

from - The role for the from side of the association

associationName - The name of the JetspeedPrincipalAssociationType to create