Package com.flowable.idm.engine.impl

Class GrantingUserPermissionService

java.lang.Object
com.flowable.idm.engine.impl.GrantingUserPermissionService
All Implemented Interfaces:
UserPermissionService
public class GrantingUserPermissionService extends Object implements UserPermissionService
This permission helper implementation is the default one in the IDM module and is granting all permissions to all users for user management. Override it in order to check permissions on user management actions.
Author:
Micha Kiener

  • Constructor Details

    • GrantingUserPermissionService

      public GrantingUserPermissionService()

  • Method Details

    • checkUserCreation

      @Deprecated public Optional<String> checkUserCreation(String userId, String userToCreateId)
      Deprecated.
      Description copied from interface: UserPermissionService
      Evaluates the permissions for the given user when creating a new user.
      Specified by:
      checkUserCreation in interface UserPermissionService
      Parameters:
      userId - the id of the user to check the permissions for (not the one being deactivated)
      userToCreateId - the id of the new user to be created
      Returns:
      the permission error message, if permission is denied to create the user or no message, if permission is granted

    • checkUserCreation

      public Optional<String> checkUserCreation(String userId, Collection<String> userGroupKeys, String userTenantId, String userToCreateId)
      Description copied from interface: UserPermissionService
      Evaluates the permissions for the given user when creating a new user.
      Specified by:
      checkUserCreation in interface UserPermissionService
      Parameters:
      userId - the id of the user to check the permissions for (not the one being deactivated)
      userGroupKeys - the group keys of the user to check the permissions
      userTenantId - the tenant id of the user to check the permissions
      userToCreateId - the id of the new user to be created
      Returns:
      the permission error message, if permission is denied to create the user or no message, if permission is granted

    • checkUserDeactivation

      @Deprecated public Optional<String> checkUserDeactivation(String userId, String userToDeactivateId)
      Deprecated.
      Description copied from interface: UserPermissionService
      Evaluates the permissions for the given user when deactivating a user.
      Specified by:
      checkUserDeactivation in interface UserPermissionService
      Parameters:
      userId - the id of the user to check the permissions for (not the one being deactivated)
      userToDeactivateId - the id of the user to be deactivated
      Returns:
      the permission error message, if permission is denied to deactivate the user or no message, if permission is granted

    • checkUserDeactivation

      public Optional<String> checkUserDeactivation(String userId, Collection<String> userGroupKeys, String userTenantId, String userToDeactivateId)
      Description copied from interface: UserPermissionService
      Evaluates the permissions for the given user when deactivating a user.
      Specified by:
      checkUserDeactivation in interface UserPermissionService
      Parameters:
      userId - the id of the user to check the permissions for (not the one being deactivated)
      userGroupKeys - the group keys of the user to check the permissions
      userTenantId - the tenant id of the user to check the permissions
      userToDeactivateId - the id of the user to be deactivated
      Returns:
      the permission error message, if permission is denied to deactivate the user or no message, if permission is granted

    • checkUserReactivation

      public Optional<String> checkUserReactivation(String userId, String userToReactivateId)
      Description copied from interface: UserPermissionService
      Evaluates the permissions for the given user when reactivating a user.
      Specified by:
      checkUserReactivation in interface UserPermissionService
      Parameters:
      userId - the id of the user to check the permissions for (not the one being reactivated)
      userToReactivateId - the id of the user to be reactivated
      Returns:
      the permission error message, if permission is denied to reactivate the user or no message, if permission is granted

    • checkUserReactivation

      public Optional<String> checkUserReactivation(String userId, Collection<String> userGroupKeys, String userTenantId, String userToReactivateId)
      Specified by:
      checkUserReactivation in interface UserPermissionService