Class CasePermissionServiceImpl
- java.lang.Object
-
- com.flowable.platform.security.service.AbstractPlatformSecurityService
-
- com.flowable.platform.security.permission.CasePermissionServiceImpl
-
- All Implemented Interfaces:
CasePermissionService,PermissionService,PermissionServiceRegistryAware,Aware
public class CasePermissionServiceImpl extends AbstractPlatformSecurityService implements CasePermissionService
-
-
Field Summary
Fields Modifier and Type Field Description protected CmmnEngineConfigurationcmmnEngineConfigurationprotected CmmnHistoryServicecmmnHistoryService-
Fields inherited from class com.flowable.platform.security.service.AbstractPlatformSecurityService
additionalAdminUsers, CASE_PREFIX, cmmnRepositoryService, cmmnRuntimeService, cmmnTaskService, defaultSecurityPolicyKey, defaultSecurityPolicyModel, inspectEnabled, permissionServiceRegistry, platformSecurityInterceptor, policyRepositoryService, PROCESS_PREFIX, repositoryService, runtimeService, SECURITY_POLICY_MODEL, TASK_PREFIX, taskService
-
-
Constructor Summary
Constructors Constructor Description CasePermissionServiceImpl()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description protected booleancheckPermissionInCaseParent(String casePermission, SecurityPolicyModel securityPolicyModel)List<String>fetchPermissionsForHistoricScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId)List<String>fetchPermissionsForHistoricScope(String scopeId, String userId, Set<String> groupKeys, String tenantId)List<String>fetchPermissionsForRuntimeScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId)List<String>fetchPermissionsForRuntimeScope(String scopeId, String userId, Set<String> groupKeys, String tenantId)protected CaseDefinitionfindCaseDefinition(String caseDefinitionId, String caseDefinitionKey, String tenantId)protected CaseDefinitionfindCaseDefinitionTenantAware(String caseDefinitionKey, String tenantId)CaseInstancegetCaseInstance(String caseInstanceId, String tenantId)HistoricCaseInstancegetHistoricCaseInstance(String caseInstanceId, String tenantId)List<String>getHistoricCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId)List<String>getRuntimeCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId)StringgetScopeType()The scope type that this permissions service supports.protected SecurityPolicyModelgetSecurityModel(String caseDefinitionId, String tenantId)protected booleanhasPermission(String permission, String startUserId, List<? extends IdentityLinkInfo> identityLinks, SecurityPolicyModel securityPolicyModel)protected booleanhasPermissionForCaseInstance(String permission, String caseInstanceId, boolean isHistoricInstance, String startUserId, List<? extends IdentityLinkInfo> identityLinks, String caseDefinitionId, String userId, Set<String> groupKeys, String tenantId)booleanhasPermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)booleanhasPermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)booleanhasPermissionForHistoricScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId)booleanhasPermissionForRuntimeScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId)booleanhasPermissionForScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId)booleanhasReadPermissionOnScopeDefinition(String scopeDefinitionId, String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId)booleanhasReadPermissionOnScopeDefinitionTenantAware(String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId)protected List<String>translateParentPermissions(List<String> parentPermissions, String scopeType)voidvalidatePermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)voidvalidatePermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)-
Methods inherited from class com.flowable.platform.security.service.AbstractPlatformSecurityService
currentUserHasAdminRights, currentUserIsSuperAdmin, fetchCasePermissionMappings, fetchCasePermissionMappings, fetchCaseSecurityPolicyModel, fetchPermissions, fetchPermissionsForTask, fetchProcessPermissionMappings, fetchProcessPermissionMappings, fetchProcessSecurityPolicyModel, fetchSecurityPolicyModel, fetchSecurityPolicyModel, fetchSecurityPolicyModelForCaseInstance, fetchSecurityPolicyModelForProcessInstance, fetchSecurityPolicyModelForTask, fetchSecurityPolicyModelForTask, fetchTaskPermissionMappings, fetchTaskPermissionMappings, fetchTaskPermissionMappings, fetchTaskPermissionMappingsForCase, fetchTaskPermissionMappingsForProcess, fetchTaskSecurityPolicyModelForCase, fetchTaskSecurityPolicyModelForProcess, filterPermissionsForRole, getCmmnExtensionElementValue, getCurrentGroupKeys, getCurrentSecurityScope, getCurrentTenantId, getCurrentUserId, getDefaultSecurityPolicyModel, getExtensionElementValue, getSecurityPolicyModelByKey, groupOrUserMatches, groupOrUserMatches, hasAnyMatchingIdentityLink, hasAssigneeOrOwnerIdentityLink, hasPermissionForEntityLinks, hasPermissionForHistoricEntityLinks, setPermissionServiceRegistry, translatePermissionForScope
-
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
-
Methods inherited from interface com.flowable.platform.security.permission.PermissionService
validatePermissionForHistoricScope, validatePermissionForRuntimeScope, validatePermissionForScope, validatePermissionsForHistoricScope, validatePermissionsForRuntimeScope, validateReadPermissionOnScopeDefinition
-
-
-
-
Field Detail
-
cmmnHistoryService
@Autowired(required=false) protected CmmnHistoryService cmmnHistoryService
-
cmmnEngineConfiguration
@Autowired protected CmmnEngineConfiguration cmmnEngineConfiguration
-
-
Method Detail
-
getScopeType
public String getScopeType()
Description copied from interface:PermissionServiceThe scope type that this permissions service supports.- Specified by:
getScopeTypein interfacePermissionService
-
hasPermissionForScope
public boolean hasPermissionForScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
hasPermissionForScopein interfacePermissionService
-
validatePermissionForCaseInstance
public void validatePermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
validatePermissionForCaseInstancein interfaceCasePermissionService
-
hasPermissionForCaseInstance
public boolean hasPermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
hasPermissionForCaseInstancein interfaceCasePermissionService
-
validatePermissionForHistoricCaseInstance
public void validatePermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
validatePermissionForHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForHistoricCaseInstance
public boolean hasPermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
hasPermissionForHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForRuntimeScope
public boolean hasPermissionForRuntimeScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
hasPermissionForRuntimeScopein interfacePermissionService
-
fetchPermissionsForRuntimeScope
public List<String> fetchPermissionsForRuntimeScope(String scopeId, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
fetchPermissionsForRuntimeScopein interfacePermissionService
-
fetchPermissionsForRuntimeScope
public List<String> fetchPermissionsForRuntimeScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
fetchPermissionsForRuntimeScopein interfacePermissionService
-
hasPermissionForHistoricScope
public boolean hasPermissionForHistoricScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
hasPermissionForHistoricScopein interfacePermissionService
-
fetchPermissionsForHistoricScope
public List<String> fetchPermissionsForHistoricScope(String scopeId, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
fetchPermissionsForHistoricScopein interfacePermissionService
-
fetchPermissionsForHistoricScope
public List<String> fetchPermissionsForHistoricScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
fetchPermissionsForHistoricScopein interfacePermissionService
-
getRuntimeCasePermissions
public List<String> getRuntimeCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId)
- Specified by:
getRuntimeCasePermissionsin interfaceCasePermissionService
-
getHistoricCasePermissions
public List<String> getHistoricCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId)
- Specified by:
getHistoricCasePermissionsin interfaceCasePermissionService
-
hasReadPermissionOnScopeDefinition
public boolean hasReadPermissionOnScopeDefinition(String scopeDefinitionId, String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
hasReadPermissionOnScopeDefinitionin interfacePermissionService
-
hasReadPermissionOnScopeDefinitionTenantAware
public boolean hasReadPermissionOnScopeDefinitionTenantAware(String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId)
- Specified by:
hasReadPermissionOnScopeDefinitionTenantAwarein interfaceCasePermissionService
-
getCaseInstance
public CaseInstance getCaseInstance(String caseInstanceId, String tenantId)
- Specified by:
getCaseInstancein interfaceCasePermissionService
-
getHistoricCaseInstance
public HistoricCaseInstance getHistoricCaseInstance(String caseInstanceId, String tenantId)
- Specified by:
getHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForCaseInstance
protected boolean hasPermissionForCaseInstance(String permission, String caseInstanceId, boolean isHistoricInstance, String startUserId, List<? extends IdentityLinkInfo> identityLinks, String caseDefinitionId, String userId, Set<String> groupKeys, String tenantId)
-
hasPermission
protected boolean hasPermission(String permission, String startUserId, List<? extends IdentityLinkInfo> identityLinks, SecurityPolicyModel securityPolicyModel)
-
getSecurityModel
protected SecurityPolicyModel getSecurityModel(String caseDefinitionId, String tenantId)
-
findCaseDefinition
protected CaseDefinition findCaseDefinition(String caseDefinitionId, String caseDefinitionKey, String tenantId)
-
findCaseDefinitionTenantAware
protected CaseDefinition findCaseDefinitionTenantAware(String caseDefinitionKey, String tenantId)
-
translateParentPermissions
protected List<String> translateParentPermissions(List<String> parentPermissions, String scopeType)
-
checkPermissionInCaseParent
protected boolean checkPermissionInCaseParent(String casePermission, SecurityPolicyModel securityPolicyModel)
-
-