Class CasePermissionServiceImpl
java.lang.Object
com.flowable.platform.security.service.AbstractPlatformSecurityService
com.flowable.platform.security.permission.CasePermissionServiceImpl
- All Implemented Interfaces:
CasePermissionService,PermissionService,PermissionServiceRegistryAware,org.springframework.beans.factory.Aware
@Transactional public class CasePermissionServiceImpl extends AbstractPlatformSecurityService implements CasePermissionService
-
Field Summary
Fields Modifier and Type Field Description protected org.flowable.cmmn.engine.CmmnEngineConfigurationcmmnEngineConfigurationprotected org.flowable.cmmn.api.CmmnHistoryServicecmmnHistoryServiceFields inherited from class com.flowable.platform.security.service.AbstractPlatformSecurityService
additionalAdminUsers, CASE_PREFIX, cmmnRepositoryService, cmmnRuntimeService, cmmnTaskService, defaultSecurityPolicyKey, defaultSecurityPolicyModel, inspectEnabled, permissionServiceRegistry, platformSecurityInterceptor, policyRepositoryService, PROCESS_PREFIX, repositoryService, runtimeService, SECURITY_POLICY_MODEL, TASK_PREFIX, taskService -
Constructor Summary
Constructors Constructor Description CasePermissionServiceImpl() -
Method Summary
Modifier and Type Method Description protected booleancheckPermissionInCaseParent(java.lang.String casePermission, SecurityPolicyModel securityPolicyModel)java.util.List<java.lang.String>fetchPermissionsForHistoricScope(java.lang.String scopeId, boolean checkWritePermissionInParent, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)java.util.List<java.lang.String>fetchPermissionsForHistoricScope(java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)java.util.List<java.lang.String>fetchPermissionsForRuntimeScope(java.lang.String scopeId, boolean checkWritePermissionInParent, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)java.util.List<java.lang.String>fetchPermissionsForRuntimeScope(java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)protected org.flowable.cmmn.api.repository.CaseDefinitionfindCaseDefinition(java.lang.String caseDefinitionId, java.lang.String caseDefinitionKey, java.lang.String tenantId)org.flowable.cmmn.api.runtime.CaseInstancegetCaseInstance(java.lang.String caseInstanceId, java.lang.String tenantId)org.flowable.cmmn.api.history.HistoricCaseInstancegetHistoricCaseInstance(java.lang.String caseInstanceId, java.lang.String tenantId)java.util.List<java.lang.String>getHistoricCasePermissions(java.lang.String caseInstanceId, java.lang.String definitionId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, java.lang.String tenantId)java.util.List<java.lang.String>getRuntimeCasePermissions(java.lang.String caseInstanceId, java.lang.String definitionId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, java.lang.String tenantId)java.lang.StringgetScopeType()The scope type that this permissions service supports.protected SecurityPolicyModelgetSecurityModel(java.lang.String caseDefinitionId, java.lang.String tenantId)protected booleanhasPermission(java.lang.String permission, java.lang.String startUserId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, SecurityPolicyModel securityPolicyModel)protected booleanhasPermissionForCaseInstance(java.lang.String permission, java.lang.String caseInstanceId, boolean isHistoricInstance, java.lang.String startUserId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, java.lang.String caseDefinitionId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)booleanhasPermissionForCaseInstance(java.lang.String permission, org.flowable.cmmn.api.runtime.CaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)booleanhasPermissionForHistoricCaseInstance(java.lang.String permission, org.flowable.cmmn.api.history.HistoricCaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)booleanhasPermissionForHistoricScope(java.lang.String permission, java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)booleanhasPermissionForRuntimeScope(java.lang.String permission, java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)booleanhasPermissionForScope(java.lang.String permission, java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)booleanhasReadPermissionOnScopeDefinition(java.lang.String scopeDefinitionId, java.lang.String scopeDefinitionKey, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)protected java.util.List<java.lang.String>translateParentPermissions(java.util.List<java.lang.String> parentPermissions, java.lang.String scopeType)voidvalidatePermissionForCaseInstance(java.lang.String permission, org.flowable.cmmn.api.runtime.CaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)voidvalidatePermissionForHistoricCaseInstance(java.lang.String permission, org.flowable.cmmn.api.history.HistoricCaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)Methods inherited from class com.flowable.platform.security.service.AbstractPlatformSecurityService
currentUserHasAdminRights, currentUserIsSuperAdmin, fetchCasePermissionMappings, fetchCasePermissionMappings, fetchCaseSecurityPolicyModel, fetchPermissions, fetchPermissionsForTask, fetchProcessPermissionMappings, fetchProcessPermissionMappings, fetchProcessSecurityPolicyModel, fetchSecurityPolicyModel, fetchSecurityPolicyModel, fetchSecurityPolicyModelForCaseInstance, fetchSecurityPolicyModelForProcessInstance, fetchSecurityPolicyModelForTask, fetchSecurityPolicyModelForTask, fetchTaskPermissionMappings, fetchTaskPermissionMappings, fetchTaskPermissionMappings, fetchTaskPermissionMappingsForCase, fetchTaskPermissionMappingsForProcess, fetchTaskSecurityPolicyModelForCase, fetchTaskSecurityPolicyModelForProcess, filterPermissionsForRole, getCmmnExtensionElementValue, getCurrentGroupKeys, getCurrentTenantId, getCurrentUserId, getDefaultSecurityPolicyModel, getExtensionElementValue, getSecurityPolicyModelByKey, groupOrUserMatches, groupOrUserMatches, hasAnyMatchingIdentityLink, hasAssigneeOrOwnerIdentityLink, hasPermissionForEntityLinks, hasPermissionForHistoricEntityLinks, setPermissionServiceRegistry, translatePermissionForScopeMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface com.flowable.platform.security.permission.PermissionService
validatePermissionForHistoricScope, validatePermissionForRuntimeScope, validatePermissionForScope, validatePermissionsForHistoricScope, validatePermissionsForRuntimeScope, validateReadPermissionOnScopeDefinition
-
Field Details
-
cmmnHistoryService
@Autowired(required=false) protected org.flowable.cmmn.api.CmmnHistoryService cmmnHistoryService -
cmmnEngineConfiguration
@Autowired protected org.flowable.cmmn.engine.CmmnEngineConfiguration cmmnEngineConfiguration
-
-
Constructor Details
-
CasePermissionServiceImpl
public CasePermissionServiceImpl()
-
-
Method Details
-
getScopeType
public java.lang.String getScopeType()Description copied from interface:PermissionServiceThe scope type that this permissions service supports.- Specified by:
getScopeTypein interfacePermissionService
-
hasPermissionForScope
public boolean hasPermissionForScope(java.lang.String permission, java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
hasPermissionForScopein interfacePermissionService
-
validatePermissionForCaseInstance
public void validatePermissionForCaseInstance(java.lang.String permission, org.flowable.cmmn.api.runtime.CaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
validatePermissionForCaseInstancein interfaceCasePermissionService
-
hasPermissionForCaseInstance
public boolean hasPermissionForCaseInstance(java.lang.String permission, org.flowable.cmmn.api.runtime.CaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
hasPermissionForCaseInstancein interfaceCasePermissionService
-
validatePermissionForHistoricCaseInstance
public void validatePermissionForHistoricCaseInstance(java.lang.String permission, org.flowable.cmmn.api.history.HistoricCaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
validatePermissionForHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForHistoricCaseInstance
public boolean hasPermissionForHistoricCaseInstance(java.lang.String permission, org.flowable.cmmn.api.history.HistoricCaseInstance caseInstance, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
hasPermissionForHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForRuntimeScope
public boolean hasPermissionForRuntimeScope(java.lang.String permission, java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
hasPermissionForRuntimeScopein interfacePermissionService
-
fetchPermissionsForRuntimeScope
public java.util.List<java.lang.String> fetchPermissionsForRuntimeScope(java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
fetchPermissionsForRuntimeScopein interfacePermissionService
-
fetchPermissionsForRuntimeScope
public java.util.List<java.lang.String> fetchPermissionsForRuntimeScope(java.lang.String scopeId, boolean checkWritePermissionInParent, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
fetchPermissionsForRuntimeScopein interfacePermissionService
-
hasPermissionForHistoricScope
public boolean hasPermissionForHistoricScope(java.lang.String permission, java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
hasPermissionForHistoricScopein interfacePermissionService
-
fetchPermissionsForHistoricScope
public java.util.List<java.lang.String> fetchPermissionsForHistoricScope(java.lang.String scopeId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
fetchPermissionsForHistoricScopein interfacePermissionService
-
fetchPermissionsForHistoricScope
public java.util.List<java.lang.String> fetchPermissionsForHistoricScope(java.lang.String scopeId, boolean checkWritePermissionInParent, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
fetchPermissionsForHistoricScopein interfacePermissionService
-
getRuntimeCasePermissions
public java.util.List<java.lang.String> getRuntimeCasePermissions(java.lang.String caseInstanceId, java.lang.String definitionId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, java.lang.String tenantId)- Specified by:
getRuntimeCasePermissionsin interfaceCasePermissionService
-
getHistoricCasePermissions
public java.util.List<java.lang.String> getHistoricCasePermissions(java.lang.String caseInstanceId, java.lang.String definitionId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, java.lang.String tenantId)- Specified by:
getHistoricCasePermissionsin interfaceCasePermissionService
-
hasReadPermissionOnScopeDefinition
public boolean hasReadPermissionOnScopeDefinition(java.lang.String scopeDefinitionId, java.lang.String scopeDefinitionKey, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId)- Specified by:
hasReadPermissionOnScopeDefinitionin interfacePermissionService
-
getCaseInstance
public org.flowable.cmmn.api.runtime.CaseInstance getCaseInstance(java.lang.String caseInstanceId, java.lang.String tenantId)- Specified by:
getCaseInstancein interfaceCasePermissionService
-
getHistoricCaseInstance
public org.flowable.cmmn.api.history.HistoricCaseInstance getHistoricCaseInstance(java.lang.String caseInstanceId, java.lang.String tenantId)- Specified by:
getHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForCaseInstance
protected boolean hasPermissionForCaseInstance(java.lang.String permission, java.lang.String caseInstanceId, boolean isHistoricInstance, java.lang.String startUserId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, java.lang.String caseDefinitionId, java.lang.String userId, java.util.Set<java.lang.String> groupKeys, java.lang.String tenantId) -
hasPermission
protected boolean hasPermission(java.lang.String permission, java.lang.String startUserId, java.util.List<? extends org.flowable.identitylink.api.IdentityLinkInfo> identityLinks, SecurityPolicyModel securityPolicyModel) -
getSecurityModel
protected SecurityPolicyModel getSecurityModel(java.lang.String caseDefinitionId, java.lang.String tenantId) -
findCaseDefinition
protected org.flowable.cmmn.api.repository.CaseDefinition findCaseDefinition(java.lang.String caseDefinitionId, java.lang.String caseDefinitionKey, java.lang.String tenantId) -
translateParentPermissions
protected java.util.List<java.lang.String> translateParentPermissions(java.util.List<java.lang.String> parentPermissions, java.lang.String scopeType) -
checkPermissionInCaseParent
protected boolean checkPermissionInCaseParent(java.lang.String casePermission, SecurityPolicyModel securityPolicyModel)
-