Class CasePermissionServiceImpl
java.lang.Object
com.flowable.platform.security.service.AbstractPlatformSecurityService
com.flowable.platform.security.permission.CasePermissionServiceImpl
- All Implemented Interfaces:
CasePermissionService,PermissionService,PermissionServiceRegistryAware,Aware
public class CasePermissionServiceImpl
extends AbstractPlatformSecurityService
implements CasePermissionService
-
Field Summary
FieldsModifier and TypeFieldDescriptionprotected CmmnEngineConfigurationprotected CmmnHistoryServiceprotected PlatformIdentityServiceprotected final StringFields inherited from class com.flowable.platform.security.service.AbstractPlatformSecurityService
additionalAdminUsers, CASE_PREFIX, cmmnRepositoryService, cmmnRuntimeService, cmmnTaskService, defaultSecurityPolicyKey, defaultSecurityPolicyModel, EXTERNAL_WORKER_PREFIX, inspectEnabled, permissionServiceRegistry, platformSecurityInterceptor, policyRepositoryService, PROCESS_PREFIX, repositoryService, runtimeService, SECURITY_POLICY_MODEL, TASK_PREFIX, taskService -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected booleancheckPermissionInCaseParent(String casePermission, SecurityPolicyModel securityPolicyModel) fetchPermissionsForHistoricScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId) fetchPermissionsForHistoricScope(String scopeId, String userId, Set<String> groupKeys, String tenantId) fetchPermissionsForRuntimeScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId) fetchPermissionsForRuntimeScope(String scopeId, String userId, Set<String> groupKeys, String tenantId) protected CaseDefinitionfindCaseDefinition(String caseDefinitionId, String caseDefinitionKey, String tenantId) protected CaseDefinitionfindCaseDefinitionTenantAware(String caseDefinitionKey, String tenantId) getCaseInstance(String caseInstanceId, String tenantId) getHistoricCaseInstance(String caseInstanceId, String tenantId) getHistoricCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId) getRuntimeCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId) The scope type that this permissions service supports.protected SecurityPolicyModelgetSecurityModel(String caseDefinitionId, String tenantId) protected booleanhasPermission(String permission, String startUserId, List<? extends IdentityLinkInfo> identityLinks, SecurityPolicyModel securityPolicyModel) protected booleanhasPermissionForCaseInstance(String permission, String caseInstanceId, boolean isHistoricInstance, String startUserId, List<? extends IdentityLinkInfo> identityLinks, String caseDefinitionId, String userId, Set<String> groupKeys, String tenantId) booleanhasPermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) booleanhasPermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) booleanhasPermissionForHistoricScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId) booleanhasPermissionForRuntimeScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId) booleanhasPermissionForScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId) booleanhasReadPermissionOnScopeDefinition(String scopeDefinitionId, String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId) booleanhasReadPermissionOnScopeDefinitionTenantAware(String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId) translateParentPermissions(List<String> parentPermissions, String scopeType) voidvalidateParticipantValue(CaseInstance caseInstance, String participantCandidate) voidvalidatePermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) voidvalidatePermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) Methods inherited from class com.flowable.platform.security.service.AbstractPlatformSecurityService
currentUserHasAdminRights, currentUserIsSuperAdmin, fetchCasePermissionMappings, fetchCasePermissionMappings, fetchCaseSecurityPolicyModel, fetchPermissions, fetchPermissionsForTask, fetchProcessPermissionMappings, fetchProcessPermissionMappings, fetchProcessSecurityPolicyModel, fetchSecurityPolicyModel, fetchSecurityPolicyModel, fetchSecurityPolicyModelForCaseInstance, fetchSecurityPolicyModelForProcessInstance, fetchSecurityPolicyModelForTask, fetchSecurityPolicyModelForTask, fetchTaskPermissionMappings, fetchTaskPermissionMappings, fetchTaskPermissionMappings, fetchTaskPermissionMappingsForCase, fetchTaskPermissionMappingsForProcess, fetchTaskSecurityPolicyModelForCase, fetchTaskSecurityPolicyModelForProcess, filterPermissionsForRole, getCmmnExtensionElementValue, getCurrentGroupKeys, getCurrentSecurityScope, getCurrentTenantId, getCurrentUserId, getDefaultSecurityPolicyModel, getExtensionElementValue, getSecurityPolicyModelByKey, groupOrUserMatches, groupOrUserMatches, hasAnyMatchingIdentityLink, hasAssigneeOrOwnerIdentityLink, hasPermissionForEntityLinks, hasPermissionForHistoricEntityLinks, setPermissionServiceRegistry, translatePermissionForScopeMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface com.flowable.platform.security.permission.PermissionService
validatePermissionForHistoricScope, validatePermissionForRuntimeScope, validatePermissionForScope, validatePermissionsForHistoricScope, validatePermissionsForRuntimeScope, validateReadPermissionOnScopeDefinition
-
Field Details
-
cmmnHistoryService
-
cmmnEngineConfiguration
-
identityService
-
participantCandidateGroups
-
-
Constructor Details
-
CasePermissionServiceImpl
-
-
Method Details
-
getScopeType
Description copied from interface:PermissionServiceThe scope type that this permissions service supports.- Specified by:
getScopeTypein interfacePermissionService
-
hasPermissionForScope
public boolean hasPermissionForScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId) - Specified by:
hasPermissionForScopein interfacePermissionService
-
validatePermissionForCaseInstance
public void validatePermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) - Specified by:
validatePermissionForCaseInstancein interfaceCasePermissionService
-
hasPermissionForCaseInstance
public boolean hasPermissionForCaseInstance(String permission, CaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) - Specified by:
hasPermissionForCaseInstancein interfaceCasePermissionService
-
validatePermissionForHistoricCaseInstance
public void validatePermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) - Specified by:
validatePermissionForHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForHistoricCaseInstance
public boolean hasPermissionForHistoricCaseInstance(String permission, HistoricCaseInstance caseInstance, String userId, Set<String> groupKeys, String tenantId) - Specified by:
hasPermissionForHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForRuntimeScope
public boolean hasPermissionForRuntimeScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId) - Specified by:
hasPermissionForRuntimeScopein interfacePermissionService
-
fetchPermissionsForRuntimeScope
public List<String> fetchPermissionsForRuntimeScope(String scopeId, String userId, Set<String> groupKeys, String tenantId) - Specified by:
fetchPermissionsForRuntimeScopein interfacePermissionService
-
fetchPermissionsForRuntimeScope
public List<String> fetchPermissionsForRuntimeScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId) - Specified by:
fetchPermissionsForRuntimeScopein interfacePermissionService
-
hasPermissionForHistoricScope
public boolean hasPermissionForHistoricScope(String permission, String scopeId, String userId, Set<String> groupKeys, String tenantId) - Specified by:
hasPermissionForHistoricScopein interfacePermissionService
-
fetchPermissionsForHistoricScope
public List<String> fetchPermissionsForHistoricScope(String scopeId, String userId, Set<String> groupKeys, String tenantId) - Specified by:
fetchPermissionsForHistoricScopein interfacePermissionService
-
fetchPermissionsForHistoricScope
public List<String> fetchPermissionsForHistoricScope(String scopeId, boolean checkWritePermissionInParent, String userId, Set<String> groupKeys, String tenantId) - Specified by:
fetchPermissionsForHistoricScopein interfacePermissionService
-
getRuntimeCasePermissions
public List<String> getRuntimeCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId) - Specified by:
getRuntimeCasePermissionsin interfaceCasePermissionService
-
getHistoricCasePermissions
public List<String> getHistoricCasePermissions(String caseInstanceId, String definitionId, List<? extends IdentityLinkInfo> identityLinks, String tenantId) - Specified by:
getHistoricCasePermissionsin interfaceCasePermissionService
-
hasReadPermissionOnScopeDefinition
public boolean hasReadPermissionOnScopeDefinition(String scopeDefinitionId, String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId) - Specified by:
hasReadPermissionOnScopeDefinitionin interfacePermissionService
-
hasReadPermissionOnScopeDefinitionTenantAware
public boolean hasReadPermissionOnScopeDefinitionTenantAware(String scopeDefinitionKey, String userId, Set<String> groupKeys, String tenantId) - Specified by:
hasReadPermissionOnScopeDefinitionTenantAwarein interfaceCasePermissionService
-
getCaseInstance
- Specified by:
getCaseInstancein interfaceCasePermissionService
-
getHistoricCaseInstance
- Specified by:
getHistoricCaseInstancein interfaceCasePermissionService
-
hasPermissionForCaseInstance
-
hasPermission
protected boolean hasPermission(String permission, String startUserId, List<? extends IdentityLinkInfo> identityLinks, SecurityPolicyModel securityPolicyModel) -
getSecurityModel
-
findCaseDefinition
protected CaseDefinition findCaseDefinition(String caseDefinitionId, String caseDefinitionKey, String tenantId) -
findCaseDefinitionTenantAware
-
translateParentPermissions
-
checkPermissionInCaseParent
protected boolean checkPermissionInCaseParent(String casePermission, SecurityPolicyModel securityPolicyModel) -
validateParticipantValue
- Specified by:
validateParticipantValuein interfaceCasePermissionService
-