...
Code Block | ||||
---|---|---|---|---|
| ||||
package dk.itp.security.passticket;
/**
* Added even more finegraded methods to a validator - allows separating permission checks per identifier.
*
* @author Kim Rasmussen
* @version $Revision$
*
* <pre>
* Ceptor - http://ceptor.io
* Copyright(c) 2017, Asseco Denmark A/S, All rights reserved.
*
* This source code is confidential.
* </pre>
*/
public interface IExtendedAgentValidator2 extends IExtendedAgentValidator {
/**
* Checks if the user has permission to the acl / resource, taking into account the additional data delivered, e.g. for data based authorization.
*
* @param agent Instance of the agent performing the check
* @param user User/Session
* @param identifier Identifier used to separate different ACL entries for different applications - use null for default
* @param aclName ACL name to check
* @param sessionID Session ID
* @param additionalData Application specific data
* @return true if access is allowed, false if not
* @throws PTException Thrown if an error occurs
* @throws dk.itp.security.authorization.client.AdditionalDataRequiredException Thrown if additional data is required
* @throws AclNotFoundException Thrown if the specified ACL was not found
*/
boolean checkPermission(IAgent agent, User user, String identifier, String aclName, String sessionID, Object additionalData) throws PTException;
}
|
...