org.frameworkset.security

Class DefaultAccessControl

java.lang.Object

org.frameworkset.security.DefaultAccessControl

All Implemented Interfaces:

AccessControlInf

public class DefaultAccessControl
extends java.lang.Object
implements AccessControlInf

DefaultAccessControl.java

Description:

bboss workgroup

Copyright (c) 2005-2013

Constructor Summary

Constructors

Constructor and Description
DefaultAccessControl()

Method Summary

Modifier and Type	Method and Description
boolean	allowIfNoRequiredRoles(java.lang.String resourceType)
boolean	checkAccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
boolean	checkAccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, boolean protect)
boolean	checkAccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, javax.servlet.jsp.JspWriter out, boolean protect)
boolean	checkAdminAccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) 检测当前登陆用户是否是管理员
boolean	checkManagerAccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) 检测当前登陆用户是否是管理员或者拥有超级管理员角色
boolean	checkPermission(java.lang.String resid, java.lang.String action, java.lang.String restype) 检测当前系统用户是否拥有访问资源的权限
boolean	checkPermission(java.lang.String resourceID, java.lang.String action, java.lang.String resourceType, boolean redirect, java.lang.String redirectPath) 检测当前系统用户是否拥有访问资源的权限，如果没有则跳转到权限提示页面 否则允许用户访问当前资源 根据条件redirect决定是否跳转，true表示跳转，false表示不跳转
boolean	checkURLPermission(java.lang.String uri) 检测当前系统用户是否拥有访问资源的权限
java.lang.String	getChargeOrgId()
java.lang.String	getCurrentSystemID()
javax.servlet.jsp.PageContext	getPageContext()
javax.servlet.http.HttpServletRequest	getRequest()
javax.servlet.http.HttpSession	getSession()
java.lang.String	getUserAccount()
java.lang.String	getUserAttribute(java.lang.String variableName)
java.lang.String	getUserID()
java.lang.String	getUserName()
boolean	isAdmin()
boolean	isGrantedRole(java.lang.String string)
boolean	isGuest()
boolean	isOrganizationManager(java.lang.String orgId)
boolean	isSubOrgManager(java.lang.String orgId)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

DefaultAccessControl

public DefaultAccessControl()

Method Detail

checkAccess

public boolean checkAccess(javax.servlet.http.HttpServletRequest request,
                           javax.servlet.http.HttpServletResponse response,
                           javax.servlet.jsp.JspWriter out,
                           boolean protect)

Specified by:

checkAccess in interface AccessControlInf

getCurrentSystemID

public java.lang.String getCurrentSystemID()

Specified by:

getCurrentSystemID in interface AccessControlInf

getUserID

public java.lang.String getUserID()

Specified by:

getUserID in interface AccessControlInf

checkPermission

public boolean checkPermission(java.lang.String resid,
                               java.lang.String action,
                               java.lang.String restype)

Description copied from interface: AccessControlInf

检测当前系统用户是否拥有访问资源的权限

Specified by:

checkPermission in interface AccessControlInf

Returns:

isAdmin

public boolean isAdmin()

Specified by:

isAdmin in interface AccessControlInf

isOrganizationManager

public boolean isOrganizationManager(java.lang.String orgId)

Specified by:

isOrganizationManager in interface AccessControlInf

isSubOrgManager

public boolean isSubOrgManager(java.lang.String orgId)

Specified by:

isSubOrgManager in interface AccessControlInf

isGrantedRole

public boolean isGrantedRole(java.lang.String string)

Specified by:

isGrantedRole in interface AccessControlInf

getUserName

public java.lang.String getUserName()

Specified by:

getUserName in interface AccessControlInf

getUserAccount

public java.lang.String getUserAccount()

Specified by:

getUserAccount in interface AccessControlInf

getUserAttribute

public java.lang.String getUserAttribute(java.lang.String variableName)

Specified by:

getUserAttribute in interface AccessControlInf

getChargeOrgId

public java.lang.String getChargeOrgId()

Specified by:

getChargeOrgId in interface AccessControlInf

allowIfNoRequiredRoles

public boolean allowIfNoRequiredRoles(java.lang.String resourceType)

Specified by:

allowIfNoRequiredRoles in interface AccessControlInf

checkAccess

public boolean checkAccess(javax.servlet.http.HttpServletRequest request,
                           javax.servlet.http.HttpServletResponse response)

Specified by:

checkAccess in interface AccessControlInf

checkAccess

public boolean checkAccess(javax.servlet.http.HttpServletRequest request,
                           javax.servlet.http.HttpServletResponse response,
                           boolean protect)

Specified by:

checkAccess in interface AccessControlInf

checkAdminAccess

public boolean checkAdminAccess(javax.servlet.http.HttpServletRequest request,
                                javax.servlet.http.HttpServletResponse response)

Description copied from interface: AccessControlInf

检测当前登陆用户是否是管理员

Specified by:

checkAdminAccess in interface AccessControlInf

checkManagerAccess

public boolean checkManagerAccess(javax.servlet.http.HttpServletRequest request,
                                  javax.servlet.http.HttpServletResponse response)

Description copied from interface: AccessControlInf

检测当前登陆用户是否是管理员或者拥有超级管理员角色

Specified by:

checkManagerAccess in interface AccessControlInf

checkPermission

public boolean checkPermission(java.lang.String resourceID,
                               java.lang.String action,
                               java.lang.String resourceType,
                               boolean redirect,
                               java.lang.String redirectPath)

Description copied from interface: AccessControlInf

检测当前系统用户是否拥有访问资源的权限，如果没有则跳转到权限提示页面 否则允许用户访问当前资源 根据条件redirect决定是否跳转，true表示跳转，false表示不跳转

Specified by:

checkPermission in interface AccessControlInf

Returns:

checkURLPermission

public boolean checkURLPermission(java.lang.String uri)

Description copied from interface: AccessControlInf

检测当前系统用户是否拥有访问资源的权限

Specified by:

checkURLPermission in interface AccessControlInf

Returns:

getRequest

public javax.servlet.http.HttpServletRequest getRequest()

Specified by:

getRequest in interface AccessControlInf

getSession

public javax.servlet.http.HttpSession getSession()

Specified by:

getSession in interface AccessControlInf

getPageContext

public javax.servlet.jsp.PageContext getPageContext()

Specified by:

getPageContext in interface AccessControlInf

isGuest

public boolean isGuest()

Specified by:

isGuest in interface AccessControlInf