org.jbpm.casemgmt.api.auth

Interface AuthorizationManager

public interface AuthorizationManager

Responsible for authorizing access to case instances based on the context.

Nested Class Summary

Nested Classes

Modifier and Type	Interface and Description
static class	AuthorizationManager.ProtectedOperation

Field Summary

Fields

Modifier and Type	Field and Description
static String	ADMIN_ROLE
static String	OWNER_ROLE
static String	PUBLIC_GROUP

Method Summary

Modifier and Type	Method and Description
void	checkAuthorization(String caseId) Checks if the caller (based on identity provider) is authorized to work with a case identified by caseId
void	checkOperationAuthorization(String caseId, AuthorizationManager.ProtectedOperation operation) Checks if the caller (based on identity provider) is authorized to perform given operation on a case.

Field Detail

PUBLIC_GROUP

static final String PUBLIC_GROUP

See Also:

Constant Field Values

OWNER_ROLE

static final String OWNER_ROLE

See Also:

Constant Field Values

ADMIN_ROLE

static final String ADMIN_ROLE

See Also:

Constant Field Values

Method Detail

checkAuthorization

void checkAuthorization(String caseId)
                 throws SecurityException

Checks if the caller (based on identity provider) is authorized to work with a case identified by caseId

Parameters:

caseId - unique id of the case

Throws:

SecurityException - thrown when caller is not authorized to access the case instance

checkOperationAuthorization

void checkOperationAuthorization(String caseId,
                                 AuthorizationManager.ProtectedOperation operation)
                          throws SecurityException

Checks if the caller (based on identity provider) is authorized to perform given operation on a case.

Parameters:

caseId - unique id of the case

operation - operations that is being invoked

Throws:

SecurityException - thrown when caller is not authorized to access the case instance