Package com.netflix.spinnaker.security

Interface PermissionMapControlled<Authorization extends Enum<Authorization>>

Type Parameters:

Authorization - Authorization enum type

All Superinterfaces:

AccessControlled

All Known Subinterfaces:

AuthorizationMapControlled

@Alpha
public interface PermissionMapControlled<Authorization extends Enum<Authorization>>
extends AccessControlled

Common interface for access-controlled classes which use a permission map.

Method Summary

Modifier and Type	Method	Description
default Map<Authorization,Set<String>>	getPermissions()
default boolean	isAuthorized(org.springframework.security.core.Authentication authentication, Object authorization)	Checks if the authenticated user has a particular authorization on this object.
Authorization	valueOf(Object authorization)

Method Details

valueOf

@Nullable
Authorization valueOf(@Nullable
 Object authorization)

getPermissions

@Nonnull
default Map<Authorization,Set<String>> getPermissions()

isAuthorized

default boolean isAuthorized(org.springframework.security.core.Authentication authentication,
 Object authorization)

Description copied from interface: AccessControlled

Checks if the authenticated user has a particular authorization on this object. Note that checking if the user is an admin should be performed by a PermissionEvaluator or by checking SpinnakerAuthorities.isAdmin(Authentication) rather than via this method as the admin role is a Spinnaker-specific role.

Specified by:

isAuthorized in interface AccessControlled

See Also:

• Authorization
• SpinnakerAuthorities.hasAnyRole(Authentication, Collection)