Class DefaultAuthorizer
- java.lang.Object
-
- org.openmetadata.service.security.DefaultAuthorizer
-
- All Implemented Interfaces:
Authorizer
public class DefaultAuthorizer extends Object implements Authorizer
-
-
Constructor Summary
Constructors Constructor Description DefaultAuthorizer()
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description voidauthorize(javax.ws.rs.core.SecurityContext securityContext, OperationContext operationContext, ResourceContextInterface resourceContext)voidauthorizeAdmin(javax.ws.rs.core.SecurityContext securityContext)voidauthorizeAdminOrBot(javax.ws.rs.core.SecurityContext securityContext)booleanauthorizePII(javax.ws.rs.core.SecurityContext securityContext, EntityReference owner)In 1.2, evaluate policies here instead of just checking the subjectResourcePermissiongetPermission(javax.ws.rs.core.SecurityContext securityContext, String user, String resourceType)Returns a list of operations that the authenticated user (subject) can perform on a given resource typeResourcePermissiongetPermission(javax.ws.rs.core.SecurityContext securityContext, String user, ResourceContextInterface resourceContext)Returns a list of operations that the authenticated user (subject) can perform on a given resourcestatic SubjectContextgetSubjectContext(javax.ws.rs.core.SecurityContext securityContext)voidinit(OpenMetadataApplicationConfig config, org.jdbi.v3.core.Jdbi dbi)Initialize the authorizerList<ResourcePermission>listPermissions(javax.ws.rs.core.SecurityContext securityContext, String user)Returns a list of operations that the authenticated user (subject) can performbooleanshouldMaskPasswords(javax.ws.rs.core.SecurityContext securityContext)
-
-
-
Method Detail
-
init
public void init(OpenMetadataApplicationConfig config, org.jdbi.v3.core.Jdbi dbi)
Description copied from interface:AuthorizerInitialize the authorizer- Specified by:
initin interfaceAuthorizer
-
listPermissions
public List<ResourcePermission> listPermissions(javax.ws.rs.core.SecurityContext securityContext, String user)
Description copied from interface:AuthorizerReturns a list of operations that the authenticated user (subject) can perform- Specified by:
listPermissionsin interfaceAuthorizer
-
getPermission
public ResourcePermission getPermission(javax.ws.rs.core.SecurityContext securityContext, String user, String resourceType)
Description copied from interface:AuthorizerReturns a list of operations that the authenticated user (subject) can perform on a given resource type- Specified by:
getPermissionin interfaceAuthorizer
-
getPermission
public ResourcePermission getPermission(javax.ws.rs.core.SecurityContext securityContext, String user, ResourceContextInterface resourceContext)
Description copied from interface:AuthorizerReturns a list of operations that the authenticated user (subject) can perform on a given resource- Specified by:
getPermissionin interfaceAuthorizer
-
authorize
public void authorize(javax.ws.rs.core.SecurityContext securityContext, OperationContext operationContext, ResourceContextInterface resourceContext)- Specified by:
authorizein interfaceAuthorizer
-
authorizeAdmin
public void authorizeAdmin(javax.ws.rs.core.SecurityContext securityContext)
- Specified by:
authorizeAdminin interfaceAuthorizer
-
authorizeAdminOrBot
public void authorizeAdminOrBot(javax.ws.rs.core.SecurityContext securityContext)
- Specified by:
authorizeAdminOrBotin interfaceAuthorizer
-
shouldMaskPasswords
public boolean shouldMaskPasswords(javax.ws.rs.core.SecurityContext securityContext)
- Specified by:
shouldMaskPasswordsin interfaceAuthorizer
-
authorizePII
public boolean authorizePII(javax.ws.rs.core.SecurityContext securityContext, EntityReference owner)In 1.2, evaluate policies here instead of just checking the subject- Specified by:
authorizePIIin interfaceAuthorizer
-
getSubjectContext
public static SubjectContext getSubjectContext(javax.ws.rs.core.SecurityContext securityContext)
-
-