Class DefaultAuthorizer
java.lang.Object
org.openmetadata.service.security.DefaultAuthorizer
- All Implemented Interfaces:
Authorizer
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionvoidauthorize(javax.ws.rs.core.SecurityContext securityContext, OperationContext operationContext, ResourceContextInterface resourceContext) voidauthorizeAdmin(javax.ws.rs.core.SecurityContext securityContext) voidauthorizeAdminOrBot(javax.ws.rs.core.SecurityContext securityContext) booleanauthorizePII(javax.ws.rs.core.SecurityContext securityContext, EntityReference owner) In 1.2, evaluate policies here instead of just checking the subjectgetPermission(javax.ws.rs.core.SecurityContext securityContext, String user, String resourceType) Returns a list of operations that the authenticated user (subject) can perform on a given resource typegetPermission(javax.ws.rs.core.SecurityContext securityContext, String user, ResourceContextInterface resourceContext) Returns a list of operations that the authenticated user (subject) can perform on a given resourcestatic SubjectContextgetSubjectContext(javax.ws.rs.core.SecurityContext securityContext) voidinit(OpenMetadataApplicationConfig config) Initialize the authorizerlistPermissions(javax.ws.rs.core.SecurityContext securityContext, String user) Returns a list of operations that the authenticated user (subject) can performbooleanshouldMaskPasswords(javax.ws.rs.core.SecurityContext securityContext)
-
Constructor Details
-
DefaultAuthorizer
public DefaultAuthorizer()
-
-
Method Details
-
init
Description copied from interface:AuthorizerInitialize the authorizer- Specified by:
initin interfaceAuthorizer
-
listPermissions
public List<ResourcePermission> listPermissions(javax.ws.rs.core.SecurityContext securityContext, String user) Description copied from interface:AuthorizerReturns a list of operations that the authenticated user (subject) can perform- Specified by:
listPermissionsin interfaceAuthorizer
-
getPermission
public ResourcePermission getPermission(javax.ws.rs.core.SecurityContext securityContext, String user, String resourceType) Description copied from interface:AuthorizerReturns a list of operations that the authenticated user (subject) can perform on a given resource type- Specified by:
getPermissionin interfaceAuthorizer
-
getPermission
public ResourcePermission getPermission(javax.ws.rs.core.SecurityContext securityContext, String user, ResourceContextInterface resourceContext) Description copied from interface:AuthorizerReturns a list of operations that the authenticated user (subject) can perform on a given resource- Specified by:
getPermissionin interfaceAuthorizer
-
authorize
public void authorize(javax.ws.rs.core.SecurityContext securityContext, OperationContext operationContext, ResourceContextInterface resourceContext) - Specified by:
authorizein interfaceAuthorizer
-
authorizeAdmin
public void authorizeAdmin(javax.ws.rs.core.SecurityContext securityContext) - Specified by:
authorizeAdminin interfaceAuthorizer
-
authorizeAdminOrBot
public void authorizeAdminOrBot(javax.ws.rs.core.SecurityContext securityContext) - Specified by:
authorizeAdminOrBotin interfaceAuthorizer
-
shouldMaskPasswords
public boolean shouldMaskPasswords(javax.ws.rs.core.SecurityContext securityContext) - Specified by:
shouldMaskPasswordsin interfaceAuthorizer
-
authorizePII
public boolean authorizePII(javax.ws.rs.core.SecurityContext securityContext, EntityReference owner) In 1.2, evaluate policies here instead of just checking the subject- Specified by:
authorizePIIin interfaceAuthorizer
-
getSubjectContext
-