Class RMMethodSecurityInterceptor

  • All Implemented Interfaces:
    org.aopalliance.aop.Advice, org.aopalliance.intercept.Interceptor, org.aopalliance.intercept.MethodInterceptor, org.springframework.beans.factory.Aware, org.springframework.beans.factory.InitializingBean, org.springframework.context.ApplicationContextAware

    public class RMMethodSecurityInterceptor
    extends org.alfresco.repo.security.permissions.impl.acegi.MethodSecurityInterceptor
    Records Management Method Security Interceptor.

    Provides a way to record information about the capabilities being executed and report when an access denied exception is thrown.

    Since:
    2.2
    Author:
    Roy Wetherall
    • Field Summary

      Fields 
      Modifier and Type Field Description
      protected static org.apache.commons.logging.Log LOGGER
      logger
      • Fields inherited from class net.sf.acegisecurity.intercept.AbstractSecurityInterceptor

        logger
    • Method Summary

      All Methods Static Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      static void addMessage​(String message)
      Add a message to be displayed in the error report.
      static void addMessage​(String message, Object... params)  
      protected net.sf.acegisecurity.intercept.InterceptorStatusToken beforeInvocation​(Object object)  
      String getFailureReport()
      Gets the failure report for the currently recorded capabilities.
      Object invoke​(org.aopalliance.intercept.MethodInvocation mi)  
      static void isRMSecurityChecked​(boolean newValue)
      Indicates whether this is a RM security check or not
      static void reportCapabilityCondition​(String name, String conditionName, boolean expected, boolean actual)
      Report capability condition.
      static void reportCapabilityStatus​(String name, int status)
      Report capability status.
      • Methods inherited from class org.alfresco.repo.security.permissions.impl.acegi.MethodSecurityInterceptor

        pre
      • Methods inherited from class net.sf.acegisecurity.intercept.method.aopalliance.MethodSecurityInterceptor

        getObjectDefinitionSource, getSecureObjectClass, obtainObjectDefinitionSource, setObjectDefinitionSource
      • Methods inherited from class net.sf.acegisecurity.intercept.AbstractSecurityInterceptor

        afterInvocation, afterPropertiesSet, getAccessDecisionManager, getAfterInvocationManager, getAuthenticationManager, getRunAsManager, isValidateConfigAttributes, setAccessDecisionManager, setAfterInvocationManager, setApplicationContext, setAuthenticationManager, setRunAsManager, setValidateConfigAttributes
    • Field Detail

      • LOGGER

        protected static final org.apache.commons.logging.Log LOGGER
        logger
    • Constructor Detail

      • RMMethodSecurityInterceptor

        public RMMethodSecurityInterceptor()
    • Method Detail

      • isRMSecurityChecked

        public static void isRMSecurityChecked​(boolean newValue)
        Indicates whether this is a RM security check or not
        Parameters:
        newValue - true if RM security check, false otherwise
      • addMessage

        public static void addMessage​(String message)
        Add a message to be displayed in the error report.
        Parameters:
        message - error message
      • addMessage

        public static void addMessage​(String message,
                                      Object... params)
      • reportCapabilityStatus

        public static void reportCapabilityStatus​(String name,
                                                  int status)
        Report capability status.
        Parameters:
        name - capability name
        status - capability status
      • reportCapabilityCondition

        public static void reportCapabilityCondition​(String name,
                                                     String conditionName,
                                                     boolean expected,
                                                     boolean actual)
        Report capability condition.
        Parameters:
        name - capability name
        conditionName - capability condition name
        expected - expected value
        actual - actual value
      • getFailureReport

        public String getFailureReport()
        Gets the failure report for the currently recorded capabilities.
        Returns:
        String capability error report
      • beforeInvocation

        protected net.sf.acegisecurity.intercept.InterceptorStatusToken beforeInvocation​(Object object)
        Overrides:
        beforeInvocation in class net.sf.acegisecurity.intercept.AbstractSecurityInterceptor
        See Also:
        AbstractSecurityInterceptor.beforeInvocation(java.lang.Object)
      • invoke

        public Object invoke​(org.aopalliance.intercept.MethodInvocation mi)
                      throws Throwable
        Specified by:
        invoke in interface org.aopalliance.intercept.MethodInterceptor
        Overrides:
        invoke in class net.sf.acegisecurity.intercept.method.aopalliance.MethodSecurityInterceptor
        Throws:
        Throwable
        See Also:
        MethodSecurityInterceptor.invoke(org.aopalliance.intercept.MethodInvocation)