AccessController (turbine-2 2.3.3 API)

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

org.apache.turbine.modules.actions
Class AccessController

java.lang.Object
  org.apache.turbine.modules.Assembler
      org.apache.turbine.modules.Action
          org.apache.turbine.modules.actions.AccessController

public class AccessController
extends Action

This action doPerforms an Access Control List and places it into the RunData object, so it is easily available to modules. The ACL is also placed into the session. Modules can null out the ACL to force it to be rebuilt based on more information.

Turbine uses a User-Role-Permission arrangement for access control. Users are assigned Roles. Roles are assigned Permissions. Turbine modules then check the Permission required for an action or information with the set of Permissions currently associated with the session (which are dependent on the user associated with the session.)

The criteria for assigning Roles/Permissions is application dependent, in some cases an application may change a User's Roles during the session. To achieve flexibility, the ACL takes an Object parameter, which the application can use to doPerform the ACL.

This action is special in that it should only be executed by the Turbine servlet.

Version:: $Id: AccessController.java 534527 2007-05-02 16:10:59Z tv $
Author:: John D. McNally, Brett McLaughlin, Quinton McCombs

Constructor Summary
`AccessController()`

Method Summary
`void`	`doPerform(RunData data)` If there is a user and the user is logged in, doPerform will set the RunData ACL.

Methods inherited from class org.apache.turbine.modules.Action

perform

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail