public class OneGroupSecurityFilter extends AbstractSecurityFilter
FilterDefinitionFactoryBean
in order to construct our
security filter in code and not in XML. This allows us to make use of the
knowledge within Permissions
With the addition of shares in 4.0, it is necessary to remove the security
filter if a share is active and allow loading to throw the necessary
exceptions.Modifier and Type | Field and Description |
---|---|
static java.lang.String |
current_group |
log, roles
current_user, is_adminorpi, is_nonprivate, is_share
Constructor and Description |
---|
OneGroupSecurityFilter()
Default constructor which calls all the necessary setters for this
FactoryBean . |
OneGroupSecurityFilter(ome.system.Roles roles) |
Modifier and Type | Method and Description |
---|---|
void |
enable(org.hibernate.Session sess,
ome.system.EventContext ec)
Enables this filter with the settings from this filter.
|
java.lang.String |
getDefaultCondition()
Return the string to be used as the condition.
|
java.util.Map<java.lang.String,java.lang.String> |
getParameterTypes()
Return a mapping of the hibernate types for each of the parameters
that the condition takes.
|
protected java.lang.String |
myFilterCondition() |
boolean |
passesFilter(org.hibernate.Session session,
ome.model.internal.Details d,
ome.system.EventContext c)
tests that the
Details argument passes the security test that
this filter defines. |
disable, disableBaseFilters, enableBaseFilters, getName, isAdminOrPi, isNonPrivate, isShare
public static final java.lang.String current_group
public OneGroupSecurityFilter()
FactoryBean
. Also calls FilterDefinitionFactoryBean.setDefaultFilterCondition(String)
.
This query clause must be kept in sync with
passesFilter(Session, Details, EventContext)
.passesFilter(Session, Details, EventContext)
,
FilterDefinitionFactoryBean.setFilterName(String)
,
FilterDefinitionFactoryBean.setParameterTypes(java.util.Map)
,
FilterDefinitionFactoryBean.setDefaultFilterCondition(String)
public OneGroupSecurityFilter(ome.system.Roles roles)
protected java.lang.String myFilterCondition()
public java.lang.String getDefaultCondition()
SecurityFilter
public java.util.Map<java.lang.String,java.lang.String> getParameterTypes()
SecurityFilter
public boolean passesFilter(org.hibernate.Session session, ome.model.internal.Details d, ome.system.EventContext c)
Details
argument passes the security test that
this filter defines. The two must be kept in sync. This will be used
mostly by the
OmeroInterceptor.onLoad(Object, java.io.Serializable, Object[], String[], org.hibernate.type.Type[])
method.d
- Details instance. If null (or if its Permissions
are
null all rights
will be assumed.public void enable(org.hibernate.Session sess, ome.system.EventContext ec)
SecurityFilter
SecurityFilter.passesFilter(Session, Details, EventContext)
.sess
- Non-null.ec
- Non-null.