Package com.netflix.spinnaker.security

Interface AccessControlled

  • public interface AccessControlled
    An AccessControlled object is an object that knows its own permissions and can check them against a given user and authorization. This allows resources to support access control checks via Spring Security against the resource object directly.

    • Method Summary

      All Methods Instance Methods Abstract Methods 
      Modifier and Type Method Description
      boolean isAuthorized​(org.springframework.security.core.Authentication authentication, java.lang.Object authorization)
      Checks if the authenticated user has a particular authorization on this object.

    • Method Detail

      • isAuthorized

        boolean isAuthorized​(org.springframework.security.core.Authentication authentication,
                     java.lang.Object authorization)
        Checks if the authenticated user has a particular authorization on this object. Note that checking if the user is an admin should be performed by a PermissionEvaluator rather than in these domain objects.