Overview  Package   Class  Tree  Serialized  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

com.ibm.portal.services.contentmapping
Interface GlobalContentMappingDelegationService

public interface GlobalContentMappingDelegationService

Individual content mappings can be flagged to activate access control delegation. Access control delegation in this context means, that view access privileges on the portal resource shall imply view access privileges on the mapped content resource.

This service can be obtained via the ContentMappingInfoHome. It is used for checking if the current user is allowed to activate/deactive access control delegation in general, to check if the user is allowed to create new portal resources with delegation mode enabled, and to execute code in delegation mode.

The privilege to activate/deactivate the delegation flag on a specific resource, requires the global privilege to to be allowed to modify the access cntrol delegation flag in general (controlled via a corresponding virtual resource in the Portal Access Control component), view access to the portal resource, and administrator access to a so-called content proxy resource guarding the specific content resource space containing the mapped content resource. In Lotus Web Content Management, the content proxy resource is defined to be the library root node of the specific library containing the given content resource.

The non-global ContentMappingDelegationService interface allows access to access control delegation functions within the context of a specific portal resource.

Since:
7.0.0.0
See Also:
ContentMappingInfoHome, ContentMapping, ContentMappingDelegationService

Method Summary
 boolean isAllowedToCreateDelegatingPortalResource(ObjectID contentProxyResource)
          Returns true if and only if the current user is allowed to create a portal resource with an associated delegating content mapping for a resources guarded by a given content proxy resource.
 boolean isAllowedToCreateDelegatingPortalResourceForContentWithID(java.lang.String contentID)
          Returns true if and only if the current user is allowed to create a portal resource with an associated delegating content mapping for the given content resource.
 boolean isAllowedToCreateDelegatingPortalResourceForContentWithPath(java.lang.String contentPath)
          Returns true if and only if the current user is allowed to create a portal resource with an associated delegating content mapping for the given content resource.
 boolean isAllowedToDelegate()
          Returns true if and only if the current user has been granted the prerequisite privileges to change content mapping delegation settings in general.
 java.lang.Object runInDelegationMode(java.security.PrivilegedExceptionAction action)
          Executes the given action in delegation mode.
 

Method Detail

isAllowedToDelegate

boolean isAllowedToDelegate()
                            throws ContentMappingException
Returns true if and only if the current user has been granted the prerequisite privileges to change content mapping delegation settings in general. Modiying the access control delegation settings of specific content mappings may still fail due to missing resource level access rights if those privileges have not been granted to the executing user. If this method returns false, the user will not be allowed to change delegation settings for any content mapping independent of the involved resources.

Throws:
ContentMappingException

isAllowedToCreateDelegatingPortalResource

boolean isAllowedToCreateDelegatingPortalResource(ObjectID contentProxyResource)
                                                  throws ContentMappingException
Returns true if and only if the current user is allowed to create a portal resource with an associated delegating content mapping for a resources guarded by a given content proxy resource. In Lotus Web Content Management, the contentProxyResource for a content resource is defined to be the library node containing the content resource.

Parameters:
contentProxyResource - The content proxy resource.
Throws:
ContentMappingException

isAllowedToCreateDelegatingPortalResourceForContentWithID

boolean isAllowedToCreateDelegatingPortalResourceForContentWithID(java.lang.String contentID)
                                                                  throws ContentMappingException
Returns true if and only if the current user is allowed to create a portal resource with an associated delegating content mapping for the given content resource.

Parameters:
contentID - The ID of the content resource
Throws:
ContentMappingException

isAllowedToCreateDelegatingPortalResourceForContentWithPath

boolean isAllowedToCreateDelegatingPortalResourceForContentWithPath(java.lang.String contentPath)
                                                                    throws ContentMappingException
Returns true if and only if the current user is allowed to create a portal resource with an associated delegating content mapping for the given content resource.

Parameters:
contentPath - The path to the content resource
Throws:
ContentMappingException

runInDelegationMode

java.lang.Object runInDelegationMode(java.security.PrivilegedExceptionAction action)
                                     throws java.lang.Exception
Executes the given action in delegation mode. All access control checks triggered during action execution are bypassed.

Throws:
java.lang.Exception
Overview  Package   Class  Tree  Serialized  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD