2 * Copyright 2005-2010 the original author or authors.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
16 package org.wamblee.security.authorization;
18 import org.wamblee.usermgt.UserAccessor;
21 * Service to determine if access to a certain resource is allowed.
23 * @author Erik Brakkee
25 public interface AuthorizationService {
28 * Checks whether an operation is allowed on a resource.
35 * @return Checks whether the operation is allowed on a resource.
37 boolean isAllowed(Object aResource, Operation aOperation);
40 * Checks if the given operation is allowed on the resource.
48 * @return Resource passed in in case access is allowed
49 * @throws AuthorizationException
50 * In case access is denied.
52 <T> T check(T aResource, Operation aOperation);
55 * Gets the authorization rules.
59 AuthorizationRule[] getRules();
62 * Appends a new authorization rule to the end.
67 void appendRule(AuthorizationRule aRule);
73 * Index of the rule to remove.
75 void removeRule(int aIndex);
81 * Index of the position of the rule after insertion.
85 void insertRuleAfter(int aIndex, AuthorizationRule aRule);
88 * Sets the user accessor so that the authorization service can get access
89 * to the logged in user.
91 * @param aUserAccessor
94 void setUserAccessor(UserAccessor aUserAccessor);