Package org.teiid.dqp.internal.process
Class AuthorizationValidationVisitor
- java.lang.Object
-
- org.teiid.query.sql.LanguageVisitor
-
- org.teiid.query.validator.AbstractValidationVisitor
-
- org.teiid.dqp.internal.process.AuthorizationValidationVisitor
-
public class AuthorizationValidationVisitor extends AbstractValidationVisitor
-
-
Field Summary
-
Fields inherited from class org.teiid.query.validator.AbstractValidationVisitor
currentCommand, report, stack
-
-
Constructor Summary
Constructors Constructor Description AuthorizationValidationVisitor(PolicyDecider decider, CommandContext commandContext)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description Set<AbstractMetadataRecord>
getInaccessibleResources(DataPolicy.PermissionType action, Map<AbstractMetadataRecord,? extends LanguageObject> resources, DataPolicy.Context context)
Out of the resources specified, return the subset for which the specified not have authorization to access.protected void
validateEntitlements(Collection<? extends LanguageObject> symbols, DataPolicy.PermissionType actionCode, DataPolicy.Context auditContext)
Check that the user is entitled to access all data elements in the command.protected void
validateEntitlements(Delete obj)
Validate delete entitlementsprotected void
validateEntitlements(Insert obj)
Validate insert/merge entitlementsprotected void
validateEntitlements(Query obj)
Validate query entitlementsprotected void
validateEntitlements(StoredProcedure obj)
Validate query entitlementsprotected void
validateEntitlements(Update obj)
Validate update entitlementsvoid
visit(AlterProcedure obj)
void
visit(AlterTrigger obj)
void
visit(AlterView obj)
void
visit(Create obj)
void
visit(Delete obj)
void
visit(Drop obj)
void
visit(DynamicCommand obj)
void
visit(Insert obj)
void
visit(ObjectTable objectTable)
void
visit(Query obj)
void
visit(StoredProcedure obj)
void
visit(Update obj)
void
visit(Function obj)
-
Methods inherited from class org.teiid.query.validator.AbstractValidationVisitor
getException, getExceptionObject, getMetadata, getReport, handleException, handleException, handleValidationError, handleValidationError, handleValidationError, reset, setMetadata, validateElementsSupport
-
Methods inherited from class org.teiid.query.sql.LanguageVisitor
setAbort, shouldAbort, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit, visit
-
-
-
-
Constructor Detail
-
AuthorizationValidationVisitor
public AuthorizationValidationVisitor(PolicyDecider decider, CommandContext commandContext)
-
-
Method Detail
-
visit
public void visit(Create obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(DynamicCommand obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(AlterProcedure obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(AlterTrigger obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(AlterView obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(ObjectTable objectTable)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(Drop obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(Delete obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(Insert obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(Query obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(Update obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(StoredProcedure obj)
- Overrides:
visit
in classLanguageVisitor
-
visit
public void visit(Function obj)
- Overrides:
visit
in classLanguageVisitor
-
validateEntitlements
protected void validateEntitlements(Insert obj)
Validate insert/merge entitlements
-
validateEntitlements
protected void validateEntitlements(Update obj)
Validate update entitlements
-
validateEntitlements
protected void validateEntitlements(Delete obj)
Validate delete entitlements
-
validateEntitlements
protected void validateEntitlements(Query obj)
Validate query entitlements
-
validateEntitlements
protected void validateEntitlements(StoredProcedure obj)
Validate query entitlements
-
validateEntitlements
protected void validateEntitlements(Collection<? extends LanguageObject> symbols, DataPolicy.PermissionType actionCode, DataPolicy.Context auditContext)
Check that the user is entitled to access all data elements in the command.- Parameters:
symbols
- The collection ofSymbol
s affected by these actions.actionCode
- The actions to validate forauditContext
- TheDataPolicy.Context
to use when resource auditing is done.
-
getInaccessibleResources
public Set<AbstractMetadataRecord> getInaccessibleResources(DataPolicy.PermissionType action, Map<AbstractMetadataRecord,? extends LanguageObject> resources, DataPolicy.Context context)
Out of the resources specified, return the subset for which the specified not have authorization to access.
-
-