ISecurityCheck (WicketStuff Core Parent 7.0.0-SNAPSHOT API)

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

All Superinterfaces:

Serializable

All Known Implementing Classes:

AbstractSecurityCheck, AlwaysGrantedSecurityCheck, ClassSecurityCheck, ComponentSecurityCheck, ContainerSecurityCheck, DataSecurityCheck, InverseSecurityCheck, LinkSecurityCheck
```
public interface ISecurityCheck
extends Serializable
```
A securitycheck knows how to authorize or authenticate a user. and will decide if the class, component, model or any combination of those 3 or something entirely different will be checked. Usually a securitycheck is triggered by the WaspAuthorizationStrategy.isActionAuthorized(org.apache.wicket.Component, org.apache.wicket.authorization.Action) , ISecureComponent.isActionAuthorized(WaspAction) or by ISecureComponent.isAuthenticated(). Usually they just redirect the call to the WaspAuthorizationStrategy, but it is not unimaginable that securitychecks are targeted at specific wasp implementations and take care of there authentication or authorization themself.

Author:

marrink

Method Summary

Methods
Modifier and Type	Method and Description
`boolean`	`isActionAuthorized(WaspAction action)` Checks if there are sufficient rights to perform the desired action(s).
`boolean`	`isAuthenticated()` Checks if there is an authenticated user available.

- Method Detail
  - isActionAuthorized
```
boolean isActionAuthorized(WaspAction action)
```
    Checks if there are sufficient rights to perform the desired action(s). Note that we don't ask what needs to have these rights, the implementation will decide if it checks the class, component, model or whatever they like.
    
    Parameters:
    action - the action(s) like render or enable.
    
    Returns:
    true if there are sufficient rights, false otherwise.
    See Also:
    WaspAuthorizationStrategy.isComponentAuthorized(org.apache.wicket.Component, WaspAction), WaspAuthorizationStrategy.isClassAuthorized(Class, WaspAction), ISecureModel.isAuthorized(org.apache.wicket.Component, WaspAction)
  - isAuthenticated
```
boolean isAuthenticated()
```
    Checks if there is an authenticated user available. If not a page might decide to redirect to a login page instead. other components won't use this ordinarily.
    
    Returns:
    true if an authenticated user is available, false otherwise.
    See Also:
    WaspAuthorizationStrategy.isComponentAuthenticated(org.apache.wicket.Component), WaspAuthorizationStrategy.isClassAuthenticated(Class), ISecureModel.isAuthenticated(org.apache.wicket.Component)

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2015. All rights reserved.