Package com.orientechnologies.orient.core.metadata.security

Interface OSecurity

All Known Implementing Classes:
OSessionSecurity
public interface OSecurity
Manages users and roles.
Author:
Luca Garulli (l.garulli--(at)--orientdb.com)

  • Field Details

  • Method Details

    • isAllowed

      @Deprecated boolean isAllowed(Set<OIdentifiable> iAllowAll, Set<OIdentifiable> iAllowOperation)
      Deprecated.

    • allowUser

      @Deprecated OIdentifiable allowUser(ODocument iDocument, ORestrictedOperation iOperationType, String iUserName)
      Deprecated.
      Record level security: allows a user to access to a record.
      Parameters:
      iDocument - ODocument instance to give access
      iOperationType - Operation type to use based on the permission to allow:
      • ALLOW_ALL, to provide full access (RUD)
      • ALLOW_READ, to provide read access
      • ALLOW_UPDATE, to provide update access
      • ALLOW_DELETE, to provide delete access
      iUserName - User name to provide the access
      Returns:
      The OIdentity instance allowed

    • allowRole

      @Deprecated OIdentifiable allowRole(ODocument iDocument, ORestrictedOperation iOperationType, String iRoleName)
      Deprecated.
      Record level security: allows a role to access to a record.
      Parameters:
      iDocument - ODocument instance to give access
      iOperationType - Operation type to use based on the permission to allow:
      • ALLOW_ALL, to provide full access (RUD)
      • ALLOW_READ, to provide read access
      • ALLOW_UPDATE, to provide update access
      • ALLOW_DELETE, to provide delete access
      iRoleName - Role name to provide the access
      Returns:
      The OIdentity instance allowed

    • denyUser

      @Deprecated OIdentifiable denyUser(ODocument iDocument, ORestrictedOperation iOperationType, String iUserName)
      Deprecated.
      Record level security: deny a user to access to a record.
      Parameters:
      iDocument - ODocument instance to give access
      iOperationType - Operation type to use based on the permission to deny:
      • ALLOW_ALL, to provide full access (RUD)
      • ALLOW_READ, to provide read access
      • ALLOW_UPDATE, to provide update access
      • ALLOW_DELETE, to provide delete access
      iUserName - User name to deny the access
      Returns:
      The OIdentity instance denied

    • denyRole

      @Deprecated OIdentifiable denyRole(ODocument iDocument, ORestrictedOperation iOperationType, String iRoleName)
      Deprecated.
      Record level security: deny a role to access to a record.
      Parameters:
      iDocument - ODocument instance to give access
      iOperationType - Operation type to use based on the permission to deny:
      • ALLOW_ALL, to provide full access (RUD)
      • ALLOW_READ, to provide read access
      • ALLOW_UPDATE, to provide update access
      • ALLOW_DELETE, to provide delete access
      iRoleName - Role name to deny the access
      Returns:
      The OIdentity instance denied

    • authenticate

      @Deprecated OUser authenticate(String iUsername, String iUserPassword)
      Deprecated.

    • authenticate

      @Deprecated OUser authenticate(OToken authToken)
      Deprecated.

    • getUser

      OUser getUser(String iUserName)

    • getUser

      OUser getUser(ORID iUserId)

    • createUser

      OUser createUser(String iUserName, String iUserPassword, String... iRoles)

    • createUser

      OUser createUser(String iUserName, String iUserPassword, ORole... iRoles)

    • dropUser

      boolean dropUser(String iUserName)

    • getRole

      ORole getRole(String iRoleName)

    • getRole

      ORole getRole(OIdentifiable role)

    • createRole

      ORole createRole(String iRoleName, OSecurityRole.ALLOW_MODES iAllowMode)

    • createRole

      ORole createRole(String iRoleName, ORole iParent, OSecurityRole.ALLOW_MODES iAllowMode)

    • dropRole

      boolean dropRole(String iRoleName)

    • getAllUsers

      List<ODocument> getAllUsers()

    • getAllRoles

      List<ODocument> getAllRoles()