org.apache.druid.server.security.Access

public class Access extends Object

Represents the outcome of verifying permissions to perform an Action on a Resource, along with any applicable policy restrictions. The restriction should only exist for Action.READ and ResourceType.DATASOURCE, i.e, reading a table.

Field Summary

Fields

Modifier and Type

Field

Description

static final String

DEFAULT_AUTHORIZED_MESSAGE

static final String

DEFAULT_ERROR_MESSAGE

static final Access

DENIED

static final Access

OK
Constructor Summary

Constructors

Constructor

Description

Access(boolean allowed)

Deprecated.
use allow() or deny(String) instead

Access(boolean allowed, String message)

Deprecated.
use allow() or deny(String) instead
Method Summary

Modifier and Type

Method

Description

static Access

allow()

Constructs Access instance with access allowed, with no policy restriction.

static Access

allowWithRestriction(Policy policy)

Contructs Access instance with access allowed, but with policy restriction.

static Access

deny(String message)

Contructs Access instance with access denied.

boolean

equals(Object o)

String

getMessage()

Optional<Policy>

getPolicy()

Returns an optional Policy restriction if permission is granted.

int

hashCode()

boolean

isAllowed()

Returns true if access allowed, ignoring any policy restrictions.

String

toString()

Methods inherited from class java.lang.Object
clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Field Details
- DEFAULT_ERROR_MESSAGE
  
  public static final String DEFAULT_ERROR_MESSAGE
  See Also:
  
  Constant Field Values
- DEFAULT_AUTHORIZED_MESSAGE
  
  public static final String DEFAULT_AUTHORIZED_MESSAGE
  See Also:
  
  Constant Field Values
- OK
  
  public static final Access OK
- DENIED
  
  public static final Access DENIED
Constructor Details
- Access
  
  @Deprecated public Access(boolean allowed)
  
  Deprecated.
  use allow() or deny(String) instead
- Access
  
  @Deprecated public Access(boolean allowed, String message)
  
  Deprecated.
  use allow() or deny(String) instead
Method Details
- allow
  
  public static Access allow()
  
  Constructs Access instance with access allowed, with no policy restriction.
- deny
  
  public static Access deny(@Nullable String message)
  
  Contructs Access instance with access denied.
- allowWithRestriction
  
  public static Access allowWithRestriction(Policy policy)
  
  Contructs Access instance with access allowed, but with policy restriction.
- isAllowed
  
  public boolean isAllowed()
  
  Returns true if access allowed, ignoring any policy restrictions.
- getPolicy
  
  public Optional<Policy> getPolicy()
  
  Returns an optional Policy restriction if permission is granted. Only applies to read table access.
  An empty value indicates either no policy restrictions exist, or access is being requested for an action other than reading a table.
- getMessage
  
  public String getMessage()
- toString
  
  public String toString()
  
  Overrides:
  
  toString in class Object
- equals
  
  public boolean equals(Object o)
  
  Overrides:
  
  equals in class Object
- hashCode
  
  public int hashCode()
  
  Overrides:
  
  hashCode in class Object

Class Access

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Details

DEFAULT_ERROR_MESSAGE

DEFAULT_AUTHORIZED_MESSAGE

OK

DENIED

Constructor Details

Access

Access

Method Details

allow

deny

allowWithRestriction

isAllowed

getPolicy

getMessage

toString

equals

hashCode