public interface ModelInteractionService
Modifier and Type | Field and Description |
---|---|
static String |
CHECK_PASSWORD |
static String |
CLASS_NAME_WITH_DOT |
static String |
GET_ASSIGNABLE_ROLE_SPECIFICATION |
static String |
GET_AUTHENTICATIONS_POLICY |
static String |
GET_CONNECTOR_OPERATIONAL_STATUS |
static String |
GET_CREDENTIALS_POLICY |
static String |
GET_EDIT_OBJECT_DEFINITION |
static String |
GET_EDIT_SHADOW_DEFINITION |
static String |
GET_REGISTRATIONS_POLICY |
static String |
GET_SECURITY_POLICY |
static String |
MERGE_OBJECTS_PREVIEW_DELTA |
static String |
MERGE_OBJECTS_PREVIEW_OBJECT |
static String |
PREVIEW_CHANGES |
Modifier and Type | Method and Description |
---|---|
boolean |
checkPassword(String userOid,
ProtectedStringType password,
com.evolveum.midpoint.task.api.Task task,
OperationResult parentResult)
Checks if the supplied password matches with current user password.
|
Collection<? extends DisplayableValue<String>> |
getActionUrls()
Returns a collection of all authorization actions known to the system.
|
AdminGuiConfigurationType |
getAdminGuiConfiguration(com.evolveum.midpoint.task.api.Task task,
OperationResult parentResult)
Returns currently applicable admin GUI configuration.
|
<F extends FocusType> |
getAssignableRoleSpecification(PrismObject<F> focus,
OperationResult parentResult)
Returns an object that defines which roles can be assigned by the currently logged-in user.
|
AuthenticationsPolicyType |
getAuthenticationPolicy(PrismObject<UserType> user,
com.evolveum.midpoint.task.api.Task task,
OperationResult parentResult)
Returns an authentications policies as defined in the system configuration security policy.
|
AccessCertificationConfigurationType |
getCertificationConfiguration(OperationResult parentResult) |
ConnectorOperationalStatus |
getConnectorOperationalStatus(String resourceOid,
OperationResult parentResult) |
CredentialsPolicyType |
getCredentialsPolicy(PrismObject<UserType> user,
com.evolveum.midpoint.task.api.Task task,
OperationResult parentResult)
Returns a credential policy that applies to the specified user.
|
RefinedObjectClassDefinition |
getEditObjectClassDefinition(PrismObject<ShadowType> shadow,
PrismObject<ResourceType> resource,
AuthorizationPhaseType phase) |
<O extends ObjectType> |
getEditObjectDefinition(PrismObject<O> object,
AuthorizationPhaseType phase,
OperationResult result)
Returns a schema that reflects editability of the object in terms of midPoint schema limitations and security.
|
PrismObjectDefinition<ShadowType> |
getEditShadowDefinition(ResourceShadowDiscriminator discr,
AuthorizationPhaseType phase,
OperationResult result) |
RegistrationsPolicyType |
getRegistrationPolicy(PrismObject<UserType> user,
com.evolveum.midpoint.task.api.Task task,
OperationResult parentResult)
Returns a policy for registration, e.g.
|
SecurityPolicyType |
getSecurityPolicy(PrismObject<UserType> user,
com.evolveum.midpoint.task.api.Task task,
OperationResult parentResult) |
<O extends ObjectType> |
mergeObjectsPreviewDeltas(Class<O> type,
String leftOid,
String rightOid,
String mergeConfigurationName,
com.evolveum.midpoint.task.api.Task task,
OperationResult result) |
<O extends ObjectType> |
mergeObjectsPreviewObject(Class<O> type,
String leftOid,
String rightOid,
String mergeConfigurationName,
com.evolveum.midpoint.task.api.Task task,
OperationResult result) |
<F extends ObjectType> |
previewChanges(Collection<ObjectDelta<? extends ObjectType>> deltas,
ModelExecuteOptions options,
com.evolveum.midpoint.task.api.Task task,
Collection<ProgressListener> listeners,
OperationResult result) |
<F extends ObjectType> |
previewChanges(Collection<ObjectDelta<? extends ObjectType>> deltas,
ModelExecuteOptions options,
com.evolveum.midpoint.task.api.Task task,
OperationResult result)
Computes the most likely changes triggered by the provided delta.
|
<F extends ObjectType> |
unwrapModelContext(LensContextType wrappedContext,
OperationResult result) |
Scene |
visualizeDelta(ObjectDelta<? extends ObjectType> delta,
com.evolveum.midpoint.task.api.Task task,
OperationResult result) |
List<? extends Scene> |
visualizeDeltas(List<ObjectDelta<? extends ObjectType>> deltas,
com.evolveum.midpoint.task.api.Task task,
OperationResult result) |
static final String CLASS_NAME_WITH_DOT
static final String PREVIEW_CHANGES
static final String GET_EDIT_OBJECT_DEFINITION
static final String GET_EDIT_SHADOW_DEFINITION
static final String GET_ASSIGNABLE_ROLE_SPECIFICATION
static final String GET_CREDENTIALS_POLICY
static final String GET_AUTHENTICATIONS_POLICY
static final String GET_REGISTRATIONS_POLICY
static final String GET_SECURITY_POLICY
static final String CHECK_PASSWORD
static final String GET_CONNECTOR_OPERATIONAL_STATUS
static final String MERGE_OBJECTS_PREVIEW_DELTA
static final String MERGE_OBJECTS_PREVIEW_OBJECT
<F extends ObjectType> ModelContext<F> previewChanges(Collection<ObjectDelta<? extends ObjectType>> deltas, ModelExecuteOptions options, com.evolveum.midpoint.task.api.Task task, OperationResult result) throws SchemaException, PolicyViolationException, ExpressionEvaluationException, ObjectNotFoundException, ObjectAlreadyExistsException, CommunicationException, ConfigurationException, SecurityViolationException
<F extends ObjectType> ModelContext<F> previewChanges(Collection<ObjectDelta<? extends ObjectType>> deltas, ModelExecuteOptions options, com.evolveum.midpoint.task.api.Task task, Collection<ProgressListener> listeners, OperationResult result) throws SchemaException, PolicyViolationException, ExpressionEvaluationException, ObjectNotFoundException, ObjectAlreadyExistsException, CommunicationException, ConfigurationException, SecurityViolationException
<F extends ObjectType> ModelContext<F> unwrapModelContext(LensContextType wrappedContext, OperationResult result) throws SchemaException, ConfigurationException, ObjectNotFoundException, CommunicationException
<O extends ObjectType> PrismObjectDefinition<O> getEditObjectDefinition(PrismObject<O> object, AuthorizationPhaseType phase, OperationResult result) throws SchemaException, ConfigurationException, ObjectNotFoundException
Returns a schema that reflects editability of the object in terms of midPoint schema limitations and security. This method merges together all the applicable limitations that midPoint knows of (schema, security, other constratints). It may be required to pre-populate new object before calling this method, e.g. to put the object in a correct org in case that delegated administration is used.
If null is returned then the access to the entire object is denied. It cannot be created or edited at all.
The returned definition contains all parts of static schema and run-time extensions. It does not contain parts of resource "refined" schemas. Therefore for shadows it is only applicable to static parts of the shadow (not attributes).
This is not security-sensitive function. It provides data about security constraints but it does not enforce it and it does not modify anything or reveal any data. The purpose of this method is to enable convenient display of GUI form fields, e.g. to hide non-accessible fields from the form. The actual enforcement of the security is executed regardless of this method.
object
- object to editSchemaException
ConfigurationException
ObjectNotFoundException
PrismObjectDefinition<ShadowType> getEditShadowDefinition(ResourceShadowDiscriminator discr, AuthorizationPhaseType phase, OperationResult result) throws SchemaException, ConfigurationException, ObjectNotFoundException
RefinedObjectClassDefinition getEditObjectClassDefinition(PrismObject<ShadowType> shadow, PrismObject<ResourceType> resource, AuthorizationPhaseType phase) throws SchemaException
SchemaException
Collection<? extends DisplayableValue<String>> getActionUrls()
Returns a collection of all authorization actions known to the system. The format of returned data is designed for displaying purposes.
Note: this method returns only the list of authorization actions that are known to the IDM Model component and the components below. It does not return a GUI-specific authorization actions.
<F extends FocusType> RoleSelectionSpecification getAssignableRoleSpecification(PrismObject<F> focus, OperationResult parentResult) throws ObjectNotFoundException, SchemaException, ConfigurationException
focus
- Object of the operation. The object (usually user) to whom the roles should be assigned.ObjectNotFoundException
SchemaException
ConfigurationException
SecurityPolicyType getSecurityPolicy(PrismObject<UserType> user, com.evolveum.midpoint.task.api.Task task, OperationResult parentResult) throws ObjectNotFoundException, SchemaException
AuthenticationsPolicyType getAuthenticationPolicy(PrismObject<UserType> user, com.evolveum.midpoint.task.api.Task task, OperationResult parentResult) throws ObjectNotFoundException, SchemaException
task
- parentResult
- @return applicable credentials policy or nullObjectNotFoundException
- No system configuration or other major system inconsistencySchemaException
- Wrong schema or content of security policyRegistrationsPolicyType getRegistrationPolicy(PrismObject<UserType> user, com.evolveum.midpoint.task.api.Task task, OperationResult parentResult) throws ObjectNotFoundException, SchemaException
user
- user for who the policy should applytask
- parentResult
- @return applicable credentials policy or nullObjectNotFoundException
- No system configuration or other major system inconsistencySchemaException
- Wrong schema or content of security policyCredentialsPolicyType getCredentialsPolicy(PrismObject<UserType> user, com.evolveum.midpoint.task.api.Task task, OperationResult parentResult) throws ObjectNotFoundException, SchemaException
user
- user for who the policy should applytask
- parentResult
- @return applicable credentials policy or nullObjectNotFoundException
- No system configuration or other major system inconsistencySchemaException
- Wrong schema or content of security policyAdminGuiConfigurationType getAdminGuiConfiguration(com.evolveum.midpoint.task.api.Task task, OperationResult parentResult) throws ObjectNotFoundException, SchemaException
AccessCertificationConfigurationType getCertificationConfiguration(OperationResult parentResult) throws ObjectNotFoundException, SchemaException
boolean checkPassword(String userOid, ProtectedStringType password, com.evolveum.midpoint.task.api.Task task, OperationResult parentResult) throws ObjectNotFoundException, SchemaException
ObjectNotFoundException
SchemaException
List<? extends Scene> visualizeDeltas(List<ObjectDelta<? extends ObjectType>> deltas, com.evolveum.midpoint.task.api.Task task, OperationResult result) throws SchemaException
SchemaException
@NotNull Scene visualizeDelta(ObjectDelta<? extends ObjectType> delta, com.evolveum.midpoint.task.api.Task task, OperationResult result) throws SchemaException
SchemaException
ConnectorOperationalStatus getConnectorOperationalStatus(String resourceOid, OperationResult parentResult) throws SchemaException, ObjectNotFoundException, CommunicationException, ConfigurationException
<O extends ObjectType> MergeDeltas<O> mergeObjectsPreviewDeltas(Class<O> type, String leftOid, String rightOid, String mergeConfigurationName, com.evolveum.midpoint.task.api.Task task, OperationResult result) throws ObjectNotFoundException, SchemaException, ConfigurationException, ExpressionEvaluationException, CommunicationException, SecurityViolationException
<O extends ObjectType> PrismObject<O> mergeObjectsPreviewObject(Class<O> type, String leftOid, String rightOid, String mergeConfigurationName, com.evolveum.midpoint.task.api.Task task, OperationResult result) throws ObjectNotFoundException, SchemaException, ConfigurationException, ExpressionEvaluationException, CommunicationException, SecurityViolationException
Copyright © 2016 Evolveum. All rights reserved.