|
| static List< Item > | BuildPermissionList (List< Item > items, string actionId) |
| | Check authorization for a list of Items. The items the current user can access with defined action is returned.
|
| |
| static List< Item > | BuildPermissionList (List< Item > items, string actionId, ServerId serverId) |
| | Check authorization for a list of Items. The items the current user can access with defined action is returned.
|
| |
| static List< Item > | BuildPermissionList (List< Item > items, string actionId, string SID, List< string > groups) |
| | Check authorization for a list of Items. The items the specified user can access with defined action is returned.
|
| |
| static void | CheckPermission (Guid pluginDefinitionId, string actionId) |
| | This method will check if current user can perform the requested action on this Plugin. Will throw Exception if access is denied.
|
| |
| static void | CheckPermission (Guid pluginDefinitionId, string actionId, ServerId serverId) |
| | This method will check if current user can perform the requested action on this Plug-in, when working on items from a given server. Will throw Exception if access is denied.
|
| |
| static void | CheckPermission (Guid pluginDefinitionId, string actionId, string SID) |
| | This method will check if current user can perform the requested action on this Plug-in. Will throw Exception if access is denied.
|
| |
| static void | CheckPermission (Guid pluginDefinitionId, string actionId, string SID, List< string > groups) |
| | This method will check if current user can perform the requested action on this Plug-in. Will throw Exception if access is denied.
|
| |
| static void | CheckPermission (Item item, string actionId) |
| | This method will check if current user can perform the requested action on this Item. Will throw Exception if access is denied.
|
| |
| static void | CheckPermission (Item item, string actionId, ServerId serverId) |
| | This method will check if current user can perform the requested action on this Item. Will throw Exception if access is denied.
|
| |
| static void | CheckPermission (Item item, string actionId, string SID) |
| | This method will check if current user can perform the requested action on this Item. Will throw Exception if access is denied. The user to check is identified by the SID.
|
| |
| static void | CheckPermission (Item item, string actionId, string SID, List< string > groups) |
| | This method will check if current user can perform the requested action on this Item. Will throw Exception if access is denied. The user to check is identified by the SID.
|
| |
| static void | CheckPermission (PluginDefinition pluginDefinition, string actionId) |
| | This method will check if current user can perform the requested action on this Plug-in. Will throw Exception if access is denied.
|
| |
| static void | CheckPermission (PluginDefinition pluginDefinition, string actionId, ServerId serverId) |
| | This method will check if current user can perform the requested action on this Plug-in. Will throw Exception if access is denied.
|
| |
| static void | Flush () |
| | For internal use.
|
| |
| static Collection< String > | GetPermittedActionList (Item item, String SID) |
| | Get the permitted action list for a specific user working with specific Item.
|
| |
| static Collection< String > | GetPermittedActionList (Item item, String SID, ServerId serverId) |
| | Get the permitted action list for a specific user working with specific Item on a specific Server.
|
| |
| static UserIdentification | GetUserIdentificationViaSid (String sid, LoginSettings loginSettings) |
| | Get hold of information about an AD user, or a basic user.
|
| |
| static bool | HasOverallPermission (ServerId serverId, string securityNamespaceName, string securityAction) |
| | Check to see if current user has permission on an overall area.
|
| |
| static bool | IsClientAllowed (ServerId serverId, string clientType) |
| | Can be used to check if a given client type is allowed to connect to the VMS server.
|
| |
| static bool | IsMember (ServerId serverId, string sidIdentity, string roleId) |
| | This method will check if the user identified by the provided identity is part of a specific role.
|
| |
| static void | Logoff () |
| | Is called internally when the user logs off.
|
| |
| static void | Logout (LoginSettings loginSettings) |
| | Called when one user logs out.
|
| |
| static void | RegisterItem (Item item) |
| | When a new Item is created and is under security check, this method need to be called.
|
| |
| static void | Reload () |
| | For internal use.
|
| |
| static void | Save () |
| | For internal use.
|
| |
| static void | UnregisterItem (Item item) |
| | When an Item is being deleted, this method need to be called.
|
| |
This class assists in maintaining security access for Items and validating what Items a user can access. The plug-in must be sure to register and unregister the Items that is under access control, e.g. has a SecurityAccess defined. This could be done in the ItemManager.ValidateAndSaveUserControl method with a call to RegisterItem(Item) and in the ItemManager.DeleteItem(Item) with a call to UnregisterItem(Item).
The configuration of the actual access for each item is performed via standard Administration UI - no plugin development is required here.
Checking for application level security access must be done entirely by the plug-in, where relevant. SecurityAccess.CheckPermission is called for getting valid action for the Plug-in.
Checking for access to Items should be done in the ItemManager for maintenance actions, e.g. create/delete/view, but could be used other places if specific actions are defined.