|
|
|
|
@ -31,10 +31,14 @@ import org.springframework.util.Assert;
@@ -31,10 +31,14 @@ import org.springframework.util.Assert;
|
|
|
|
|
/** |
|
|
|
|
* Default implementation of {@link AclAuthorizationStrategy}. |
|
|
|
|
* <p> |
|
|
|
|
* Permission will be granted provided the current principal is either the owner (as defined by the ACL), has |
|
|
|
|
* {@link BasePermission#ADMINISTRATION} (as defined by the ACL and via a {@link Sid} retrieved for the current |
|
|
|
|
* principal via {@link #sidRetrievalStrategy}), or if the current principal holds the relevant system-wide |
|
|
|
|
* {@link GrantedAuthority} and injected into the constructor. |
|
|
|
|
* Permission will be granted if at least one of the following conditions is true for the current |
|
|
|
|
* principal. |
|
|
|
|
* <ul> |
|
|
|
|
* <li> is the owner (as defined by the ACL). </li> |
|
|
|
|
* <li> holds the relevant system-wide {@link GrantedAuthority} injected into the |
|
|
|
|
* constructor. </li> |
|
|
|
|
* <li> has {@link BasePermission#ADMINISTRATION} permission (as defined by the ACL). </li> |
|
|
|
|
* </ul> |
|
|
|
|
* |
|
|
|
|
* @author Ben Alex |
|
|
|
|
*/ |
|
|
|
|
|
Raghuram Devarakonda
13 years ago
committed by
Rob Winch