1.39.5. Example of a custom Access Manager

The sample CustomAccessManagerImpl below extends the default access manager and uses some DecisionMakingService in the overloaded hasPermission method to find out if a current user has permission to use current item, event type, user and some parameter of AccessManager. To make this Access manager work, it is necessary to configure it in jcr configuration as mentioned in Custom Extended Access Manager and SetAccessControlContextAction should be configured in the way mentioned in Access Context Action.

public class CustomAccessManagerImpl extends AccessManager {


  private String property;

  private DecisionMakingService theService;


  public CustomAccessManagerImpl (RepositoryEntry config, WorkspaceEntry wsConfig,

      DecisionMakingService someService) throws RepositoryException, RepositoryConfigurationException {

    super(config, wsConfig);

    this.property = wsConfig.getAccessManager().getParameterValue("someParam");

    this.theService = someService;

  }


  @Override

  public boolean hasPermission(AccessControlList acl, String[] permission, Identity user) {

    // call the default permission check

    if (super.hasPermission(acl, permission, user)) {

      

      Item curItem = context().getCurrentItem();

      int eventType = context().getEventType();

      ExoContainer container = context().getContainer();


      // call some service's method

      return theService.makeDecision(curItem, eventType, user, property);

    } else {

      return false;

    }

  }

}
Copyright ©2012. All rights reserved. eXo Platform SAS