org.apache.sling.jcr.jackrabbit.accessmanager.post

Class ModifyAceServlet

java.lang.Object

javax.servlet.GenericServlet

org.apache.sling.api.servlets.SlingSafeMethodsServlet

org.apache.sling.api.servlets.SlingAllMethodsServlet

org.apache.sling.jcr.jackrabbit.accessmanager.post.AbstractAccessPostServlet

org.apache.sling.jcr.jackrabbit.accessmanager.post.ModifyAceServlet

All Implemented Interfaces:

java.io.Serializable, javax.servlet.Servlet, javax.servlet.ServletConfig, ModifyAce

public class ModifyAceServlet
extends AbstractAccessPostServlet
implements ModifyAce

Sling Post Servlet implementation for modifying the ACEs for a principal on a JCR resource.

Rest Service Description

Modify a principal's ACEs for the node identified as a resource by the request URL >resource<.modifyAce.html

Methods

• POST

Post Parameters

principalId

The principal of the ACEs to modify in the ACL specified by the path.

privilege@*

One or more privileges, either granted or denied or none, which will be applied to (or removed from) the node ACL. Any permissions that are present in an existing ACE for the principal but not in the request are left untouched.

Response

200

Success.

404

The resource was not found.

500

Failure. HTML explains the failure.

Notes

The principalId is assumed to refer directly to an Authorizable, that comes direct from the UserManager. This can be a group or a user, but if its a group, denied permissions will not be added to the group. The group will only contain granted privileges.

See Also:

Serialized Form

Constructor Summary

Constructors

Constructor and Description
ModifyAceServlet()

Method Summary

Modifier and Type	Method and Description
protected void	bindPostResponseCreator(PostResponseCreator creator, java.util.Map<java.lang.String,java.lang.Object> properties) Overridden since the @Reference annotation is not inherited from the super method
protected void	handleOperation(SlingHttpServletRequest request, PostResponse response, java.util.List<Modification> changes) Extending Servlet should implement this operation to do the work
void	modifyAce(javax.jcr.Session jcrSession, java.lang.String resourcePath, java.lang.String principalId, java.util.Map<java.lang.String,java.lang.String> privileges, java.lang.String order) Add or modify the access control entry for the specified user or group.
protected void	unbindPostResponseCreator(PostResponseCreator creator, java.util.Map<java.lang.String,java.lang.Object> properties) Unbind a post response creator

Methods inherited from class org.apache.sling.jcr.jackrabbit.accessmanager.post.AbstractAccessPostServlet

createHtmlResponse, doPost, externalizePath, getAccessControlList, getItemPath, getRedirectUrl, getRedirectUrl, handleOperation, isSetStatus

Methods inherited from class org.apache.sling.api.servlets.SlingAllMethodsServlet

doDelete, doPut, getAllowedRequestMethods, isMethodValid, mayService

Methods inherited from class org.apache.sling.api.servlets.SlingSafeMethodsServlet

doGeneric, doGet, doHead, doOptions, doTrace, getServletInfo, handleMethodNotImplemented, service, service

Methods inherited from class javax.servlet.GenericServlet

destroy, getInitParameter, getInitParameterNames, getServletConfig, getServletContext, getServletName, init, init, log, log

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ModifyAceServlet

public ModifyAceServlet()

Method Detail

bindPostResponseCreator

protected void bindPostResponseCreator(PostResponseCreator creator,
                                       java.util.Map<java.lang.String,java.lang.Object> properties)

Overridden since the @Reference annotation is not inherited from the super method

Overrides:

bindPostResponseCreator in class AbstractAccessPostServlet

See Also:

org.apache.sling.jackrabbit.usermanager.impl.post.AbstractPostServlet#bindPostResponseCreator(org.apache.sling.servlets.post.PostResponseCreator, java.util.Map)

unbindPostResponseCreator

protected void unbindPostResponseCreator(PostResponseCreator creator,
                                         java.util.Map<java.lang.String,java.lang.Object> properties)

Description copied from class: AbstractAccessPostServlet

Unbind a post response creator

Overrides:

unbindPostResponseCreator in class AbstractAccessPostServlet

handleOperation

protected void handleOperation(SlingHttpServletRequest request,
                               PostResponse response,
                               java.util.List<Modification> changes)
                        throws javax.jcr.RepositoryException

Description copied from class: AbstractAccessPostServlet

Extending Servlet should implement this operation to do the work

Specified by:

handleOperation in class AbstractAccessPostServlet

Parameters:

request - the sling http request to process

response - the response

Throws:

javax.jcr.RepositoryException

modifyAce

public void modifyAce(javax.jcr.Session jcrSession,
                      java.lang.String resourcePath,
                      java.lang.String principalId,
                      java.util.Map<java.lang.String,java.lang.String> privileges,
                      java.lang.String order)
               throws javax.jcr.RepositoryException

Description copied from interface: ModifyAce

Add or modify the access control entry for the specified user or group.

Specified by:

modifyAce in interface ModifyAce

Parameters:

jcrSession - the JCR session of the user updating the user

resourcePath - The absolute path of the resource to apply the ACE to (required)

principalId - The name of the user/group to provision (required)

privileges - Map of privileges to apply. (optional)

Throws:

javax.jcr.RepositoryException