*
* @param role the role name
* @param userLevel the user level in the application context
- * @return the status of the request
- */
+ * @return the status of the request
+ */
public Status createRole(String role, AppRoleLevel userLevel);
/**
*/
public Privilege getResourcePrivilege(String userName, Object resource);
+ /**
+ * Add a resource to a group
+ *
+ * @param groupName
+ * the resource group
+ * @param resource
+ * the resource object
+ * @return the status of the request
+ */
+ public Status addResourceToGroup(String groupName, Object resource);
+
+ /**
+ * Remove a resource from a group
+ *
+ * @param groupName
+ * the resource group
+ * @param resource
+ * the resource object
+ * @return the status of the request
+ */
+ public Status removeResourceFromGroup(String groupName, Object resource);
+
+ /**
+ * Return whether the specified user has access to this application. In
+ * other words if the user is associated any roles belonging to this
+ * application.
+ *
+ * @param userName
+ * the user name
+ * @return true if the user has access to this application's resources,
+ * false otherwise
+ */
+ boolean isApplicationUser(String userName);
}
Code Review / controller.git / blobdiff