Package hudson.plugins.collabnet.auth
Class CNRootACL
- java.lang.Object
-
- hudson.security.ACL
-
- hudson.plugins.collabnet.auth.CNRootACL
-
public class CNRootACL extends ACL
Root ACL for the CollabNet Authorization. It gives a set of users Jenkins admin privileges, another set read privileges, and if specified, will wrap another ACL and extend those permissions.
-
-
Field Summary
-
Fields inherited from class hudson.security.ACL
ANONYMOUS, ANONYMOUS_USERNAME, EVERYONE, SYSTEM, SYSTEM_USERNAME, SYSTEM2
-
-
Constructor Summary
Constructors Constructor Description CNRootACL(Collection<String> adminUsers, Collection<String> adminGroups, Collection<String> readUsers, Collection<String> readGroups)
CNRootACL(Collection<String> adminUsers, Collection<String> adminGroups, Collection<String> readUsers, Collection<String> readGroups, ACL innerACL)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description boolean
hasPermission(Authentication a, Permission p)
If the user is included in the admins or readUsers sets, check whether the permission is granted via those.-
Methods inherited from class hudson.security.ACL
as, as, as2, checkAnyPermission, checkCreatePermission, checkCreatePermission, checkPermission, hasAnyPermission, hasCreatePermission, hasCreatePermission, hasCreatePermission2, hasCreatePermission2, hasPermission, hasPermission2, impersonate, impersonate, impersonate, impersonate2, impersonate2, impersonate2, isAnonymous, isAnonymous2, lambda, lambda2
-
-
-
-
Constructor Detail
-
CNRootACL
public CNRootACL(Collection<String> adminUsers, Collection<String> adminGroups, Collection<String> readUsers, Collection<String> readGroups)
-
CNRootACL
public CNRootACL(Collection<String> adminUsers, Collection<String> adminGroups, Collection<String> readUsers, Collection<String> readGroups, ACL innerACL)
-
-
Method Detail
-
hasPermission
public boolean hasPermission(Authentication a, Permission p)
If the user is included in the admins or readUsers sets, check whether the permission is granted via those. If the permission is not settled, pass to any existing innerACL.- Overrides:
hasPermission
in classACL
- Parameters:
a
- current authentication.p
- permission to check- Returns:
- true if the user should have the permission.
-
-