Class ResourceAuthorizer
- java.lang.Object
-
- org.apache.storm.daemon.logviewer.utils.ResourceAuthorizer
-
public class ResourceAuthorizer extends Object
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description static classResourceAuthorizer.LogUserGroupWhitelist
-
Constructor Summary
Constructors Constructor Description ResourceAuthorizer(Map<String,Object> stormConf)Constuctor.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description ResourceAuthorizer.LogUserGroupWhitelistgetLogUserGroupWhitelist(String fileName)Get the whitelist of users and groups for given file.booleanisAuthorizedLogUser(String user, String fileName)Checks whether user is authorized to access file.booleanisUserAllowedToAccessFile(String user, String fileName)Checks whether user is allowed to access a Logviewer file via UI.
-
-
-
Method Detail
-
isUserAllowedToAccessFile
public boolean isUserAllowedToAccessFile(String user, String fileName)
Checks whether user is allowed to access a Logviewer file via UI. Always true when the Logviewer filter is not configured.- Parameters:
fileName- file name to access. The file name must not contain upward path traversal sequences (e.g. "../").user- username
-
isAuthorizedLogUser
public boolean isAuthorizedLogUser(String user, String fileName)
Checks whether user is authorized to access file. Checks regardless of UI filter.- Parameters:
user- usernamefileName- file name to access. The file name must not contain upward path traversal sequences (e.g. "../").
-
getLogUserGroupWhitelist
public ResourceAuthorizer.LogUserGroupWhitelist getLogUserGroupWhitelist(String fileName)
Get the whitelist of users and groups for given file.- Parameters:
fileName- file name to get the whitelist
-
-