Class HarmoniAuthorizationManager

Description

AuthorizationManager allows an application to create Authorizations, get Authorizations given selection criterias, ask questions of Authorization such as what agentId can do a Function in a Qualifier context, etc.

The primary objects in Authorization are Authorization, Function, agentId, and Qualifier. There are also Function and Qualifier types that are understood by the implementation.

Ids in Authorization are externally defined and their uniqueness is enforced by the implementation.

There are two methods to create Authorizations. One method uses agentId, Function, and Qualifier. The other adds effective date and expiration date. For the method without the dates, the effective date is today and there is no expiration date.

All implementations of OsidManager (manager) provide methods for accessing and manipulating the various objects defined in the OSID package. A manager defines an implementation of an OSID. All other OSID objects come either directly or indirectly from the manager. New instances of the OSID objects are created either directly or indirectly by the manager. Because the OSID objects are defined using interfaces, create methods must be used instead of the new operator to create instances of the OSID objects. Create methods are used both to instantiate and persist OSID objects. Using the OsidManager class to define an OSID's implementation allows the application to change OSID implementations by changing the OsidManager package name used to load an implementation. Applications developed using managers permit OSID implementation substitution without changing the application source code. As with all managers, use the OsidLoader to load an implementation of this interface.

OSID Version: 2.0

  • version: $Id: HarmoniAuthorizationManager.class.php,v 1.39 2007/09/04 20:25:38 adamfranco Exp $
  • license: GNU General Public License (GPL)
  • copyright: Copyright © 2005, Middlebury College

Located in /harmoni/core/oki2/authorization/HarmoniAuthorizationManager.class.php (line 65)

OsidManager
   |
   --AuthorizationManager
      |
      --HarmoniAuthorizationManager
Variable Summary
object _cache $_cache
Method Summary
HarmoniAuthorizationManager HarmoniAuthorizationManager ()
boolean agentExists (mixed $agentId, object Id $agentId )
void assignConfiguration (object Properties $configuration)
void assignOsidContext (mixed $context, object OsidContext $context )
object Authorization createAuthorization (object Id $agentId, object Id $functionId, mixed $qualifierId, object Id $qualifierId )
object Authorization createDatedAuthorization (object Id $agentId, object Id $functionId, object Id $qualifierId, int $effectiveDate, mixed $expirationDate, int $expirationDate )
object Function createFunction (object Id $functionId, string $displayName, string $description, object Type $functionType, mixed $qualifierHierarchyId, object Id $qualifierHierarchyId )
object Qualifier createQualifier (object Id $qualifierId, string $displayName, string $description, object Type $qualifierType, mixed $parentId, object Id $parentId )
object Qualifier createRootQualifier (object Id $qualifierId, string $displayName, string $description, object Type $qualifierType, mixed $qualifierHierarchyId, object Id $qualifierHierarchyId )
void deleteAuthorization (mixed $authorization, object Authorization $authorization )
void deleteFunction (mixed $functionId, object Id $functionId )
void deleteQualifier (mixed $qualifierId, object Id $qualifierId )
object AuthorizationIterator getAllAZs (object Id $agentId, object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
object AuthorizationIterator getAllAZsByFuncType (object Id $agentId, object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
ref getAllExplicitAZsForAgent (ref $agentId, boolean $isActiveNowOnly)
object AuthorizationIterator getAllUserAZs (object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
object AuthorizationIterator getAllUserAZsByFuncType (object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
object AuthorizationIterator getExplicitAZs (object Id $agentId, object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
object AuthorizationIterator getExplicitAZsByFuncType (object Id $agentId, object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
object AuthorizationIterator getExplicitUserAZs (object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
object AuthorizationIterator getExplicitUserAZsByFuncType (object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
object AuthorizationIterator getExplicitUserAZsForImplicitAZ (mixed $implicitAuthorization, object Authorization $implicitAuthorization )
object Function getFunction (mixed $functionId, object Id $functionId )
object FunctionIterator getFunctions (mixed $functionType, object Type $functionType )
object TypeIterator getFunctionTypes ()
object OsidContext getOsidContext ()
object Qualifier getQualifier (mixed $qualifierId, object Id $qualifierId )
object QualifierIterator getQualifierChildren (mixed $qualifierId, object Id $qualifierId )
object QualifierIterator getQualifierDescendants (mixed $qualifierId, object Id $qualifierId )
object IdIterator getQualifierHierarchies ()
object TypeIterator getQualifierTypes ()
object QualifierIterator getRootQualifiers (mixed $qualifierHierarchyId, object Id $qualifierHierarchyId )
object IdIterator getWhoCanDo (object Id $functionId, mixed $qualifierId, object Id $qualifierId )
boolean isAuthorized (object Id $agentId, object Id $functionId, mixed $qualifierId, object Id $qualifierId )
boolean isAuthorizedBelow (object Id $agentId, object Id $functionId, object Id $qualifierId)
boolean isUserAuthorized (object Id $functionId, mixed $qualifierId, object Id $qualifierId )
boolean isUserAuthorizedBelow (object Id $functionId, object Id $qualifierId, object Id $agentId)
boolean supportsDesign ()
boolean supportsMaintenance ()
array _getContainingGroupIdStrings (object Id $agentOrGroupId)
array _getUserIds ()
Variables
object _cache $_cache (line 74)

The AuthorizationCache object.

  • access: private
mixed $_groupAncestorsCache (line 76)
Methods
Constructor HarmoniAuthorizationManager (line 83)

Constructor manager.

  • access: public
HarmoniAuthorizationManager HarmoniAuthorizationManager ()
agentExists (line 708)

Return true if the agentId exists in the Authorization Service; false otherwise. This is not asking if there are any Authorizations that reference this agentId. This is not asking if the agentId is known to the Agent OSID.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
boolean agentExists (mixed $agentId, object Id $agentId )
  • object Id $agentId

Redefinition of:
AuthorizationManager::agentExists()
Return true if the agentId exists in the Authorization Service; false otherwise. This is not asking if there are any Authorizations that reference this agentId. This is not asking if the agentId is known to the Agent OSID.
assignConfiguration (line 107)

Assign the configuration of this Manager. Valid configuration options are as

follows: database_index integer database_name string

  • access: public
  • throws: object OsidException An exception with one of the following messages defined in org.osid.OsidException: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT
void assignConfiguration (object Properties $configuration)
  • object Properties $configuration: (original type: java.util.Properties)

Redefinition of:
OsidManager::assignConfiguration()
Assign the configuration of this OsidManager.
assignOsidContext (line 145)

Assign the context of this OsidManager.

  • access: public
  • throws: object OsidException An exception with one of the following messages defined in org.osid.OsidException: NULL_ARGUMENT
void assignOsidContext (mixed $context, object OsidContext $context )
  • object OsidContext $context

Redefinition of:
OsidManager::assignOsidContext()
Assign the context of this OsidManager.
createAuthorization (line 219)

Creates a new Authorization for a Agent performing a Function with a Qualifier. Uses current date/time as the effectiveDate and doesn't set an expiration date.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object Authorization createAuthorization (object Id $agentId, object Id $functionId, mixed $qualifierId, object Id $qualifierId )
  • object Id $agentId
  • object Id $functionId
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::createAuthorization()
Creates a new Authorization for a Agent performing a Function with a Qualifier. Uses current date/time as the effectiveDate and doesn't set an expiration date.
createDatedAuthorization (line 181)

Creates a new Authorization for an Agent performing a Function with a Qualifier.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, EFFECTIVE_PRECEDE_EXPIRATION
object Authorization createDatedAuthorization (object Id $agentId, object Id $functionId, object Id $qualifierId, int $effectiveDate, mixed $expirationDate, int $expirationDate )
  • object Id $agentId
  • object Id $functionId
  • object Id $qualifierId
  • int $effectiveDate
  • int $expirationDate

Redefinition of:
AuthorizationManager::createDatedAuthorization()
Creates a new Authorization for an Agent performing a Function with a Qualifier.
createFunction (line 258)

Ids in Authorization are externally defined and their uniqueness is enforced by the implementation.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object Function createFunction (object Id $functionId, string $displayName, string $description, object Type $functionType, mixed $qualifierHierarchyId, object Id $qualifierHierarchyId )
  • object Id $functionId
  • string $displayName
  • string $description
  • object Type $functionType
  • object Id $qualifierHierarchyId

Redefinition of:
AuthorizationManager::createFunction()
Ids in Authorization are externally defined and their uniqueness is enforced by the implementation.
createQualifier (line 339)

Ids in Authorization are externally defined and their uniqueness is

enforced by the implementation. Creates a new Qualifier in the Authorization Service. This is different than making a new instance of a Qualifier object locally as the Qualifier will be inserted into the Authorization Service.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, UNKNOWN_TYPE
object Qualifier createQualifier (object Id $qualifierId, string $displayName, string $description, object Type $qualifierType, mixed $parentId, object Id $parentId )
  • object Id $qualifierId
  • string $displayName
  • string $description
  • object Type $qualifierType
  • object Id $parentId

Redefinition of:
AuthorizationManager::createQualifier()
Ids in Authorization are externally defined and their uniqueness is
createRootQualifier (line 298)

Creates a new Qualifier in the Authorization Service that has no parent.

This is different from making a new instance of a Qualifier object locally as the Qualifier will be inserted into the Authorization Service.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, UNKNOWN_TYPE
object Qualifier createRootQualifier (object Id $qualifierId, string $displayName, string $description, object Type $qualifierType, mixed $qualifierHierarchyId, object Id $qualifierHierarchyId )
  • object Id $qualifierId
  • string $displayName
  • string $description
  • object Type $qualifierType
  • object Id $qualifierHierarchyId

Redefinition of:
AuthorizationManager::createRootQualifier()
Creates a new Qualifier in the Authorization Service that has no parent.
deleteAuthorization (line 368)

Deletes an existing Authorization.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
void deleteAuthorization (mixed $authorization, object Authorization $authorization )
  • object Authorization $authorization

Redefinition of:
AuthorizationManager::deleteAuthorization()
Deletes an existing Authorization.
deleteFunction (line 401)

Delete a Function by Id.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
void deleteFunction (mixed $functionId, object Id $functionId )
  • object Id $functionId

Redefinition of:
AuthorizationManager::deleteFunction()
Delete a Function by Id.
deleteQualifier (line 431)

Delete a Qualifier by Id. The last root Qualifier cannot be deleted.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, CANNOT_DELETE_LAST_ROOT_QUALIFIER
void deleteQualifier (mixed $qualifierId, object Id $qualifierId )
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::deleteQualifier()
Delete a Qualifier by Id. The last root Qualifier cannot be deleted.
getAllAZs (line 1350)

Given a functionId and a qualifierId returns all Authorizations that

would allow agents to do the Function with the Qualifier. This method differs from the simple form of getAuthorizations in that this method looks for any Authorization that permits doing the Function with the Qualifier even if the Authorization's Qualifier happens to be a parent of this Qualifier argument.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object AuthorizationIterator getAllAZs (object Id $agentId, object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Id $agentId
  • object Id $functionId
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getAllAZs()
Given a functionId and a qualifierId returns all Authorizations that
getAllAZsByFuncType (line 1433)

Given a FunctionType and a qualifierId returns all Authorizations that

would allow Agents to do Functions in the FunctionType with the Qualifier. This method differs from getAuthorizations in that this method looks for any Authorization that permits doing the Function with the Qualifier even if the Authorization's Qualifier happens to be a parent of the Qualifier argument.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, UNKNOWN_TYPE
object AuthorizationIterator getAllAZsByFuncType (object Id $agentId, object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Id $agentId
  • object Type $functionType
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getAllAZsByFuncType()
Given a FunctionType and a qualifierId returns all Authorizations that
getAllExplicitAZsForAgent (line 1297)

WARNING: NOT IN OSID!

Returns a list of all explicit authorizations for a given user across all functions and qualifiers.

  • return: object Iterator
ref getAllExplicitAZsForAgent (ref $agentId, boolean $isActiveNowOnly)
  • boolean $isActiveNowOnly: Include only active authorizations.
  • ref $agentId: object $agentId The agent's ID.
getAllUserAZs (line 1090)

Given a functionId and a qualifierId returns all Authorizations that

would allow the user to do the Function with the Qualifier. This method differs from the simple form of getAuthorizations in that this method looks for any Authorization that permits doing the Function with the Qualifier even if the Authorization's Qualifier happens to be a parent of this Qualifier argument.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object AuthorizationIterator getAllUserAZs (object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Id $functionId
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getAllUserAZs()
Given a functionId and a qualifierId returns all Authorizations that
getAllUserAZsByFuncType (line 1152)

Given a FunctionType and a qualifierId returns all Authorizations that

would allow the user to do Functions in the FunctionType with the Qualifier. This method differs from getAuthorizations in that this method looks for any Authorization that permits doing the Function with the Qualifier even if the Authorization's Qualifier happens to be a parent of the Qualifier argument.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, UNKNOWN_TYPE
object AuthorizationIterator getAllUserAZsByFuncType (object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Type $functionType
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getAllUserAZsByFuncType()
Given a FunctionType and a qualifierId returns all Authorizations that
getExplicitAZs (line 1211)

Given a agentId, a functionId, and a qualifierId (at least one of these must be non-null) returns the matching Authorizations. Explicit Authorizations can be modified. Any null argument will be treated as a wildcard.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object AuthorizationIterator getExplicitAZs (object Id $agentId, object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Id $agentId
  • object Id $functionId
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getExplicitAZs()
Given a agentId, a functionId, and a qualifierId (at least one of these must be non-null) returns the matching Authorizations. Explicit Authorizations can be modified. Any null argument will be treated as a wildcard.
getExplicitAZsByFuncType (line 1267)

Given a agentId, a FunctionType, and a qualifierId (either agentId or qualifierId must be non-null) returns the matching Authorizations. The Authorizations must be for Functions within the given FunctionType.

Explicit Authorizations can be modified. Any null argument will be treated as a wildcard.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, UNKNOWN_TYPE
object AuthorizationIterator getExplicitAZsByFuncType (object Id $agentId, object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Id $agentId
  • object Type $functionType
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getExplicitAZsByFuncType()
Given a agentId, a FunctionType, and a qualifierId (either agentId or qualifierId must be non-null) returns the matching Authorizations. The Authorizations must be for Functions within the given FunctionType.
getExplicitUserAZs (line 972)

Given a functionId and qualifierId (one must be non-null) returns the matching user Authorizations. Explicit Authorizations can be modified.. Any null argument will be treated as a wildcard.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object AuthorizationIterator getExplicitUserAZs (object Id $functionId, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Id $functionId
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getExplicitUserAZs()
Given a functionId and qualifierId (one must be non-null) returns the matching user Authorizations. Explicit Authorizations can be modified.. Any null argument will be treated as a wildcard.
getExplicitUserAZsByFuncType (line 1031)

Given a FunctionType and qualifierId returns the matching user Authorizations. The Authorizations must be for Functions within the given FunctionType. Explicit Authorizations can be modified. Any null argument will be treated as a wildcard.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, UNKNOWN_TYPE
object AuthorizationIterator getExplicitUserAZsByFuncType (object Type $functionType, object Id $qualifierId, mixed $isActiveNowOnly, boolean $isActiveNowOnly )
  • object Type $functionType
  • object Id $qualifierId
  • boolean $isActiveNowOnly

Redefinition of:
AuthorizationManager::getExplicitUserAZsByFuncType()
Given a FunctionType and qualifierId returns the matching user Authorizations. The Authorizations must be for Functions within the given FunctionType. Explicit Authorizations can be modified. Any null argument will be treated as a wildcard.
getExplicitUserAZsForImplicitAZ (line 1485)

Given an implicit returns the matching explicit user Authorizations.

Explicit Authorizations can be modified. A null argument will be treated as a wildcard.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID, UNKNOWN_TYPE
object AuthorizationIterator getExplicitUserAZsForImplicitAZ (mixed $implicitAuthorization, object Authorization $implicitAuthorization )
  • object Authorization $implicitAuthorization

Redefinition of:
AuthorizationManager::getExplicitUserAZsForImplicitAZ()
Given an implicit returns the matching explicit user Authorizations.
getFunction (line 668)
  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object Function getFunction (mixed $functionId, object Id $functionId )
  • object Id $functionId

Redefinition of:
AuthorizationManager::getFunction()
getFunctions (line 638)

Get all the Functions of the specified Type.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_TYPE
object FunctionIterator getFunctions (mixed $functionType, object Type $functionType )
  • object Type $functionType

Redefinition of:
AuthorizationManager::getFunctions()
Get all the Functions of the specified Type.
getFunctionTypes (line 608)

Get all the FunctionTypes supported by the Authorization implementation.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED
object TypeIterator getFunctionTypes ()

Redefinition of:
AuthorizationManager::getFunctionTypes()
Get all the FunctionTypes supported by the Authorization implementation.
getOsidContext (line 130)

Return context of this OsidManager.

  • access: public
  • throws: object OsidException
object OsidContext getOsidContext ()

Redefinition of:
OsidManager::getOsidContext()
Return context of this OsidManager.
getQualifier (line 881)
  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object Qualifier getQualifier (mixed $qualifierId, object Id $qualifierId )
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::getQualifier()
getQualifierChildren (line 812)

Given an existing qualifierId returns the Ids of its child Qualifiers.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object QualifierIterator getQualifierChildren (mixed $qualifierId, object Id $qualifierId )
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::getQualifierChildren()
Given an existing qualifierId returns the Ids of its child Qualifiers.
getQualifierDescendants (line 845)

Given an existing qualifierId returns the Ids of all descendants including its child Qualifiers.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object QualifierIterator getQualifierDescendants (mixed $qualifierId, object Id $qualifierId )
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::getQualifierDescendants()
Given an existing qualifierId returns the Ids of all descendants including its child Qualifiers.
getQualifierHierarchies (line 1556)

Returns the Qualifier Hierarchies supported by the Authorization implementation. Qualifier Hierarchies are referenced by Id and may be known and managed through the Hierarchy OSID.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED
object IdIterator getQualifierHierarchies ()

Redefinition of:
AuthorizationManager::getQualifierHierarchies()
Returns the Qualifier Hierarchies supported by the Authorization implementation. Qualifier Hierarchies are referenced by Id and may be known and managed through the Hierarchy OSID.
getQualifierTypes (line 733)

Get all the QualifierTypes supported by the Authorization implementation.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED
object TypeIterator getQualifierTypes ()

Redefinition of:
AuthorizationManager::getQualifierTypes()
Get all the QualifierTypes supported by the Authorization implementation.
getRootQualifiers (line 782)

Given a hierarchyId, returns the Qualifiers at the root of the specified Hierarchy.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_TYPE
object QualifierIterator getRootQualifiers (mixed $qualifierHierarchyId, object Id $qualifierHierarchyId )
  • object Id $qualifierHierarchyId

Redefinition of:
AuthorizationManager::getRootQualifiers()
Given a hierarchyId, returns the Qualifiers at the root of the specified Hierarchy.
getWhoCanDo (line 920)

Given a functionId and a qualifierId returns the Ids of all Agents allowed to do the Function with the Qualifier. A null qualifierId is treated as a wildcard.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
object IdIterator getWhoCanDo (object Id $functionId, mixed $qualifierId, object Id $qualifierId )
  • object Id $functionId
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::getWhoCanDo()
Given a functionId and a qualifierId returns the Ids of all Agents allowed to do the Function with the Qualifier. A null qualifierId is treated as a wildcard.
isAuthorized (line 464)

Given an agentId, functionId, and qualifierId returns true if the Agent is authorized now to perform the Function with the Qualifier.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
boolean isAuthorized (object Id $agentId, object Id $functionId, mixed $qualifierId, object Id $qualifierId )
  • object Id $agentId
  • object Id $functionId
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::isAuthorized()
Given an agentId, functionId, and qualifierId returns true if the Agent is authorized now to perform the Function with the Qualifier.
isAuthorizedBelow (line 527)

Given an agentId, functionId, and qualifierId returns true if the Agent is authorized now to perform the Function with the Qualifier or one of the decendents of the qualifier.

This method is used in determining when to provide UI links deep into a hierarchy, as well as in determining when to display UI components that only apply if an agent has a particular authorization on any element in a subtree.

WARNING: NOT IN OSID

  • since: 2/27/07
  • access: public
boolean isAuthorizedBelow (object Id $agentId, object Id $functionId, object Id $qualifierId)
  • object Id $agentId
  • object Id $functionId
  • object Id $qualifierId
isUserAuthorized (line 500)

Given a functionId and qualifierId returns true if the user is authorized now to perform the Function with the Qualifier.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED, NULL_ARGUMENT, UNKNOWN_ID
boolean isUserAuthorized (object Id $functionId, mixed $qualifierId, object Id $qualifierId )
  • object Id $functionId
  • object Id $qualifierId

Redefinition of:
AuthorizationManager::isUserAuthorized()
Given a functionId and qualifierId returns true if the user is authorized now to perform the Function with the Qualifier.
isUserAuthorizedBelow (line 567)

Given an agentId, functionId, and qualifierId returns true if the Agent is authorized now to perform the Function with the Qualifier or one of the decendents of the qualifier.

This method is used in determining when to provide UI links deep into a hierarchy, as well as in determining when to display UI components that only apply if an agent has a particular authorization on any element in a subtree.

WARNING: NOT IN OSID

  • since: 2/27/07
  • access: public
boolean isUserAuthorizedBelow (object Id $functionId, object Id $qualifierId, object Id $agentId)
  • object Id $agentId
  • object Id $functionId
  • object Id $qualifierId
supportsDesign (line 1590)

This method indicates whether this implementation supports AuthorizationManager methods: createFunction, deleteFunction. Function methods: updateDescription, updateDisplayName.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED
boolean supportsDesign ()

Redefinition of:
AuthorizationManager::supportsDesign()
This method indicates whether this implementation supports AuthorizationManager methods: createFunction, deleteFunction. Function methods: updateDescription, updateDisplayName.
supportsMaintenance (line 1624)

This method indicates whether this implementation supports

AuthorizationManager methods: createAuthorization, createDatedAuthorization, createQualifier, createRootQualifier, deleteAuthorization, deleteQualifier, getFunctionTypes, getQualifier, getQualifierChildren, getQualifierDescendents, getQualifierHierarchies, getQualifierTypes, getRootQualifiers, getWhoCanDo. Function methods: getDescription, getDisplayName, getFunctionType, getId, getQualifierHierarchy. Qualifier methods: addParent, changeParent, getChildren, getDescription, getDisplayName, isParent, getId, getParents, getQualifierType, isChildOf, isDescendentOf, removeParent, updateDescription, updateDisplayName.

  • access: public
  • throws: object AuthorizationException An exception with one of the following messages defined in org.osid.authorization.AuthorizationException may be thrown: OPERATION_FAILED, PERMISSION_DENIED, CONFIGURATION_ERROR, UNIMPLEMENTED
boolean supportsMaintenance ()

Redefinition of:
AuthorizationManager::supportsMaintenance()
This method indicates whether this implementation supports
_getContainingGroupIdStrings (line 1637)

Get an array of the string Ids of the groups that contain the particular Id.

  • since: 11/29/04
  • access: private
array _getContainingGroupIdStrings (object Id $agentOrGroupId)
  • object Id $agentOrGroupId
_getUserIds (line 1671)

Get the Ids of the current user. The user may be authenticated in multiple ways which each have a different Id.

  • since: 3/16/05
  • access: private
array _getUserIds ()

Inherited Methods

Inherited From AuthorizationManager

AuthorizationManager::agentExists()
AuthorizationManager::createAuthorization()
AuthorizationManager::createDatedAuthorization()
AuthorizationManager::createFunction()
AuthorizationManager::createQualifier()
AuthorizationManager::createRootQualifier()
AuthorizationManager::deleteAuthorization()
AuthorizationManager::deleteFunction()
AuthorizationManager::deleteQualifier()
AuthorizationManager::getAllAZs()
AuthorizationManager::getAllAZsByFuncType()
AuthorizationManager::getAllUserAZs()
AuthorizationManager::getAllUserAZsByFuncType()
AuthorizationManager::getExplicitAZs()
AuthorizationManager::getExplicitAZsByFuncType()
AuthorizationManager::getExplicitUserAZs()
AuthorizationManager::getExplicitUserAZsByFuncType()
AuthorizationManager::getExplicitUserAZsForImplicitAZ()
AuthorizationManager::getFunction()
AuthorizationManager::getFunctions()
AuthorizationManager::getFunctionTypes()
AuthorizationManager::getQualifier()
AuthorizationManager::getQualifierChildren()
AuthorizationManager::getQualifierDescendants()
AuthorizationManager::getQualifierHierarchies()
AuthorizationManager::getQualifierTypes()
AuthorizationManager::getRootQualifiers()
AuthorizationManager::getWhoCanDo()
AuthorizationManager::isAuthorized()
AuthorizationManager::isUserAuthorized()
AuthorizationManager::supportsDesign()
AuthorizationManager::supportsMaintenance()

Inherited From OsidManager

OsidManager::assignConfiguration()
OsidManager::assignOsidContext()
OsidManager::getOsidContext()
OsidManager::osidVersion_2_0()

Documentation generated on Wed, 19 Sep 2007 10:23:50 -0400 by phpDocumentor 1.3.0RC3