Examples of org.pentaho.platform.engine.security.acls.voter.PentahoUserOverridesVoter

• org.pentaho.platform.engine.security.acls.voter.PentahoUserOverridesVoter
  Extends the PentahoBasicAclVoter class, and overrides the getEffectiveAcls method to stipulate that if the current user occurrs in the access control list, that whatever access controls are listed for that user, those are the only ones returned.

  For example, if the user (sally) belongs to the following roles:

   
   
   
  User Id
  Role
   
   
   
  sally
  dev
   
   
   
  mgr
   
   
   

  And the object has the following defined access controls:

   
   
   
  Role
  Access
   
   
   
  dev
  Execute
   
   
   
  sales
  Execute and Subscribe
   
   
   
  sally
  Nothing
   
   
   

  With the standard PentahoBasicAclVoter, sally would have Execute permissions on this object because that voter will simply aggregate all applicable access controls. With this voter, the returned access controls for sally will be PentahoAclEntry.NOTHING. @author mbatchel

          IPentahoAclEntry.PERM_FULL_CONTROL ) );
        SpringSecurityPermissionMgr.instance().getPermissions( testFile );

        // Now, the stage is set. We should be able to double-check that suzy
        // has no access to the testFile.
        PentahoUserOverridesVoter voter = new PentahoUserOverridesVoter();
        assertNotNull( voter );
        assertFalse( voter.hasAccess( PentahoSessionHolder.getSession(), testFile, IPentahoAclEntry.PERM_EXECUTE ) );
        return null;
      }

    } );