- All Known Implementing Classes:
public interface PolicyExecutor
Custom executor of policy statements.
Method SummaryModifier and TypeMethodDescription
voidExecute a policy based on a policy statement.
default booleanCan be used to tell the
PolicyValidatorthat this statement is supported by this policy executor.
supportsCan be used to tell the
PolicyValidatorthat this statement is supported by this policy executor. If there are more than one executors configured, first provider that supports a statement will execute it.
policyStatement- statement as configured through
request- request of current security exchange, containing environment, subject, and object
- true if this executor supports the statement, false otherwise
executePolicyExecute a policy based on a policy statement.
policyStatement- statement to evaluate
Errors.Collector.fatal(Object, String)in case the policy statement denies the request, do nothing for successful execution.
Errors.Collector.hint(Object, String)may be used for troubleshooting/debugging purposes
request- request providing access to subject, service subject, environment and object (s)