isAuthorized()
Non-static operation.
This operation returns if the current user or specified role is allowed to perform the provided action(s) on the provided resource.
You need a current security service object to call this operation (which you can get using getSecurityService()).
Interfaces
Based on Current User
isAuthorized( resourceId : String, action : String ) : BooleanisAuthorized( resourceId : String, actions : String[] ) : Boolean
Based on Specified Role(s)
isAuthorized( resourceId : String, action : String, role : String ) : BooleanisAuthorized( resourceId : String, action : String, roles : String[] ) : BooleanisAuthorized( resourceId : String, actions : String[], role : String ) : BooleanisAuthorized( resourceId : String, actions : String[], roles : String[] ) : Boolean
Parameters
Name | Type | Direction | Description | Allowed Values / Example | |
|---|---|---|---|---|---|
resourceID | String | in | Specify a service resource, e.g. a process event. |
| |
action | String | in | Specify one of the actions to check against. | Allowed actions are read, write and list. | |
actions | Array of String | in | Specify a list of actions to check against. The operation returns true if one of the actions has valid permissions (OR-operation). | ||
role | String | in | Specify a role to check against (instead of current user). | acme_manager | |
roles | Array of String | in | Specify a list of roles to check against (instead of current user). The operation returns true if one of the roles has valid permissions (OR-operation). | ||
Boolean | return | Returns whether the current user resp. provided role(s) is allowed to perform the specified action(s) on the provided resource. | true | Is authorized. | |
false | Is not authorized. | ||||
Related Pages: