Non-static operation.
This operation returns if the current user or specified role is allowed to perform the provided action(s) on the provided resource.
You need a current security service object to call this operation (which you can get using getSecurityService()).
Interfaces
Based on Current User
-
isAuthorized( resourceId : String, action : String ) : Boolean -
isAuthorized( resourceId : String, actions : String[] ) : Boolean
Based on Specified Role(s)
-
isAuthorized( resourceId : String, action : String, role : String ) : Boolean -
isAuthorized( resourceId : String, action : String, roles : String[] ) : Boolean -
isAuthorized( resourceId : String, actions : String[], role : String ) : Boolean -
isAuthorized( resourceId : String, actions : String[], roles : String[] ) : Boolean
Parameters
|
Name |
Type |
Direction |
Description |
Allowed Values / Example |
|
|---|---|---|---|---|---|
|
resourceID |
String |
in |
Specify a service resource, e.g. a process event. |
|
|
|
action |
String |
in |
Specify one of the actions to check against. |
Allowed actions are read, write and list. |
|
|
actions |
Array of String |
in |
Specify a list of actions to check against. The operation returns true if one of the actions has valid permissions (OR-operation). |
|
|
|
role |
String |
in |
Specify a role to check against (instead of current user). |
acme_manager |
|
|
roles |
Array of String |
in |
Specify a list of roles to check against (instead of current user). The operation returns true if one of the roles has valid permissions (OR-operation). |
|
|
|
|
Boolean |
return |
Returns whether the current user resp. provided role(s) is allowed to perform the specified action(s) on the provided resource. |
true |
Is authorized. |
|
false |
Is not authorized. |
||||
Related Content
Related Pages: