java.lang.Object
- org.openbravo.dal.security.SecurityChecker

All Implemented Interfaces:

OBProvidable, OBSingleton
```
public class SecurityChecker
extends Object
implements OBSingleton
```
This class combines all security checks which are performed on entity level:
- Delete: is the entity deletable (@see Entity.isDeletable()) and does the user have write access to the entity.
- Write: is done in case of create and update actions. The following checks are performed: is the organization writable, is the client of the object the same as is the entity writable (@see EntityAccessChecker#isWritable(Entity))
Author:

mtaal

Constructor Summary

Constructors
Constructor Description

SecurityChecker()

Method Summary

All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type	Method	Description
`void`	`checkDeleteAllowed(Object o)`
`void`	`checkReadableAccess(OrganizationEnabled organizationEnabledObject)`	Checks if there is access to the entity and if the organization is readable.
`void`	`checkWriteAccess(Object obj)`	Performs the same checks as `isWritable(Object)`.
`static SecurityChecker`	`getInstance()`
`boolean`	`isWritable(Object obj)`	Performs several write access checks when an object is created or updated: is the organization writable (@see OBContext#getWritableOrganizations()) is the client of the object the same as the client of the user (@see OBContext#getCurrentClient()) is the Entity writable for this user (@see EntityAccessChecker#isWritable(Entity)) are the client and organization correct from an access level perspective (@see AccessLevelChecker).

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - SecurityChecker
```
public SecurityChecker()
```
- Method Detail
  - getInstance
```
public static SecurityChecker getInstance()
```
  - checkDeleteAllowed
```
public void checkDeleteAllowed(Object o)
```
  - isWritable
```
public boolean isWritable(Object obj)
```
    Performs several write access checks when an object is created or updated:
    
    is the organization writable (@see OBContext#getWritableOrganizations())
    
    is the client of the object the same as the client of the user (@see OBContext#getCurrentClient())
    
    is the Entity writable for this user (@see EntityAccessChecker#isWritable(Entity))
    are the client and organization correct from an access level perspective (@see AccessLevelChecker).
    Parameters:
    
    obj - the object to check
    
    Returns:
    
    true if writable, false otherwise
    
    See Also:
    
    Entity
  - checkWriteAccess
```
public void checkWriteAccess(Object obj)
```
    Performs the same checks as isWritable(Object). Does not return true/false but throws a OBSecurityException if the object is not writable.
    
    Parameters:
    
    obj - the object to check
    
    Throws:
    
    OBSecurityException
  - checkReadableAccess
```
public void checkReadableAccess(OrganizationEnabled organizationEnabledObject)
```
    Checks if there is access to the entity and if the organization is readable. If not, it throws an OBSecurityException.
    
    Parameters:
    
    organizationEnabledObject - a BaseOBObject that implements the OrganizationEnabled interface. This method will check if the user has read access to the provided object

Class SecurityChecker

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

SecurityChecker

Method Detail

getInstance

checkDeleteAllowed

isWritable

checkWriteAccess

checkReadableAccess