Manage rights generically (experts)

Requirements

To be able to open the Generic permissions management, the "Enable expert options" checkbox must be enabled under "Extras > Options > Portals".

Target audience

Generic permissions management is designed for experts who want to manage additional permissions beyond the dialog-supported assignment of permissions. To use the function, it is helpful if you are familiar with "Java Permission Classes".

Functional description

With the Generic permissions management, you have the option of assigning the permission classes provided by Intrexx as well as your own permission classes to specific objects. You can then assign the objects to principals. You can specify which actions are to be executed in each case. Later, you can use Groovy, for example, to query at runtime whether a specific principal is allowed to perform a specific action for a specific object and react accordingly.

The following is an example of how to add a (further) principal to an Intrexx permission class and how to add an additional permission.

Use Intrexx permission classes - Add authorized object

Step-by-step guide

Proceed as follows to add an (additional) principal to an Intrexx permission class:

  1. Open the "Permission class" selection list.

    The permission classes provided or used by Intrexx are displayed.

    You can find information on Intrexx permission classes under the following links:

  2. Select the desired permission class ().

    In the screenshot below, the permission class en.uplanet.lucy.security.permission.ApplicationPermission has been selected.

    All objects (applications) that use this permission class are displayed in the "Object" area (). In this case, the identifier is the GUID of the respective application.

    As soon as you select an identifier, the principals are displayed in the "Principals" area ().

    Once a principal is selected, the permitted actions are displayed in the "Actions" field (). The "Actions" field is an edit field. Here you can add or remove actions (separated by commas).

  3. Click on the icon.

    The "Add authorized object" dialog box is displayed.

  4. Select the desired principal.

    The principal is displayed.

  5. Enter the desired permissions in the "Actions" field.

    The screenshot below shows the rights administration,access.

  6. Click on "Finish".

More information

Application permissions

Add your own permission classes

Step-by-step guide

Proceed as follows to add your own or a new permission class:

  1. Click on the icon.

    The "Permission class" dialog box is displayed.

  2. Enter the permission class.

    In the screenshot below, this is java.io.FilePermission.

  3. Click on "OK".

    You are taken back to the "Generic permissions management" dialog box.

    The permission class entered is displayed.

  4. Click on the icon.

    A new line is displayed in the "Object" area.

  5. Click on the new line and enter the identifier.

    In the screenshot below, this is a path to a file.

    (Refer also to Class FilePermission.)

  6. Click on the icon in the "Principal" area.

  7. The "Add authorized object" dialog box is displayed.

  8. Select the desired principal.

    You are taken back to the "Generic permissions management" dialog box.

    The principal is displayed.

  9. Enter the desired permissions in the "Actions" field.

    The screenshot below shows the rights read,write.

  10. Click on "Finish".

More information