Bolster
5.1.0
API
Generated with
Bolster/bolster.security/SecurityContext

SecurityContext

bolster.security.SecurityContext
sealed trait SecurityContext

Defines context in which permissions are granted.

A SecurityContext establishes a pattern in which a restricted operation is performed only if required permissions are granted; otherwise, a SecurityViolation is raised.

The following demonstrates how read/write access to an in-memory cache could be implemented.

import bolster.security.{ Permission, SecurityContext, UserContext }

import scala.collection.concurrent.TrieMap

object SecureCache:
 // Define permissions to read and write cache entries
 private val getPermission = Permission("cache:get")
 private val putPermission = Permission("cache:put")

 private val cache = TrieMap[String, String](
   "gang starr"      -> "step in the arena",
   "digable planets" -> "blowout comb"
 )

 def get(key: String)(using security: SecurityContext): String =
   // Test for read permission before getting cache entry
   security(getPermission) { cache(key) }

 def put(key: String, value: String)(using security: SecurityContext): Unit =
   // Test for write permission before putting cache entry
   security(putPermission) { cache += key -> value }

// Set security context to include read permission
given SecurityContext = UserContext(Permission("cache:get"))

// Get cache entry
val classic = SecureCache.get("gang starr")

// Throw SecurityViolation because write permission is not granted
SecureCache.put("sucker mc", classic)

Attributes

Graph
Supertypes
class Object
trait Matchable
class Any
Known subtypes
object RootContext.type
trait UserContext

Members list

Value members

Abstract methods

def all[T](perms: Set[Permission])(op: => T): T

Tests permissions before applying operation.

Tests permissions before applying operation.

If all supplied permissions are granted, the operation is applied; otherwise, SecurityViolation is thrown.

Value parameters

op

operation

perms

permissions

Attributes

Returns

operation value

Throws
SecurityViolation

if all permissions are not granted

Note

Operation is authorized if perms is empty.

def all[T](one: Permission, more: Permission*)(op: => T): T

Tests permissions before applying operation.

Tests permissions before applying operation.

If all supplied permissions are granted, the operation is applied; otherwise, SecurityViolation is thrown.

Value parameters

more

additional permissions

one

permission

op

operation

Attributes

Returns

operation value

Throws
SecurityViolation

if all permissions are not granted

Note

Operation is authorized if perms is empty.

def any[T](perms: Set[Permission])(op: => T): T

Tests permissions before applying operation.

Tests permissions before applying operation.

If any of supplied permissions is granted, the operation is applied; otherwise, SecurityViolation is thrown.

Value parameters

op

operation

perms

permissions

Attributes

Returns

operation value

Throws
SecurityViolation

if no permission is granted

Note

Operation is authorized if perms is empty.

def any[T](one: Permission, more: Permission*)(op: => T): T

Tests permissions before applying operation.

Tests permissions before applying operation.

If any of supplied permissions is granted, the operation is applied; otherwise, SecurityViolation is thrown.

Value parameters

more

additional permissions

one

permission

op

operation

Attributes

Returns

operation value

Throws
SecurityViolation

if no permission is granted

Note

Operation is authorized if perms is empty.

def apply[T](perm: Permission)(op: => T): T

Tests permission before applying operation.

Tests permission before applying operation.

If supplied permission is granted, the operation is applied; otherwise, SecurityViolation is thrown.

Value parameters

op

operation

perm

permission

Attributes

Returns

operation value

Throws
SecurityViolation

if permission is not granted

def test(perm: Permission): Boolean

Tests whether supplied permission is granted.

Tests whether supplied permission is granted.

Value parameters

perm

permission

Attributes

Returns

true if permission is granted; otherwise, false

def testAll(perms: Set[Permission]): Boolean

Tests whether all supplied permissions are granted.

Tests whether all supplied permissions are granted.

Value parameters

perms

permissions

Attributes

Returns

true if all permissions are granted; otherwise, false

Note

Test succeeds if perms is empty.

def testAll(one: Permission, more: Permission*): Boolean

Tests whether all supplied permissions are granted.

Tests whether all supplied permissions are granted.

Value parameters

more

additional permissions

one

permission

Attributes

Returns

true if all permissions are granted; otherwise, false

Note

Test succeeds if perms is empty.

def testAny(perms: Set[Permission]): Boolean

Tests whether any of supplied permissions is granted.

Tests whether any of supplied permissions is granted.

Value parameters

perms

permissions

Attributes

Returns

true if any permission is granted; otherwise, false

Note

Test succeeds if perms is empty.

def testAny(one: Permission, more: Permission*): Boolean

Tests whether any of supplied permissions is granted.

Tests whether any of supplied permissions is granted.

Value parameters

more

additional permissions

one

permission

Attributes

Returns

true if any permission is granted; otherwise, false

Note

Test succeeds if perms is empty.

Generated with