Interface OpenMetadataConnectionSecurity


  • public interface OpenMetadataConnectionSecurity
    OpenMetadataConnectionSecurity defines the interface of a security connector that is validating whether a specific user should be given access to a specific Connection object. This connection information has been retrieved from an open metadata repository. It is used to create a Connector to an Asset. It may include user credentials that could enhance the access to data and function within the Asset that is far above the specific user's approval. This is why this optional check is performed by any open metadata service that is returning a Connection object (or a Connector created with the Connection object) to an external party.
    • Method Detail

      • validateUserForConnection

        void validateUserForConnection​(java.lang.String userId,
                                       Connection connection)
                                throws UserNotAuthorizedException
        Tests for whether a specific user should have access to a connection.
        Parameters:
        userId - identifier of user
        connection - connection object
        Throws:
        UserNotAuthorizedException - the user is not authorized to access this service
      • validateUserForAssetConnectionList

        Connection validateUserForAssetConnectionList​(java.lang.String userId,
                                                      Asset asset,
                                                      java.util.List<Connection> connections)
                                               throws UserNotAuthorizedException
        Select a connection from the list of connections attached to an asset.
        Parameters:
        userId - calling user
        asset - asset requested by caller
        connections - list of attached connections
        Returns:
        selected connection or null (pretend there are no connections attached to the asset) or
        Throws:
        UserNotAuthorizedException - the user is not authorized to access this service