Applies the rule 'AGO right: A rights overlay G rights' to a DisplayableLink
that ends with the sequence source/groupIDMember/resource, through the analysis
of a list of DisplayableLinkImpls.
Applies the rule 'AGO right: A rights delete G rights' to a DisplayableLink
that ends with the sequence source/groupIDMember/resource, through the analysis
of a list of DisplayableLinkImpls.
Defines the BRIDGE and ACL relations between all the ACS which are in the view,
that are Bridge links between actors, or AclEntries between eligible parties
and resources.
Adds and removes the AcsAddon specific rights:
(1) adds a simple link to a MySQL proxied account
having one or several proxy accounts as a non-generic alias.
For an AcsAddon, filters for a given node the incompatible rights, if any,
in the 2-nodes DisplayableLinks, and adds the AcsAddon specific rights, if any.
For an AcsAddon, filters for a given node the incompatible rights, if any,
in the 2-nodes DisplayableLinks, and adds the AcsAddon specific rights, if any.
For an AcsAddon, filters for a given node the incompatible rights, if any,
in the 3-nodes DisplayableLinks, and adds the AcsAddon specific rights, if any..
For an AcsAddon, filters for a given node the incompatible rights, if any,
in the 3-nodes DisplayableLinks, and adds the AcsAddon specific rights, if any.
Removes some 3-nodes DisplayableLinkImpls:
(1) from an Actor which is a view delegate (then has a VirtualFolder alias),
to a Resource the same VirtualFolder does not have as element.
Removes any DisplayableLink which has an Ubuntu object, and contains an AGO right
while there is a superior right in another DisplayableLink, following
the applicable ACS rules of a given AcsAddon ACS.
This heavy method is overridden by the AcsAddon, to remove any DisplayableLink
which has an AcsAddon object, and contains an AGO right
while there is a superior right in another DisplayableLink, following
the applicable ACS rules of the AcsAddon ACS.
This heavy method is overridden by the AcsAddon, to remove any DisplayableLink
which has an AcsAddon object, and contains an AGO right
while there is a superior right in another DisplayableLink, following
the applicable ACS rules of the AcsAddon ACS.
This heavy method is overridden by the AcsAddon, to remove any DisplayableLink
which has an AcsAddon object and contains an ACL right or a Privilege right,
while there is a superior right in another DisplayableLink, following
the applicable ACS rules of the AcsAddon ACS.
This heavy method is overridden by the AcsAddon, to remove any DisplayableLink
which has an AcsAddon object and contains an ACL or Privilege right,
while there is a superior right in another DisplayableLink, following
the applicable ACS rules of the AcsAddon ACS.
Applies the ACS priority rules to a DisplayableLink
that ends with an access target, for a given Addon ACS that owns this target,
through the analysis of a list of DisplayableLinkImpls.
Overridden by the AcsAddon, to apply the ACS priority rules to a DisplayableLink
that ends with an access target, for a given Addon ACS that owns this target,
through the analysis of a list of DisplayableLinkImpls.
This method is overridden by the AcsAddon, to apply the ACS priority rules to a DisplayableLink
that ends with an access target, for a given Addon ACS that owns this target,
through the analysis of a list of DisplayableLinkImpls.
Overridden by the AcsAddon, to applies any priority rules to a DisplayableLink,
about an ACL right or a Privilege right in the last AccessControlLink,
through the analysis of a list of DisplayableLinkImpls.
This method is overridden by the AcsAddon, to apply any priority rules to a DisplayableLink,
about an ACL right or a Privilege right in the last AccessControlLink,
through the analysis of a list of DisplayableLinkImpls.
Defines the effective applicable rights of an EligibleParty for a Resource
in _viewInBase, when there are several UserID or GroupID external to the view,
which may define specific access control links based on relations
(EligibleParty to UserID/GroupID), (Actor to BridgeTarget to UserID/GroupID),
(GroupIDMember to GroupID), (UserID/GroupID to Resource) and
(EligibleParty to Actor in another access context).
Gets all the rights of the relevant direct AclEntries managed by the MySQL Resource
for a given EligibleParty, following the ACL sorting and the selection
of the first matched ACL.
Gets the applicable rights from the first applicable direct or inherited ACL
on a Resource which is a database, but without reading of the non-mixed ACL
of this database.
Gets the applicable rights from the first applicable direct or inherited ACL
on a Resource which is not a database, or for the database rights
not from the to-be-mixed ACL.
Defines the effective applicable rights of an EligibleParty to a Resource (not
to a GroupIDMember or a VirtualFolder) in _viewInBase, when there is
exactly one intermediate node, and only AGO rights.
Defines the BRIDGE and ACL relations between all the ACS which are in the view,
that are Bridge links between actors, or AclEntries between EligibleParties
and resources.
Defines the effective applicable rights of the administrative account
with an order at 0, and for every actor running under such an account,
for any resource which is in the view.
Defines the effective applicable rights of an UserID for a Resource
which it owns (between an actor and its current userID)
when they are in the view, defines the effective rights between an actor
and a resource when their common userID and they are in the view,
and defines the effective rights between an actor and its current userID.
Defines the direct links from a VirtualFolder to its members,
when all the objects are in the view, even if the member ACS does not manage
the VirtualFolder rights propagation to members.
This class is responsible to manage the inherited AclEntries of the children,
to manage the global rights, and to provide the main documentation for all
the ResourceMySQL classes.