Module org.elasticsearch.security
Class CompositeRolesStore
java.lang.Object
org.elasticsearch.xpack.security.authz.store.CompositeRolesStore
A composite roles store that can retrieve roles from multiple sources.
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeClassDescriptionprotected static final recordA wrapper class to apply a project-id to another object. -
Constructor Summary
ConstructorsConstructorDescriptionCompositeRolesStore(Settings settings, ClusterService clusterService, RoleProviders roleProviders, NativePrivilegeStore privilegeStore, ThreadContext threadContext, XPackLicenseState licenseState, FieldPermissionsCache fieldPermissionsCache, ApiKeyService apiKeyService, ServiceAccountService serviceAccountService, ProjectResolver projectResolver, DocumentSubsetBitsetCache dlsBitsetCache, RestrictedIndices restrictedIndices, Executor roleBuildingExecutor, Consumer<Collection<RoleDescriptor>> effectiveRoleDescriptorsConsumer) -
Method Summary
Modifier and TypeMethodDescriptionstatic voidbuildRoleFromDescriptors(Collection<RoleDescriptor> roleDescriptors, FieldPermissionsCache fieldPermissionsCache, NativePrivilegeStore privilegeStore, RestrictedIndices restrictedIndices, ActionListener<Role> listener) voidbuildRoleFromRoleReference(RoleReference roleReference, ProjectId projectId, ActionListener<Role> roleActionListener) protected RolevoidgetRole(Subject subject, ActionListener<Role> roleActionListener) voidgetRoleDescriptors(Subject subject, ActionListener<Set<RoleDescriptor>> listener) voidgetRoles(Authentication authentication, ActionListener<org.elasticsearch.core.Tuple<Role, Role>> roleActionListener) voidinvalidate(String role) voidvoidinvalidateClusterScopedRoles(Set<String> roles) voidvoidinvalidateProject(ProjectId projectId) voidonSecurityIndexStateChange(ProjectId projectId, SecurityIndexManager.IndexState previousState, SecurityIndexManager.IndexState currentState) voidusageStats(ActionListener<Map<String, Object>> listener)
-
Constructor Details
-
CompositeRolesStore
public CompositeRolesStore(Settings settings, ClusterService clusterService, RoleProviders roleProviders, NativePrivilegeStore privilegeStore, ThreadContext threadContext, XPackLicenseState licenseState, FieldPermissionsCache fieldPermissionsCache, ApiKeyService apiKeyService, ServiceAccountService serviceAccountService, ProjectResolver projectResolver, DocumentSubsetBitsetCache dlsBitsetCache, RestrictedIndices restrictedIndices, Executor roleBuildingExecutor, Consumer<Collection<RoleDescriptor>> effectiveRoleDescriptorsConsumer)
-
-
Method Details
-
getRoles
public void getRoles(Authentication authentication, ActionListener<org.elasticsearch.core.Tuple<Role, Role>> roleActionListener) -
getRole
-
getInternalUserRole
-
buildRoleFromRoleReference
public void buildRoleFromRoleReference(RoleReference roleReference, ProjectId projectId, ActionListener<Role> roleActionListener) -
getRoleDescriptors
-
buildRoleFromDescriptors
public static void buildRoleFromDescriptors(Collection<RoleDescriptor> roleDescriptors, FieldPermissionsCache fieldPermissionsCache, NativePrivilegeStore privilegeStore, RestrictedIndices restrictedIndices, ActionListener<Role> listener) -
invalidateProject
public void invalidateProject() -
invalidateProject
-
invalidateAll
public void invalidateAll() -
invalidate
-
invalidateClusterScopedRoles
-
usageStats
-
onSecurityIndexStateChange
public void onSecurityIndexStateChange(ProjectId projectId, SecurityIndexManager.IndexState previousState, SecurityIndexManager.IndexState currentState) -
getSettings
-