psdi.app.signature

Class MaxGroup

java.lang.Object

psdi.mbo.Mbo

psdi.app.signature.MaxGroup

All Implemented Interfaces:

java.rmi.Remote, MaxGroupRemote, MboConstants, MboRemote, MaxRemoteProxy

public class MaxGroup
extends Mbo
implements MaxGroupRemote

Mbo object to represent MaxGroup. A security group is the parent object for most of the security settings. A user is associated with one or more groups via the GroupUser table.

This mbo contains non-persistent attributes (TBD).

See Signature Package description.

This is a system level object.

The key attribute for this object is GroupName.

The attributes in this object are as follows:

Attribute Name	Description
AuthAllGLs	True if overrides to all GL account segments are authorized for this group. False if GL segment overrides are defined according to the GLAuth table. If this group is not Independent, this setting applies to all sites on all other combinable groups. If this is a standalone group, this setting applies only to sites on this group.
AuthAllSites	True if all sites are authorized for this group. False if site authorizations are defined according to the SiteAuth table. If this group is not Independent, this setting applies to all sites on all other combinable groups. If this is a standalone group, this setting applies only to sites on this group.
AuthAllStorerooms	True if all storerooms are authorized for this group. False if storeroom authorizations are defined according to the LocAuth table. If this group is not Independent, this setting applies to all sites on all other combinable groups. If this is a standalone group, this setting applies only to sites on this group.
AuthLaborAll	True if all labor codes are authorized for this group. False if labor code authorizations are defined according to the LaborAuth table. If this group is not Independent, this setting applies to the organizations for all sites on all other combinable groups. If this is a standalone group, this setting applies only to the organizations for sites on this group.
AuthLaborCrew	True if all labor codes in the user's crew are authorized for this group. False if the user's crew's labor code authorizations are defined according to the LaborAuth table. If this group is not Independent, this setting applies to the organizations for all sites on all other combinable groups. If this is a standalone group, this setting applies only to the organizations for sites on this group.
AuthPersonGroup	True if all labor codes in the user's person group are authorized for this group. False if the user's person group's labor code authorizations are defined according to the LaborAuth table. If this group is not Independent, this setting applies to the organizations for all sites on all other combinable groups. If this is a standalone group, this setting applies only to the organizations for sites on this group.
AuthLaborSelf	True if the user's labor code is authorized for this group. False if the user's labor code authorization is defined according to the LaborAuth table. If this group is not Independent, this setting applies to the organizations for all sites on all other combinable groups. If this is a standalone group, this setting applies only to the organizations for sites on this group.
AuthLaborSuper	True if all labor codes that the user supervises are authorized for this group. False if authorizations for the labor codes that the user supervises are defined according to the LaborAuth table. If this group is not Independent, this setting applies to the organizations for all sites on all other combinable groups. If this is a standalone group, this setting applies only to the organizations for sites on this group.
Description	Freeform description. Also accommodates a long description.
GroupName	Unique identifier for the group.
Independent	When building a user's security profile, this attribute will be used to determine if the settings on this group will apply to sites on other non-independent groups, and settings on other non-independent groups will apply to the sites on this group.
PasswordDuration	The number of days a password is valid before it has to be changed. Defaults from maxvar PASSWORDDURATION.
PasswordWarning	The number of days prior to a password's expiration date that the user will be reminded to change it. Defaults from maxvar PASSWORDWARNING.
SCTemplateID	The Start Center Template ID for this security group. Foreign key to SCTemplate.
LeftNav	The indicator that specifies whether or not to show the Left navigation panel for this security group.

See Also:

MaxUser, GroupUser

Field Summary

Fields inherited from class psdi.mbo.Mbo

MULTILANGCOPY, phantomList, phantomQueue

Fields inherited from interface psdi.mbo.MboConstants

ALLROWS, CHANGEDBY_USER, COUNT_ADDITIONS, COUNT_AFTERSAVE, COUNT_DATABASE, COUNT_DELETED, COUNT_EXISTING, DBCONFIG, DELAYVALIDATION, DELAYVALIDATIONONLY, DISCARDABLE, GOTCOMPLETEWHERE, HIDDEN, NO_RELATEDMBOS_OF_OWNERSCHILDREN_FETCH, NOACCESSCHECK, NOACTION, NOADD, NOCOMMIT, NODELETE, NONE, NOOVERWRITE, NOSAVE, NOSETVALUE, NOUPDATE, NOVALIDATION, NOVALIDATION_AND_NOACTION, NOVALIDATION_AND_NOACTION_ALLOWCROSSOVER, READONLY, REBUILD, REQUIRED, SAMEVALUEVALIDATION, SETBYPARENT, USER

Constructor Summary

Constructors

Constructor and Description
MaxGroup(MboSet ms) Construct the MaxGroup object

Method Summary

Modifier and Type	Method and Description
void	add() Add a mbo, defaulting the attributes shown below.
void	appValidate() Validate mbo.
void	authorizeUsers(MboSetRemote userSet, java.lang.String relationship) For multiselect of users for GrpReassignAuth or GroupUser.
void	canDelete() Cannot drop the group if any users exist in that group, or if it's the New User or Everyone
boolean	canMaintainUsers() Identifies whether GroupUser can be maintained for this group.
MboRemote	copy(java.lang.String newGroupName, MboSetRemote mboset) Copy this group to a new group.
void	delete(long accessModifier) Mark the object to be deleted depending on the access modifier.
MboRemote	duplicate() Copy MaxGroup and its children.
void	init() Called by the framework when the Mbo has been constructed and the MboValues have been initialized.
protected boolean	skipCopyField(MboValueInfo mvi) Fields to skip when copying mbo.
void	undelete() Unmark the Mbo for deletion.

Methods inherited from class psdi.mbo.Mbo

addMboSetForRequiredCheck, addToDeleteForInsertList, andEvaluateConditions, blindCopy, checkFieldAccess, checkMethodAccess, checkMethodAccess, checkQualifiedRestriction, checkRecordLock, checkSiteOrgAccessForSave, clear, clearRelatedSets, clearRelatedSets, commit, copy, copy, copy, copyFake, copyValue, copyValue, createComm, delete, deleteDoclinks, determineRequiredFieldsFromERM, enableMethod, evaluateCondition, evaluateCondition, evaluateCtrlConditions, evaluateCtrlConditions, evaluateRestriction, excludeObjectForPropagate, findAllNullRequiredFields, fireEvent, generateAutoKey, generateContentUID, getAlwaysFlags, getAttrRestrictionFlag, getAttrRestrictions, getBoolean, getByte, getBytes, getCheckpoint, getClientLocale, getClientTimeZone, getCommLogOwnerNameAndUniqueId, getCondition, getDatabaseValue, getDate, getDeleteForInsertList, getDocLinksCount, getDomainFilterWhere, getDomainIDs, getDouble, getESId, getExistingMboSet, getFetchIndex, getFieldExceptions, getFlags, getFloat, getIgnoreLockCheck, getInitialValue, getInsertCompanySetId, getInsertItemSetId, getInsertOrganization, getInsertOrgForSite, getInsertSite, getInstanciatedMboSet, getInstanciatedMboValue, getInt, getIntegrationService, getKeyValue, getLanguageRecordRowStamp, getLinesRelationship, getList, getLockedByDisplayName, getLockedByUserID, getLong, getMatchingAttr, getMatchingAttr, getMatchingAttrs, getMaxMessage, getMboCtx, getMboData, getMboDataSet, getMboForAttribute, getMboForAttributeStatic, getMboInitialValue, getMboList, getMboLogger, getMboRecordData, getMboServer, getMboSet, getMboSet, getMboSet, getMboSetInfo, getMboSetInfo, getMboValue, getMboValueData, getMboValueData, getMboValueData, getMboValueDataForDownload, getMboValueInfoStatic, getMboValueInfoStatic, getMessage, getMessage, getMessage, getMessage, getMXTransaction, getName, getOrgForGL, getOrgSiteForMaxvar, getOwner, getProfile, getPropagateKeyFlag, getProxy, getRecordIdentifer, getRecordMboName, getRecordType, getRelatedSets, getRelatedWhere, getRelatedWhere, getRelationshipNameToLangTable, getResourceName, getRowRestrictionFlag, getRowStamp, getRowStampObject, getSecurityLogger, getSiteOrg, getSqlLogger, getString, getString, getStringInBaseLanguage, getStringInSpecificLocale, getStringTransparent, getSynonymValueWhere, getTenantId, getTenantIdForNoMboRecordData, getThisMboSet, getTranslator, getUniqueIdentifer, getUniqueIDName, getUniqueIDValue, getUniqueLanguageIDRecord, getUserInfo, getUserName, getValidateOrder, hasFieldAccess, hasHierarchyLink, hasLockSaveRights, hasRelatedQbe, hasUniqueID, initFieldFlagsOnMbo, initRelationship, isApiBatchError, isAppLockEnabled, isAutoKeyed, isBasedOn, isChangeByUserWhenSetFromLookup, isDuringInit, isEAuditFieldModified, isESigFieldModified, isFlagSet, isForDM, isLocked, isLocked, isLockedByMe, isMasterTenant, isMboLockedByMe, isModified, isModified, isNew, isNoSql, isNull, isOptionGranted, isSelected, isSkipCopyField, isValid, isZombie, lock, modify, moveFieldFlagsToMboValue, needCallInitFieldFlag, orEvaluateConditions, propagateKeyValue, removeCtx, removeRelatedSet, resolveNoSqlWhere, rollbackToCheckpoint, save, select, setAppDefaultValue, setApplicationError, setApplicationRequired, setAutokeyFields, setCopyDefaults, setDatabaseDefaultValues, setDatabaseDefaultValues, setDefaultValue, setDefaultValues, setDeleted, setDuringInit, setEAuditFieldModified, setESId, setESigFieldModified, setFetchIndex, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlags, setFlag, setFlag, setFlags, setForDM, setHierarchyLink, setIgnoreRecordLockCheck, setLangCodeDefault, setMboCtx, setMLValue, setModified, setModifiedForIntegrationOnly, setNewMbo, setNoSql, setPropagateKeyFlag, setPropagateKeyFlag, setProxy, setReadonlyWhenParentIsReadonly, setRecordType, setReferencedMbo, setReferencedMbo, setResolveNoSqlWhere, setResourceName, setTenantIdForNoMboRecordData, setUniqueIDValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValueFromSequence, setValueNull, setValueNull, sigopGranted, sigopGranted, sigopGranted, sigopGranted, sigOptionAccessAuthorized, smartFill, smartFind, smartFind, smartFind, smartFindByObjectName, smartFindByObjectName, smartFindByObjectNameDirect, startCheckpoint, thisToBeUpdated, throwRequiredException, toBeAdded, toBeDeleted, toBeSaved, toBeUpdated, toBeValidated, undeleteDoclinks, unlock, unselect, useDataSecurity, validate, validateAttributes, validateKeyUniqueness, valueChanged

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface psdi.mbo.MboRemote

addMboSetForRequiredCheck, addToDeleteForInsertList, blindCopy, checkMethodAccess, clear, copy, copy, copy, copyFake, copyValue, copyValue, createComm, delete, evaluateCondition, evaluateCtrlConditions, evaluateCtrlConditions, excludeObjectForPropagate, generateAutoKey, getBoolean, getByte, getBytes, getCommLogOwnerNameAndUniqueId, getDatabaseValue, getDate, getDeleteForInsertList, getDocLinksCount, getDomainIDs, getDouble, getExistingMboSet, getFlags, getFloat, getIgnoreLockCheck, getInitialValue, getInsertCompanySetId, getInsertItemSetId, getInsertOrganization, getInsertSite, getInt, getKeyValue, getLinesRelationship, getList, getLockedByDisplayName, getLong, getMatchingAttr, getMatchingAttr, getMatchingAttrs, getMaxMessage, getMboData, getMboDataSet, getMboInitialValue, getMboList, getMboSet, getMboSet, getMboSet, getMboValueData, getMboValueData, getMboValueData, getMboValueDataForDownload, getMboValueInfoStatic, getMboValueInfoStatic, getMessage, getMessage, getMessage, getMessage, getMXTransaction, getName, getOrgForGL, getOrgSiteForMaxvar, getOwner, getPropagateKeyFlag, getRecordIdentifer, getSiteOrg, getString, getString, getStringInBaseLanguage, getStringInSpecificLocale, getStringTransparent, getThisMboSet, getUniqueIDName, getUniqueIDValue, getUserInfo, getUserName, hasHierarchyLink, hasLockSaveRights, isAutoKeyed, isBasedOn, isFlagSet, isForDM, isLocked, isLocked, isMasterTenant, isMboLockedByMe, isModified, isModified, isNew, isNull, isOptionGranted, isSelected, isZombie, lock, propagateKeyValue, rollbackToCheckpoint, select, setApplicationError, setApplicationRequired, setAutokeyFields, setCopyDefaults, setDeleted, setESigFieldModified, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlag, setFieldFlags, setFlag, setFlag, setFlags, setForDM, setIgnoreRecordLockCheck, setMLValue, setModified, setNewMbo, setPropagateKeyFlag, setPropagateKeyFlag, setReferencedMbo, setReferencedMbo, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValue, setValueNull, setValueNull, sigopGranted, sigopGranted, sigopGranted, sigOptionAccessAuthorized, smartFill, smartFind, smartFind, smartFind, smartFindByObjectName, smartFindByObjectName, smartFindByObjectNameDirect, startCheckpoint, thisToBeUpdated, toBeAdded, toBeDeleted, toBeSaved, toBeUpdated, toBeValidated, unlock, unselect, validate, validateAttributes

Constructor Detail

MaxGroup

public MaxGroup(MboSet ms)
         throws java.rmi.RemoteException

Construct the MaxGroup object

Throws:

java.rmi.RemoteException

Method Detail

init

public void init()
          throws MXException

Description copied from class: Mbo

Called by the framework when the Mbo has been constructed and the MboValues have been initialized. This can be overridden by the programmer to provide any custom initialization they would like to do.

Overrides:

init in class Mbo

Throws:

MXException

add

public void add()
         throws MXException,
                java.rmi.RemoteException

Add a mbo, defaulting the attributes shown below.

If the logon user is a site administrator, set "authallsites" to False and readonly.

Attribute Name	Attribute Value
PasswordDuration	MaxVars value of PASSWORDDURATION
PasswordWarning	MaxVars value of PASSWORDWARNING

Specified by:

add in interface MboRemote

Overrides:

add in class Mbo

Throws:

MXException

java.rmi.RemoteException

See Also:

MaxGroupSet.getAdminWhereSiteSubselect(), MaxGroup.addDefaultAppAuth()

canDelete

public void canDelete()
               throws MXException,
                      java.rmi.RemoteException

Cannot drop the group if any users exist in that group, or if it's the New User or Everyone

Overrides:

canDelete in class Mbo

Throws:

MXException

java.rmi.RemoteException

See Also:

SignatureService.getNewUserGroup(psdi.security.UserInfo)

delete

public void delete(long accessModifier)
            throws MXException,
                   java.rmi.RemoteException

Description copied from class: Mbo

Mark the object to be deleted depending on the access modifier. This will usually be overridden in the subclass of Mbo as there may be application specific rules as to if and when an object can be deleted. Object is not actually deleted in the database until save() is called. This method will also mark all associated Long Description and Translation Mbos for deletion.

Specified by:

delete in interface MboRemote

Overrides:

delete in class Mbo

Parameters:

accessModifier - The bitwise flag specified to determine if certain normal security checks are to be bypassed for this delete request. For example: if the accessModifer is NOACCESSCHECK, then the check for the object's NODELETE flag and the call to the object's canDelete() method will not be performed. If the accessModifer is NONE, then all the access checks are performed before this object is marked delete.

Throws:

MXException

java.rmi.RemoteException

See Also:

Mbo.delete(long)

undelete

public void undelete()
              throws MXException,
                     java.rmi.RemoteException

Description copied from class: Mbo

Unmark the Mbo for deletion. Can only be called after a delete() and before the save() has been performed. This method will also unmark associated Long Description and Translation Mbos.

Specified by:

undelete in interface MboRemote

Overrides:

undelete in class Mbo

Throws:

MXException

java.rmi.RemoteException

duplicate

public MboRemote duplicate()
                    throws MXException,
                           java.rmi.RemoteException

Copy MaxGroup and its children.

Specified by:

duplicate in interface MboRemote

Overrides:

duplicate in class Mbo

Throws:

MXException

java.rmi.RemoteException

copy

public MboRemote copy(java.lang.String newGroupName,
                      MboSetRemote mboset)
               throws MXException,
                      java.rmi.RemoteException

Copy this group to a new group.

Specified by:

copy in interface MaxGroupRemote

Parameters:

newGroupName - The name of the group to be added. Cannot be null unless MaxGroup supports autokeying.

mboset - The destination MboSet to which the new MaxGroup mbo will be added. Cannot be null.

Returns:

The new MaxGroup mbo that is created by this method.

Throws:

MXException

java.rmi.RemoteException

See Also:

Mbo.isAutoKeyed(java.lang.String)

skipCopyField

protected boolean skipCopyField(MboValueInfo mvi)
                         throws java.rmi.RemoteException,
                                MXException

Fields to skip when copying mbo.

Overrides:

skipCopyField in class Mbo

Parameters:

mvi - The MboValueInfo describing this attribute

Returns:

True to skip this attribute

Throws:

java.rmi.RemoteException

MXException

canMaintainUsers

public boolean canMaintainUsers()
                         throws MXException,
                                java.rmi.RemoteException

Identifies whether GroupUser can be maintained for this group. Check GrpReassignAuth table.

Returns:

True if the owner of this mbo set can add and remove users from this security group; False if the owner is not allowed to do this.

Throws:

MXException

java.rmi.RemoteException

appValidate

public void appValidate()
                 throws MXException,
                        java.rmi.RemoteException

Validate mbo.

Overrides:

appValidate in class Mbo

Throws:

MXException

java.rmi.RemoteException

See Also:

MaxGroup.addGrpReassignAuth(), MaxGroupSet.usersToUpdate, MaxGroupSet.fireEventsAfterDBCommit(psdi.txn.MXTransaction), SignatureService.resetPasswordExpiration(java.util.HashSet, psdi.security.UserInfo)

authorizeUsers

public void authorizeUsers(MboSetRemote userSet,
                           java.lang.String relationship)
                    throws MXException,
                           java.rmi.RemoteException

For multiselect of users for GrpReassignAuth or GroupUser.

Specified by:

authorizeUsers in interface MaxGroupRemote

Parameters:

userSet - Set of MaxUser

relationship - Relationship name: GRPREASSIGNAUTH or GROUPUSER.

Throws:

MXException

java.rmi.RemoteException

See Also:

SelectUsersBean