Users with similar functions are typically organized into user groups (instances of GroupAccount). The rights assigned to the group reflect the functional security rights of the users in the group. You cannot modify functional rights using the TeamConnect API, only through the user interface. If you want to know if a user has a particular functional right, you can use the following interfaces:
•SecurityService—Provides methods that can check a user's rights within TeamConnect.
•OperationType—Provides enumerations that include all the rights a user can have.
Some of the SecurityService methods use the OperationType class. For example, the following code checks if a user can create an account:
boolean hasEntityOperationRights = platform.getSecurityService().isEntityOperationEnabled(user, OperationType.CREATE, "ACCT"); |
In the previous code snippet, the securityService.isEntityOperationEnabled() method checks if the given user, called anyUser, has the necessary rights to create an account object. If the user has the rights, this code returns true.
In addition to a method for checking rights at the object level, SecurityService also includes methods for checking whether a user has rights to categories, tools, and user invoked rules:
•isCategoryOperationEnabled() checks rights for categories.
•isToolAccessEnabled() checks rights for system or custom tools.
•isUserInvokedAccessEnabled() checks rights for user invoked rules.
•isEntityOperationEnabled() checks rights for objects.
