Class AuthorizationStrategy.Unsecured

All Implemented Interfaces:
ExtensionPoint, Describable<AuthorizationStrategy>, Serializable
Enclosing class:
AuthorizationStrategy

public static final class AuthorizationStrategy.Unsecured extends AuthorizationStrategy implements Serializable
See Also:
  • Constructor Details

    • Unsecured

      public Unsecured()
  • Method Details

    • getRootACL

      @NonNull public ACL getRootACL()
      Description copied from class: AuthorizationStrategy
      Returns the instance of ACL where all the other ACL instances for all the other model objects eventually delegate.

      IOW, this ACL will have the ultimate say on the access control.

      Specified by:
      getRootACL in class AuthorizationStrategy
    • getGroups

      @NonNull public Collection<String> getGroups()
      Description copied from class: AuthorizationStrategy
      Returns the list of all group/role names used in this authorization strategy, and the ACL returned from the AuthorizationStrategy.getRootACL() method.

      This method is used by ContainerAuthentication to work around the servlet API issue that prevents us from enumerating roles that the user has.

      If such enumeration is impossible, do the best to list as many as possible, then return it. In the worst case, just return an empty list. Doing so would prevent users from using role names as group names (see JENKINS-2716 for such one such report.)

      Specified by:
      getGroups in class AuthorizationStrategy
      Returns:
      never null.