/**********************************************************************************
*
* $Id: Authz.java 105077 2012-02-24 22:54:29Z ottenhoff@longsight.com $
*
***********************************************************************************
*
* Copyright (c) 2005, 2006, 2007, 2008 The Sakai Foundation, The MIT Corporation
*
* Licensed under the Educational Community License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.opensource.org/licenses/ECL-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
**********************************************************************************/
package org.sakaiproject.tool.gradebook.facades;
import java.util.List;
import java.util.Map;
/**
* Facade to external role and authorization service.
*/
public interface Authz {
public boolean isUserAbleToGrade(String gradebookUid);
public boolean isUserAbleToGrade(String gradebookUid, String userUid);
public boolean isUserAbleToGradeAll(String gradebookUid);
public boolean isUserAbleToGradeAll(String gradebookUid, String userUid);
public boolean isUserAbleToEditAssessments(String gradebookUid);
public boolean isUserAbleToViewOwnGrades(String gradebookUid);
public boolean isUserHasGraderPermissions(String gradebookUid);
public boolean isUserHasGraderPermissions(Long gradebookId);
public boolean isUserHasGraderPermissions(Long gradebookId, String userUid);
public boolean isUserHasGraderPermissions(String gradebookUid, String userUid);
/**
*
* @param gradebookUid
* @param itemId
* @param studentUid
* @return is user authorized to grade this gradebook item for this student?
* first checks for special grader perms. if none, uses default perms
*/
public boolean isUserAbleToGradeItemForStudent(String gradebookUid, Long itemId, String studentUid) throws IllegalArgumentException;
/**
*
* @param gradebookUid
* @param itemId
* @param studentUid
* @return is user authorized to view this gradebook item for this student?
* first checks for special grader perms. if none, uses default perms
*/
public boolean isUserAbleToViewItemForStudent(String gradebookUid, Long itemId, String studentUid) throws IllegalArgumentException;
/**
* @param gradebookUid
* @return all of the CourseSections for this site
*/
public List getAllSections(String gradebookUid);
/**
*
* @param gradebookUid
* @return all CourseSections that the current user may view or grade
*/
public List getViewableSections(String gradebookUid);
/**
* @param gradebookUid
* @param userUid
* @param categoryId
* The category id that the desired item is associated with
* @param gbCategoryType
* The category type setting for this gradebook
* @param optionalSearchString
* a substring search for student name or display UID; the exact rules are
* up to the implementation - leave null to use all students
* @param optionalSectionUid
* null if the search should be made across all sections
* @return a map of EnrollmentRecords to grade/view permission that the given user is authorized to
* view or grade for the given gradebook item
*/
public Map findMatchingEnrollmentsForItemForUser(String userUid, String gradebookUid, Long categoryId, int gbCategoryType, String optionalSearchString, String optionalSectionUid);
/**
*
* @param gradebookUid
* @param categoryId
* The category id that the desired item is associated with
* @param gbCategoryType
* The category type setting for this gradebook
* @param optionalSearchString
* a substring search for student name or display UID; the exact rules are
* up to the implementation - leave null to use all students
* @param optionalSectionUid
* null if the search should be made across all sections
* @return a map of EnrollmentRecords to grade/view permission that the current user is authorized to
* view or grade for the given gradebook item
*/
public Map findMatchingEnrollmentsForItem(String gradebookUid, Long categoryId, int gbCategoryType, String optionalSearchString, String optionalSectionUid);
/**
*
* @param gradebookUid
* @param gbCategoryType
* The category type setting for this gradebook
* @param optionalSearchString
* @param optionalSectionUid
* @return Map of EnrollmentRecord --> function (grade/view) for all students that the current user has permission to
* view/grade every item in the gradebook. If he/she can grade everything, GRADE function is
* returned. Otherwise, function is VIEW. May only modify course grade if he/she can grade
* everything in the gradebook for that student. If he/she can grade only a subset of the items, the
* student is not returned.
*/
public Map findMatchingEnrollmentsForViewableCourseGrade(String gradebookUid, int gbCategoryType, String optionalSearchString, String optionalSectionUid);
/**
*
* @param gradebookUid
* @param allGbItems
* List of all Assignments associated with this gradebook
* @param optionalSearchString
* a substring search for student name or display UID; the exact rules are
* up to the implementation - leave null to use all students
* @param optionalSectionUid
* null if the search should be made across all sections
* @return a map of EnrollmentRecords to a map of item id and function (grade/view) that the user is
* authorized to view/grade
*/
public Map findMatchingEnrollmentsForViewableItems(String gradebookUid, List allGbItems, String optionalSearchString, String optionalSectionUid);
/**
*
* @param gradebookUid
* @param studentUid
* @return a list of all section memberships for the given studentUid
*/
public List findStudentSectionMemberships(String gradebookUid, String studentUid);
/**
*
* @param gradebookUid
* @param studentUid
* @return a list of the section membership names for the give studentUid
*/
public List getStudentSectionMembershipNames(String gradebookUid, String studentUid);
/**
* Check to see if current user may grade or view the given student for the given item in the given gradebook.
* Returns string representation of function per GradebookService vars (view/grade) or null if no permission
* @param gradebookUid
* @param itemId
* @param studentUid
* @return GradebookService.gradePermission, GradebookService.viewPermission, or null if no permission
*/
public String getGradeViewFunctionForUserForStudentForItem(String gradebookUid, Long itemId, String studentUid);
}