147      * If there is no entry for a group or a principal an empty permission
150      * The group positive permission set is the union of all
152      * The group negative permission set is the union of all
154      * If there is a specific permission that occurs in both
155      * the postive permission set and the negative permission set,
156      * it is removed from both. The group positive and negatoive permission
159      * The individial positive permission set and the individual negative
160      * permission set is then calculated. Again abscence of an entry means
165      * Specifically, individual negative permission set (specific
166      * denial of permissions) overrides the group positive permission set.
167      * And the individual positive permission set override the group negative
168      * permission set.
171      * @return The resulting permission set that the principal is allowed.
222      * has the required permission. If permission is denied
223      * permission false is returned, a true value is returned otherwise.
227      * @param permission the permission that the principal must have.
228      * @return true of the principal has the permission desired, false
231     public boolean checkPermission(Principal principal, Permission permission)
236             if (p.equals(permission))

Indexes created Tue Jul 24 14:28:13 CEST 2018