Authing DocsDocuments
Concept
workflow
Guides
Development Integration
Application integration
Concept
workflow
Guides
Development Integration
Application integration
Old Version
Development Integration
  • Single Sign-On (SSO)
  • Login component

  • JavaScript/Node.js

  • Java / Kotlin

    • User Authentication Module

    • Management Module

      • Management user
      • Management application
      • Management role
      • Management resources and permissions
      • Management groups
      • Management organization
      • Management User Custom Fields
      • Management registration white list
      • Management user pool configuration
      • Management log statistics
  • Python

  • C#

  • PHP

  • Go

  • Ruby
  • Android

  • iOS

  • Flutter

  • React Native
  • WeChat Mini Program
  • WeChat webpage authorization
  • Framework Integration
  • Error code
  1. Development Integration
  2. /
  3. Java / Kotlin
  4. /
  5. Management Module
  6. /
  7. Management resources and permissions

¶ AclManagementClient

Update Time: 2025-02-18 09:00:47
Edit

Authing builds an authorization model based on PBAC (Policy Based Access Control), which can be combined with RBAC (Role Based Access Control) to achieve high flexible and refined privilege control. This client abstracts this model into two methods: allow and isAllowed.

¶ Allow a user to perform an operation on a resource

AclManagementClient().allow(userId, action, resource)

Allow a user to perform an operation on a resource

¶ Parameters:

  • userId <string> User ID
  • action <string> The name of the action, which is recommended to use the format of <resourceType>:<actionName> , such as books:edit, books:list
  • resource <string> Resource name, which must be in the format of <resourceType>:<resourceId> or _, such as _,books:123,books:\*

¶ Example:

CommonMessage message = managementClient.acl().allow("resource", "action").execute();

¶ Check whether a user has operation authority of a resource

AclManagementClient().isAllowed(userId, action, resource)

Check whether a user has operation authority of a resource

¶ Parameters:

  • userId <string> User ID
  • action <string> The name of the action, which is recommended to use the format of <resourceType>:<actionName> , such as books:edit, books:list
  • resource <string> Resource name, which must be in the format of <resourceType>:<resourceId> or _, such as _,books:123,books:\*

¶ Example:

boolean allowed = managementClient.acl().isAllowed("user id", "resource", "action").execute();
Prev: Management role Next: Management groups
  • Allow a user to perform an operation on a resource
  • Check whether a user has operation authority of a resource

User identity management

Integrated third-party login
Mobile phone number flash check (opens new window)
Universal login form component
Custom authentication process

Enterprise internal management

Single Sign On
Multi-factor Authentication
Authority Management

Developers

Development Document
Framework Integration
Blog (opens new window)
GitHub (opens new window)
Community User Center (opens new window)

Company

400 888 2106
sales@authing.cn
16 / F, Block B, NORTH STAR CENTURY CENTER, Beijing(Total)
room 406, 4th floor, zone B, building 1, No. 200, Tianfu Fifth Street, Chengdu(branch)

Beijing ICP No.19051205-1

© Beijing Steamory Technology Co.