
001package ca.uhn.fhir.rest.server.interceptor.auth; 002 003/*- 004 * #%L 005 * HAPI FHIR - Server Framework 006 * %% 007 * Copyright (C) 2014 - 2023 Smile CDR, Inc. 008 * %% 009 * Licensed under the Apache License, Version 2.0 (the "License"); 010 * you may not use this file except in compliance with the License. 011 * You may obtain a copy of the License at 012 * 013 * http://www.apache.org/licenses/LICENSE-2.0 014 * 015 * Unless required by applicable law or agreed to in writing, software 016 * distributed under the License is distributed on an "AS IS" BASIS, 017 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 018 * See the License for the specific language governing permissions and 019 * limitations under the License. 020 * #L% 021 */ 022 023public interface IAuthRuleBuilderOperationNamedAndScoped { 024 025 /** 026 * Responses for this operation will not be checked 027 */ 028 IAuthRuleBuilderRuleOpClassifierFinished andAllowAllResponses(); 029 030 /** 031 * Responses for this operation must be authorized by other rules. For example, if this 032 * rule is authorizing the Patient $everything operation, there must be a separate 033 * rule (or rules) that actually authorize the user to read the 034 * resources being returned 035 */ 036 IAuthRuleBuilderRuleOpClassifierFinished andRequireExplicitResponseAuthorization(); 037 038 039}