(Quick Reference)

userIsAllowed(object, action)

Available in Controllers, Domains, Taglibs and Services

This method returns true if the current user is permitted to perform the specified action on the object.

The implementation of this method is provided by the security provider you have installed.

If a provide does not implement ACLs this will return true.

Usage

class PurchaseService {
    void updatePurchase(Purchase p) {
        if (userIsAllowed(p, 'edit')) {
            …
        }
    }
    …
}

Arguments

NameDescription
objectThe object on which the user is about to perform an action
actionThe action you wish to perform
Quick Reference (hide)

Beans

grailsConventions
grailsEvents
grailsInjection
grailsNavigation
grailsPluginConfiguration
grailsSecurity
grailsUiExtensions

Events Methods

countListeners
event
on
removeListeners
waitFor

Global Properties

pluginConfig

Navigation Tags

menu
primary
secondary
set
title

Plugin Conventions

doWithConfig
doWithConfigOptions

Scripts

update-header

Security Methods

userExists
userHasAllRoles
userHasAnyRole
userIsAllowed
withUser

Security Properties

securityIdentity
securityInfo

Security Tags

createLoginLink
createLogoutLink
createSignupLink
identity
ifLoggedIn
ifNotLoggedIn
ifNotPermitted
ifPermitted
info
loginButton
logoutButton
signupButton

System Tags

config
requiresBean

Ui Extension Methods

displayFlashMessage
displayMessage

Ui Extension Properties

pluginFlash
pluginRequestAttributes
pluginSession

Ui Extension Tags

attrIfSet
button
callTag
displayMessage
dummyText
joinClasses
label
organization
siteLink
siteName
siteURL
smartLink
text
textScope
year

Utility Classes

TagLibUtils