Scala Visibility Access Control Private Protected Encapsulation API Design Security

August 31, 2025

Visibility and Access Control: Securing Your Code

Master advanced access control techniques, create clean APIs, and implement security through proper encapsulation in Scala.

Lesson 19 🚀 Practice

Visibility and Access Control: Securing Your Code

Introduction

Proper access control is fundamental to writing secure, maintainable code. Scala provides sophisticated visibility modifiers that go beyond simple public/private access, allowing you to create clean APIs, enforce encapsulation, and control how your code is used by others. Understanding these mechanisms is crucial for building robust applications and libraries.

This lesson will teach you how to use Scala's access modifiers effectively, design clean public interfaces, protect internal implementation details, and create secure, well-encapsulated code structures.

Access Modifier Fundamentals

Basic Access Levels

package com.company.banking

class BankAccount(private val accountNumber: String) {
  // Private - only accessible within this instance
  private var _balance: BigDecimal = BigDecimal(0)
  private val transactionHistory: scala.collection.mutable.ListBuffer[String] = 
    scala.collection.mutable.ListBuffer.empty

  // Protected - accessible in subclasses
  protected def logTransaction(description: String): Unit = {
    val timestamp = java.time.LocalDateTime.now()
    transactionHistory += s"[$timestamp] $description"
  }

  // Package-private - accessible within the banking package
  private[banking] def getInternalId(): String = s"INTERNAL_${accountNumber}"

  // Public - accessible from anywhere (default visibility)
  def balance: BigDecimal = _balance

  def deposit(amount: BigDecimal): Either[String, BigDecimal] = {
    if (amount <= 0) {
      Left("Deposit amount must be positive")
    } else {
      _balance += amount
      logTransaction(s"Deposit: +$amount")
      Right(_balance)
    }
  }

  def withdraw(amount: BigDecimal): Either[String, BigDecimal] = {
    if (amount <= 0) {
      Left("Withdrawal amount must be positive")
    } else if (amount > _balance) {
      Left("Insufficient funds")
    } else {
      _balance -= amount
      logTransaction(s"Withdrawal: -$amount")
      Right(_balance)
    }
  }

  // Public method that uses private data
  def getStatement(): String = {
    val header = s"Account: $accountNumber\nBalance: $balance\n${"-" * 30}\n"
    val transactions = transactionHistory.takeRight(10).mkString("\n")
    header + transactions
  }
}

// Subclass demonstrating protected access
class SavingsAccount(accountNumber: String, val interestRate: Double) 
  extends BankAccount(accountNumber) {

  def applyInterest(): BigDecimal = {
    val interest = balance * BigDecimal(interestRate / 100)
    if (interest > 0) {
      val _ = deposit(interest)  // This will work - deposit is public
      logTransaction(s"Interest applied: +$interest at ${interestRate}%")  // Protected access
    }
    balance
  }

  // Cannot access private members
  // def getAccountNumber(): String = accountNumber  // This would not compile
  // def getBalance(): BigDecimal = _balance  // This would not compile
}

// Another class in the same package
class BankingSystem {
  private val accounts: scala.collection.mutable.Map[String, BankAccount] = 
    scala.collection.mutable.Map.empty

  def createAccount(accountNumber: String): BankAccount = {
    val account = new BankAccount(accountNumber)
    accounts(accountNumber) = account
    account
  }

  def getAccountDetails(accountNumber: String): Option[String] = {
    accounts.get(accountNumber).map { account =>
      // Can access package-private method
      s"Account Details - Internal ID: ${account.getInternalId()}, Balance: ${account.balance}"
    }
  }
}

// Usage
val account = new BankAccount("ACC12345")
account.deposit(BigDecimal("1000"))
account.withdraw(BigDecimal("250"))
println(account.getStatement())

val savings = new SavingsAccount("SAV67890", 2.5)
savings.deposit(BigDecimal("5000"))
savings.applyInterest()
println(s"Savings balance after interest: ${savings.balance}")

Qualified Private Access

package com.company.security

// Outer scope for qualified private access
package object security {
  // Package-level utility
  private[security] def generateSecretKey(): String = {
    java.util.UUID.randomUUID().toString.replace("-", "")
  }
}

class CryptoManager {
  // Private to the security package
  private[security] val masterKey: String = generateSecretKey()

  // Private to the company scope
  private[company] val systemSalt: String = "COMPANY_SALT_2023"

  // Private to this class only
  private val internalConfig: Map[String, String] = Map(
    "algorithm" -> "AES-256",
    "mode" -> "GCM",
    "padding" -> "NoPadding"
  )

  // Public API
  def encrypt(data: String, userKey: String): String = {
    val key = combineKeys(userKey)
    performEncryption(data, key)
  }

  def decrypt(encryptedData: String, userKey: String): String = {
    val key = combineKeys(userKey)
    performDecryption(encryptedData, key)
  }

  // Package-private helper methods
  private[security] def combineKeys(userKey: String): String = {
    s"${masterKey}_${userKey}_${systemSalt}".hashCode.toHexString
  }

  // Private implementation details
  private def performEncryption(data: String, key: String): String = {
    // Simplified encryption for example
    val algorithm = internalConfig("algorithm")
    s"ENCRYPTED[$algorithm]:${data.reverse}:$key"
  }

  private def performDecryption(encryptedData: String, key: String): String = {
    // Simplified decryption for example
    val pattern = """ENCRYPTED\[([^\]]+)\]:([^:]+):(.+)""".r
    encryptedData match {
      case pattern(algorithm, reversedData, encKey) if encKey == key =>
        reversedData.reverse
      case _ => throw new IllegalArgumentException("Invalid encrypted data or key")
    }
  }
}

class SecurityAuditor {
  // Can access package-private members
  def auditCryptoManager(manager: CryptoManager): String = {
    s"Master Key Present: ${manager.masterKey.nonEmpty}, " +
    s"System Salt: ${manager.systemSalt}"
  }

  def generateAuditKey(): String = {
    generateSecretKey()  // Package-private function
  }
}

// Different package scope
package com.company.admin {
  import com.company.security.CryptoManager

  class SystemAdmin {
    private val crypto = new CryptoManager()

    def getSystemInfo(): String = {
      // Can access company-level private members
      s"System Salt: ${crypto.systemSalt}"

      // Cannot access security package private members
      // val key = crypto.masterKey  // This would not compile
    }
  }
}

// Usage demonstrating access levels
val crypto = new CryptoManager()
val auditor = new SecurityAuditor()

val plaintext = "Sensitive Data"
val userKey = "user123"

val encrypted = crypto.encrypt(plaintext, userKey)
println(s"Encrypted: $encrypted")

val decrypted = crypto.decrypt(encrypted, userKey)
println(s"Decrypted: $decrypted")

println(auditor.auditCryptoManager(crypto))

Protected Access and Inheritance

Protected Members in Class Hierarchies

abstract class Vehicle(protected val vin: String) {
  // Protected fields accessible in subclasses
  protected var _mileage: Double = 0.0
  protected val _manufactureDate: java.time.LocalDate = java.time.LocalDate.now()

  // Protected methods
  protected def updateMileage(miles: Double): Unit = {
    require(miles >= _mileage, "Mileage cannot decrease")
    _mileage = miles
  }

  protected def validateVin(vin: String): Boolean = {
    vin.length == 17 && vin.matches("[A-HJ-NPR-Z0-9]+")
  }

  // Public interface
  def mileage: Double = _mileage
  def age: java.time.Period = java.time.Period.between(_manufactureDate, java.time.LocalDate.now())

  // Abstract methods for subclasses
  def fuelType: String
  def maxSpeed: Int
}

class Car(vin: String, val make: String, val model: String) extends Vehicle(vin) {
  require(validateVin(vin), "Invalid VIN")  // Using protected method

  // Private to Car class
  private val _features: scala.collection.mutable.Set[String] = 
    scala.collection.mutable.Set.empty

  // Protected method accessible to Car subclasses
  protected def addFeature(feature: String): Unit = {
    _features += feature
  }

  // Public methods
  def fuelType: String = "Gasoline"
  def maxSpeed: Int = 120  // mph

  def addMiles(miles: Double): Unit = {
    updateMileage(_mileage + miles)  // Using protected method
  }

  def features: Set[String] = _features.toSet

  def getVehicleInfo(): String = {
    s"$make $model (VIN: $vin), Mileage: ${_mileage}, Age: ${age.getYears} years"
  }
}

class ElectricCar(vin: String, make: String, model: String, val batteryCapacity: Double) 
  extends Car(vin, make, model) {

  // Electric car specific features
  private var _batteryLevel: Double = 100.0

  // Can access protected members from parent classes
  def initializeElectricFeatures(): Unit = {
    addFeature("Electric Motor")      // Protected from Car
    addFeature("Regenerative Braking")
    addFeature("Silent Operation")

    // Can access protected field from Vehicle
    println(s"Initializing electric features for VIN: $vin")
  }

  override def fuelType: String = "Electric"
  override def maxSpeed: Int = 150  // Electric cars can be faster

  def batteryLevel: Double = _batteryLevel

  def charge(percentage: Double): Unit = {
    require(percentage >= 0 && percentage <= 100, "Invalid battery percentage")
    _batteryLevel = percentage

    // Record charging as "mileage event"
    if (percentage > 90) {
      // Can access protected method to log significant events
      updateMileage(_mileage)  // Just to demonstrate access
    }
  }
}

// Motorcycle in the same hierarchy
class Motorcycle(vin: String, val brand: String, val engineSize: Int) extends Vehicle(vin) {
  require(validateVin(vin), "Invalid VIN")  // Using protected validation

  def fuelType: String = "Gasoline"
  def maxSpeed: Int = 180  // Motorcycles can be fast

  def performMaintenance(): Unit = {
    // Access protected mileage for maintenance scheduling
    if (_mileage > 10000) {
      println(s"$brand motorcycle needs major service at ${_mileage} miles")
    }
  }

  def ride(miles: Double): Unit = {
    updateMileage(_mileage + miles)  // Using protected method
  }
}

// Cannot access protected members from outside the hierarchy
class VehicleInspector {
  def inspect(vehicle: Vehicle): String = {
    // Can only access public members
    s"Vehicle mileage: ${vehicle.mileage}, Age: ${vehicle.age.getYears} years"

    // Cannot access protected members
    // vehicle._mileage  // This would not compile
    // vehicle.updateMileage(1000)  // This would not compile
  }
}

// Usage
val car = new Car("1HGCM82633A123456", "Honda", "Accord")
car.addMiles(15000)
println(car.getVehicleInfo())

val electricCar = new ElectricCar("5YJ3E1EA4JF123456", "Tesla", "Model 3", 75.0)
electricCar.initializeElectricFeatures()
electricCar.addMiles(5000)
electricCar.charge(85.0)
println(s"Electric car features: ${electricCar.features}")
println(s"Battery level: ${electricCar.batteryLevel}%")

val motorcycle = new Motorcycle("JH2RC5009GM123456", "Honda", 600)
motorcycle.ride(12000)
motorcycle.performMaintenance()

val inspector = new VehicleInspector()
println(inspector.inspect(car))
println(inspector.inspect(electricCar))
println(inspector.inspect(motorcycle))

API Design with Access Control

Creating Clean Public Interfaces

package com.company.collections

// Public trait defining the contract
trait SafeCollection[T] {
  def add(item: T): Boolean
  def remove(item: T): Boolean
  def contains(item: T): Boolean
  def size: Int
  def isEmpty: Boolean
  def toList: List[T]
}

// Internal implementation details hidden through access control
class ThreadSafeSet[T] private(
  private val maxSize: Int,
  private val allowDuplicates: Boolean
) extends SafeCollection[T] {

  // Private internal state
  private val items: scala.collection.mutable.Set[T] = 
    scala.collection.concurrent.TrieMap.empty[T, Unit].keySet
  private val lock = new java.util.concurrent.ReentrantReadWriteLock()

  // Private helper methods
  private def withReadLock[R](operation: => R): R = {
    lock.readLock().lock()
    try operation finally lock.readLock().unlock()
  }

  private def withWriteLock[R](operation: => R): R = {
    lock.writeLock().lock()
    try operation finally lock.writeLock().unlock()
  }

  // Protected methods for potential subclassing
  protected def validateItem(item: T): Boolean = item != null
  protected def onItemAdded(item: T): Unit = {}
  protected def onItemRemoved(item: T): Unit = {}

  // Public API implementation
  def add(item: T): Boolean = withWriteLock {
    if (!validateItem(item)) {
      false
    } else if (items.size >= maxSize && !items.contains(item)) {
      false  // Max size reached
    } else {
      val added = items.add(item)
      if (added) onItemAdded(item)
      added
    }
  }

  def remove(item: T): Boolean = withWriteLock {
    val removed = items.remove(item)
    if (removed) onItemRemoved(item)
    removed
  }

  def contains(item: T): Boolean = withReadLock {
    items.contains(item)
  }

  def size: Int = withReadLock {
    items.size
  }

  def isEmpty: Boolean = withReadLock {
    items.isEmpty
  }

  def toList: List[T] = withReadLock {
    items.toList
  }

  // Package-private methods for internal use
  private[collections] def getCapacity: Int = maxSize
  private[collections] def getCurrentLoad: Double = size.toDouble / maxSize
}

// Companion object with factory methods (public API)
object ThreadSafeSet {
  // Primary factory method
  def apply[T](maxSize: Int = 1000): ThreadSafeSet[T] = {
    require(maxSize > 0, "Max size must be positive")
    new ThreadSafeSet[T](maxSize, false)
  }

  // Factory methods for different use cases
  def withCapacity[T](capacity: Int): ThreadSafeSet[T] = {
    require(capacity > 0, "Capacity must be positive")
    new ThreadSafeSet[T](capacity, false)
  }

  def unbounded[T](): ThreadSafeSet[T] = {
    new ThreadSafeSet[T](Int.MaxValue, false)
  }

  // Factory from existing collection
  def from[T](items: Iterable[T], maxSize: Int = 1000): ThreadSafeSet[T] = {
    val set = new ThreadSafeSet[T](maxSize, false)
    items.foreach(set.add)
    set
  }
}

// Specialized subclass with additional behavior
class AuditedSet[T](maxSize: Int) extends ThreadSafeSet[T](maxSize, false) {
  // Private audit log
  private val auditLog: scala.collection.mutable.ListBuffer[String] = 
    scala.collection.mutable.ListBuffer.empty

  // Override protected methods to add auditing
  override protected def onItemAdded(item: T): Unit = {
    super.onItemAdded(item)
    auditLog += s"ADDED: $item at ${java.time.LocalDateTime.now()}"
  }

  override protected def onItemRemoved(item: T): Unit = {
    super.onItemRemoved(item)
    auditLog += s"REMOVED: $item at ${java.time.LocalDateTime.now()}"
  }

  // Public method to access audit log
  def getAuditLog: List[String] = auditLog.toList

  def clearAuditLog(): Unit = auditLog.clear()
}

// Package-private utility class
private[collections] class CollectionMonitor {
  def monitorCollection[T](collection: ThreadSafeSet[T]): String = {
    // Can access package-private methods
    val capacity = collection.getCapacity
    val load = collection.getCurrentLoad
    val usage = f"${load * 100}%.1f%%"

    s"Collection Monitor: $usage full (${collection.size}/$capacity)"
  }
}

// Usage examples
val regularSet = ThreadSafeSet.withCapacity[String](100)
regularSet.add("item1")
regularSet.add("item2")
regularSet.add("item3")

println(s"Regular set size: ${regularSet.size}")
println(s"Contains item2: ${regularSet.contains("item2")}")

val auditedSet = new AuditedSet[Int](50)
auditedSet.add(1)
auditedSet.add(2)
auditedSet.remove(1)

println(s"Audited set size: ${auditedSet.size}")
println("Audit log:")
auditedSet.getAuditLog.foreach(println)

// Package-private monitor usage
val monitor = new CollectionMonitor()
println(monitor.monitorCollection(regularSet))
println(monitor.monitorCollection(auditedSet))

Builder Pattern with Access Control

package com.company.http

// Public interface
trait HttpRequest {
  def method: String
  def url: String
  def headers: Map[String, String]
  def body: Option[String]
  def timeout: Int
  def execute(): HttpResponse
}

trait HttpResponse {
  def status: Int
  def headers: Map[String, String]
  def body: String
  def isSuccess: Boolean = status >= 200 && status < 300
}

// Internal implementation
private[http] class HttpRequestImpl(
  val method: String,
  val url: String,
  val headers: Map[String, String],
  val body: Option[String],
  val timeout: Int
) extends HttpRequest {

  def execute(): HttpResponse = {
    // Simulate HTTP request execution
    Thread.sleep(100)  // Simulate network delay

    new HttpResponseImpl(
      status = 200,
      headers = Map("Content-Type" -> "application/json"),
      body = s"""{"method": "$method", "url": "$url", "status": "success"}"""
    )
  }
}

private[http] class HttpResponseImpl(
  val status: Int,
  val headers: Map[String, String],
  val body: String
) extends HttpResponse

// Builder with fluent interface and validation
class HttpRequestBuilder private() {
  // Private mutable state
  private var _method: String = "GET"
  private var _url: String = ""
  private var _headers: Map[String, String] = Map.empty
  private var _body: Option[String] = None
  private var _timeout: Int = 30000  // 30 seconds default

  // Private validation methods
  private def validateUrl(url: String): Either[String, String] = {
    if (url.isEmpty) Left("URL cannot be empty")
    else if (!url.startsWith("http://") && !url.startsWith("https://")) Left("URL must start with http:// or https://")
    else Right(url)
  }

  private def validateMethod(method: String): Either[String, String] = {
    val validMethods = Set("GET", "POST", "PUT", "DELETE", "PATCH", "HEAD", "OPTIONS")
    if (validMethods.contains(method.toUpperCase)) Right(method.toUpperCase)
    else Left(s"Invalid HTTP method: $method")
  }

  private def validateTimeout(timeout: Int): Either[String, Int] = {
    if (timeout < 1000) Left("Timeout must be at least 1000ms")
    else if (timeout > 300000) Left("Timeout cannot exceed 300000ms (5 minutes)")
    else Right(timeout)
  }

  // Fluent builder methods
  def method(method: String): HttpRequestBuilder = {
    validateMethod(method) match {
      case Right(validMethod) => _method = validMethod
      case Left(error) => throw new IllegalArgumentException(error)
    }
    this
  }

  def url(url: String): HttpRequestBuilder = {
    validateUrl(url) match {
      case Right(validUrl) => _url = validUrl
      case Left(error) => throw new IllegalArgumentException(error)
    }
    this
  }

  def header(key: String, value: String): HttpRequestBuilder = {
    require(key.nonEmpty, "Header key cannot be empty")
    require(value.nonEmpty, "Header value cannot be empty")
    _headers = _headers + (key -> value)
    this
  }

  def headers(headers: Map[String, String]): HttpRequestBuilder = {
    headers.foreach { case (k, v) => header(k, v) }
    this
  }

  def body(body: String): HttpRequestBuilder = {
    _body = Some(body)
    this
  }

  def jsonBody(json: String): HttpRequestBuilder = {
    _body = Some(json)
    header("Content-Type", "application/json")
  }

  def timeout(timeoutMs: Int): HttpRequestBuilder = {
    validateTimeout(timeoutMs) match {
      case Right(validTimeout) => _timeout = validTimeout
      case Left(error) => throw new IllegalArgumentException(error)
    }
    this
  }

  // Build method with final validation
  def build(): Either[String, HttpRequest] = {
    if (_url.isEmpty) {
      Left("URL is required")
    } else if (_method == "POST" || _method == "PUT" || _method == "PATCH") {
      if (_body.isEmpty) {
        Left(s"${_method} requests require a body")
      } else {
        Right(new HttpRequestImpl(_method, _url, _headers, _body, _timeout))
      }
    } else {
      Right(new HttpRequestImpl(_method, _url, _headers, _body, _timeout))
    }
  }

  // Convenience method that throws on validation error
  def buildUnsafe(): HttpRequest = {
    build() match {
      case Right(request) => request
      case Left(error) => throw new IllegalStateException(s"Cannot build request: $error")
    }
  }
}

// Companion object with factory methods
object HttpRequestBuilder {
  def create(): HttpRequestBuilder = new HttpRequestBuilder()

  // Convenience factory methods
  def get(url: String): HttpRequestBuilder = create().method("GET").url(url)
  def post(url: String): HttpRequestBuilder = create().method("POST").url(url)
  def put(url: String): HttpRequestBuilder = create().method("PUT").url(url)
  def delete(url: String): HttpRequestBuilder = create().method("DELETE").url(url)
}

// Public facade object for the HTTP client
object HttpClient {
  def request(): HttpRequestBuilder = HttpRequestBuilder.create()

  def get(url: String): HttpRequestBuilder = HttpRequestBuilder.get(url)
  def post(url: String): HttpRequestBuilder = HttpRequestBuilder.post(url)
  def put(url: String): HttpRequestBuilder = HttpRequestBuilder.put(url)
  def delete(url: String): HttpRequestBuilder = HttpRequestBuilder.delete(url)

  // Convenience methods for simple requests
  def simpleGet(url: String): HttpResponse = {
    get(url).buildUnsafe().execute()
  }

  def simplePost(url: String, jsonBody: String): HttpResponse = {
    post(url).jsonBody(jsonBody).buildUnsafe().execute()
  }
}

// Usage examples
val response1 = HttpClient.simpleGet("https://api.example.com/users")
println(s"Response: ${response1.status} - ${response1.body}")

val request = HttpClient.post("https://api.example.com/users")
  .header("Authorization", "Bearer token123")
  .jsonBody("""{"name": "John", "email": "john@example.com"}""")
  .timeout(60000)
  .build()

request match {
  case Right(req) =>
    val response = req.execute()
    println(s"Created user: ${response.status} - ${response.isSuccess}")
  case Left(error) =>
    println(s"Request validation failed: $error")
}

// Builder pattern allows for readable, validated construction
val complexRequest = HttpClient.request()
  .method("PUT")
  .url("https://api.example.com/users/123")
  .headers(Map(
    "Authorization" -> "Bearer token123",
    "X-Client-Version" -> "1.0.0",
    "Accept" -> "application/json"
  ))
  .jsonBody("""{"name": "John Doe", "active": true}""")
  .timeout(120000)
  .buildUnsafe()

val updateResponse = complexRequest.execute()
println(s"Update response: ${updateResponse.status}")

Summary

In this lesson, you've mastered visibility and access control in Scala:

✅ Access Modifiers: Private, protected, and package-private visibility
✅ Qualified Access: Fine-grained control with package-level privacy
✅ Protected Inheritance: Sharing implementation details with subclasses
✅ API Design: Creating clean public interfaces while hiding implementation
✅ Builder Patterns: Using access control for safe object construction
✅ Encapsulation: Protecting internal state and maintaining invariants

Proper access control is essential for creating maintainable, secure code that provides clear contracts between different parts of your application.

What's Next

In the next lesson, we'll explore "The Apply Method: Making Objects Callable." You'll learn how to use the apply method to create function-like syntax for objects, implement factory patterns elegantly, and make your APIs more intuitive and concise.

This will complete your understanding of Scala's core object-oriented features and introduce you to one of Scala's most distinctive syntactic features.

Ready to master the apply method? Let's continue!

🚀 Practice Exercises

Put your knowledge to practice with hands-on coding exercises

Beginner ⏱️ 20 min

Instructions

Create a simple bank account system that demonstrates different access modifiers and encapsulation principles.
Your program should:
1. Create a BankAccount class with private fields and public methods
2. Use protected members for inheritance
3. Demonstrate package-private access within the same package
4. Show proper encapsulation with getter/setter methods
5. Implement validation to protect data integrity
Requirements:
- Use private fields for sensitive data (balance, account number)
- Provide public methods for safe operations (deposit, withdraw)
- Use protected methods for inheritance scenarios
- Show package-private access for related classes
- Implement proper validation and error handling
Example usage:
val account = new BankAccount("12345", 1000.0)
account.deposit(500.0)
account.withdraw(200.0)
println(account.getBalance) // Cannot access balance directly

Interactive Playground

⚠️ Spoiler Alert! Try to solve the exercise yourself first. Learning happens through practice!

package com.bank.accounts

import java.time.LocalDateTime

// Helper class in same package - can access package-private members
class TransactionLogger {
  private var transactions: List[String] = List.empty

  // Package-private method (no access modifier)
  def logTransaction(transaction: String): Unit = {
    transactions = s"${LocalDateTime.now()}: $transaction" :: transactions
  }

  def getTransactionHistory: List[String] = transactions.reverse

  def clearHistory(): Unit = transactions = List.empty
}

// Base account class demonstrating access modifiers
class BankAccount(
  private val accountNumber: String,  // Private - only this class can access
  private var balance: Double         // Private and mutable
) {

  // Private fields
  private val createdAt: LocalDateTime = LocalDateTime.now()
  private var isActive: Boolean = true
  private val minBalance: Double = 0.0

  // Package-private logger (same package can access)
  protected[accounts] val logger = new TransactionLogger()

  // Protected fields (accessible by subclasses)
  protected var lastTransactionTime: LocalDateTime = createdAt
  protected val accountType: String = "Basic"

  // Public method to access private balance
  def getBalance: Double = {
    require(isActive, "Account is not active")
    balance
  }

  // Public method to access private account number
  def getAccountNumber: String = accountNumber

  // Public method with validation
  def deposit(amount: Double): Either[String, Double] = {
    require(isActive, "Account is not active")

    if (amount <= 0) {
      Left("Deposit amount must be positive")
    } else {
      balance += amount
      lastTransactionTime = LocalDateTime.now()
      logger.logTransaction(s"Deposited $$${amount}. New balance: $$${balance}")
      Right(balance)
    }
  }

  // Public method with validation and private method call
  def withdraw(amount: Double): Either[String, Double] = {
    require(isActive, "Account is not active")

    if (amount <= 0) {
      Left("Withdrawal amount must be positive")
    } else if (!canWithdraw(amount)) {  // Call private method
      Left("Insufficient funds")
    } else {
      balance -= amount
      lastTransactionTime = LocalDateTime.now()
      logger.logTransaction(s"Withdrew $$${amount}. New balance: $$${balance}")
      Right(balance)
    }
  }

  // Private method - internal validation logic
  private def canWithdraw(amount: Double): Boolean = {
    (balance - amount) >= minBalance
  }

  // Protected method - accessible by subclasses
  protected def updateBalance(newBalance: Double): Unit = {
    require(newBalance >= minBalance, s"Balance cannot be below $minBalance")
    balance = newBalance
    lastTransactionTime = LocalDateTime.now()
  }

  // Protected method for subclasses
  protected def getTransactionCount: Int = logger.getTransactionHistory.length

  // Public method to check account status
  def isAccountActive: Boolean = isActive

  // Public method to deactivate account
  def deactivate(): Unit = {
    isActive = false
    logger.logTransaction("Account deactivated")
  }

  // Public method to get account info (controlled access)
  def getAccountInfo: String = {
    val status = if (isActive) "Active" else "Inactive"
    s"Account $accountNumber ($accountType): $$${balance} - $status"
  }

  // Public method to get transaction history
  def getTransactionHistory: List[String] = logger.getTransactionHistory
}

// Subclass demonstrating protected access
class SavingsAccount(
  accountNumber: String,
  initialBalance: Double,
  private val interestRate: Double = 0.02
) extends BankAccount(accountNumber, initialBalance) {

  // Override protected field
  override protected val accountType: String = "Savings"

  // Private field specific to savings
  private var lastInterestApplication: LocalDateTime = LocalDateTime.now()

  // Public method that uses protected members
  def applyInterest(): Either[String, Double] = {
    if (!isAccountActive) {
      Left("Cannot apply interest to inactive account")
    } else {
      val currentBalance = getBalance
      val interest = currentBalance * interestRate
      updateBalance(currentBalance + interest)  // Use protected method
      lastInterestApplication = LocalDateTime.now()

      logger.logTransaction(s"Applied interest: $$${interest} at ${interestRate * 100}% rate")
      Right(getBalance)
    }
  }

  // Public method showing access to protected members
  def getAccountDetails: String = {
    val baseInfo = getAccountInfo
    val transactionCount = getTransactionCount  // Access protected method
    val daysSinceCreation = java.time.Duration.between(lastTransactionTime, LocalDateTime.now()).toDays

    s"$baseInfo | Transactions: $transactionCount | Days since last transaction: $daysSinceCreation"
  }

  // Public getter for private field (controlled access)
  def getInterestRate: Double = interestRate
}

// Another class in same package - can access package-private members
class BankManager {
  // Can access package-private members of accounts in same package
  def auditAccount(account: BankAccount): String = {
    // Can access package-private logger
    val transactionCount = account.logger.getTransactionHistory.length
    s"Account ${account.getAccountNumber}: $transactionCount transactions"
  }

  def clearAccountHistory(account: BankAccount): Unit = {
    // Can access package-private logger methods
    account.logger.clearHistory()
  }
}

// Test the access control system
object BankingSystem extends App {
  println("=== Banking System with Access Control ===")

  // Create accounts
  val basicAccount = new BankAccount("ACC001", 1000.0)
  val savingsAccount = new SavingsAccount("SAV001", 5000.0, 0.03)
  val manager = new BankManager()

  println("=== Basic Account Operations ===")
  println(basicAccount.getAccountInfo)

  // Public methods work fine
  basicAccount.deposit(500.0) match {
    case Right(newBalance) => println(s"Deposit successful. New balance: $$${newBalance}")
    case Left(error) => println(s"Deposit failed: $error")
  }

  basicAccount.withdraw(200.0) match {
    case Right(newBalance) => println(s"Withdrawal successful. New balance: $$${newBalance}")
    case Left(error) => println(s"Withdrawal failed: $error")
  }

  // Try to withdraw too much
  basicAccount.withdraw(2000.0) match {
    case Right(newBalance) => println(s"Large withdrawal successful: $$${newBalance}")
    case Left(error) => println(s"Large withdrawal failed: $error")
  }

  println(s"Account active: ${basicAccount.isAccountActive}")
  println()

  println("=== Savings Account with Interest ===")
  println(savingsAccount.getAccountInfo)
  println(s"Interest rate: ${savingsAccount.getInterestRate * 100}%")

  savingsAccount.deposit(1000.0)
  savingsAccount.applyInterest() match {
    case Right(newBalance) => println(s"Interest applied. New balance: $$${newBalance}")
    case Left(error) => println(s"Interest application failed: $error")
  }

  println(savingsAccount.getAccountDetails)
  println()

  println("=== Transaction History ===")
  basicAccount.getTransactionHistory.foreach(println)
  println()

  println("=== Bank Manager Audit ===")
  println(manager.auditAccount(basicAccount))
  println(manager.auditAccount(savingsAccount))

  // Clear history using manager (package-private access)
  manager.clearAccountHistory(basicAccount)
  println("Cleared basic account history")
  println(s"Basic account transactions after clear: ${basicAccount.getTransactionHistory.length}")

  println()

  println("=== Access Control Demonstration ===")
  // These would cause compilation errors if uncommented:
  // println(basicAccount.balance)  // Error: balance is private
  // println(basicAccount.accountNumber)  // Error: accountNumber is private
  // basicAccount.updateBalance(5000.0)  // Error: updateBalance is protected
  // basicAccount.canWithdraw(100.0)  // Error: canWithdraw is private

  // But these work because they're public:
  println(s"Account number (via getter): ${basicAccount.getAccountNumber}")
  println(s"Balance (via getter): ${basicAccount.getBalance}")

  // Deactivate account
  basicAccount.deactivate()
  println(s"Account active after deactivation: ${basicAccount.isAccountActive}")

  // Try operations on inactive account
  basicAccount.deposit(100.0) match {
    case Right(_) => println("Deposit on inactive account succeeded")
    case Left(error) => println(s"Deposit on inactive account failed: $error")
  }
}

Advanced ⏱️ 40 min

Instructions

Build a comprehensive Enterprise Banking System that demonstrates sophisticated access control mechanisms, package-private visibility, protected members, sealed hierarchies, companion object access, and complex security boundaries for financial applications.
Your program should:
1. Design multiple access levels for banking operations
2. Implement package-private financial calculations
3. Create protected inheritance hierarchies for account types
4. Build secure audit trails with controlled access
5. Design sealed trait hierarchies for transaction types
6. Implement companion object security controls
7. Create internal APIs with restricted access
8. Build role-based access control systems
Requirements:
- Use all Scala visibility modifiers (private, protected, package-private)
- Implement sealed trait hierarchies for type safety
- Create companion objects with controlled access
- Design protected inheritance patterns
- Build internal package APIs
- Implement audit logging with access control
- Create role-based permission systems
- Handle sensitive financial data securely
Example usage:
val bank = new Bank("SecureBank")
val manager = new BankManager("Alice", bank)
val account = manager.createAccount("12345", AccountType.Premium, 10000.0)
val transaction = account.deposit(500.0)

Interactive Playground

⚠️ Spoiler Alert! Try to solve the exercise yourself first. Learning happens through practice!

// Root banking package
package com.enterprise.banking

import java.time.Instant
import java.util.UUID
import scala.collection.mutable
import scala.util.{Try, Success, Failure}

// Package object with shared utilities and type aliases
package object banking {
  type AccountNumber = String
  type TransactionId = String
  type Amount = BigDecimal
  type CurrencyCode = String

  // Package-private constants
  private[banking] val MIN_BALANCE = BigDecimal(0)
  private[banking] val MAX_DAILY_WITHDRAWAL = BigDecimal(5000)
  private[banking] val AUDIT_RETENTION_DAYS = 2555 // 7 years

  // Package-private validation utilities
  private[banking] object ValidationUtils {
    def isValidAccountNumber(accountNumber: AccountNumber): Boolean = {
      accountNumber.matches("""^\d{5,12}$""")
    }

    def isValidAmount(amount: Amount): Boolean = {
      amount > 0 && amount.scale <= 2
    }

    def isValidCurrency(currency: CurrencyCode): Boolean = {
      Set("USD", "EUR", "GBP", "JPY").contains(currency)
    }
  }

  // Internal exception types
  private[banking] class InsufficientFundsException(message: String) extends Exception(message)
  private[banking] class InvalidTransactionException(message: String) extends Exception(message)
  private[banking] class AccessDeniedException(message: String) extends Exception(message)
}

// Core banking domain models
package com.enterprise.banking.domain {

  import com.enterprise.banking._
  import com.enterprise.banking.security._
  import com.enterprise.banking.audit._

  // Sealed trait hierarchy for account types - controlled extension
  sealed trait AccountType {
    def minimumBalance: Amount
    def overdraftLimit: Amount
    def dailyWithdrawalLimit: Amount
    def monthlyFeeAmount: Amount
  }

  object AccountType {
    case object Basic extends AccountType {
      val minimumBalance = BigDecimal(100)
      val overdraftLimit = BigDecimal(0)
      val dailyWithdrawalLimit = BigDecimal(500)
      val monthlyFeeAmount = BigDecimal(5)
    }

    case object Premium extends AccountType {
      val minimumBalance = BigDecimal(1000)
      val overdraftLimit = BigDecimal(1000)
      val dailyWithdrawalLimit = BigDecimal(2000)
      val monthlyFeeAmount = BigDecimal(0)
    }

    case object VIP extends AccountType {
      val minimumBalance = BigDecimal(10000)
      val overdraftLimit = BigDecimal(5000)
      val dailyWithdrawalLimit = BigDecimal(10000)
      val monthlyFeeAmount = BigDecimal(0)
    }

    // Private constructor - can only create through companion object
    private case class Custom(
      minimumBalance: Amount,
      overdraftLimit: Amount,
      dailyWithdrawalLimit: Amount,
      monthlyFeeAmount: Amount
    ) extends AccountType

    // Package-private factory for custom account types
    private[banking] def createCustom(
      minBalance: Amount,
      overdraft: Amount,
      withdrawalLimit: Amount,
      monthlyFee: Amount
    ): AccountType = Custom(minBalance, overdraft, withdrawalLimit, monthlyFee)
  }

  // Sealed trait hierarchy for transaction types
  sealed trait TransactionType {
    def code: String
    def description: String
    def requiresApproval: Boolean
  }

  object TransactionType {
    case object Deposit extends TransactionType {
      val code = "DEP"
      val description = "Deposit"
      val requiresApproval = false
    }

    case object Withdrawal extends TransactionType {
      val code = "WTD"
      val description = "Withdrawal"
      val requiresApproval = false
    }

    case object Transfer extends TransactionType {
      val code = "TRF"
      val description = "Transfer"
      val requiresApproval = false
    }

    case object LargeCashWithdrawal extends TransactionType {
      val code = "LCW"
      val description = "Large Cash Withdrawal"
      val requiresApproval = true
    }

    case object InternationalTransfer extends TransactionType {
      val code = "ITF"
      val description = "International Transfer"
      val requiresApproval = true
    }
  }

  // Base person class with protected fields
  abstract class Person(
    protected val id: String,
    protected val firstName: String,
    protected val lastName: String
  ) {
    // Public read-only access to name
    def fullName: String = s"$firstName $lastName"

    // Protected method accessible to subclasses
    protected def validateIdentity(): Boolean = {
      id.nonEmpty && firstName.nonEmpty && lastName.nonEmpty
    }

    // Package-private access for banking operations
    private[banking] def getInternalId: String = id
  }

  // Customer class with restricted access patterns
  class Customer private (
    id: String,
    firstName: String,
    lastName: String,
    private val ssn: String,
    private var creditScore: Int
  ) extends Person(id, firstName, lastName) {

    // Private mutable collection of accounts
    private val _accounts = mutable.Set[Account]()

    // Public read-only view of accounts
    def accounts: Set[Account] = _accounts.toSet

    // Package-private method for adding accounts (only bank can do this)
    private[banking] def addAccount(account: Account): Unit = {
      _accounts += account
    }

    private[banking] def removeAccount(account: Account): Unit = {
      _accounts -= account
    }

    // Protected method for credit score access (for bank employees)
    protected def getCreditScore: Int = creditScore

    // Private method for internal credit score updates
    private def updateCreditScore(newScore: Int): Unit = {
      require(newScore >= 300 && newScore <= 850, "Invalid credit score")
      creditScore = newScore
    }

    // Package-private method for bank to update credit score
    private[banking] def adjustCreditScore(newScore: Int)(implicit accessor: BankEmployee): Unit = {
      if (accessor.hasPermission(Permission.UpdateCreditScore)) {
        updateCreditScore(newScore)
        AuditLogger.log(AuditEvent.CreditScoreUpdated(this.id, newScore, accessor.id))
      } else {
        throw new AccessDeniedException("Insufficient permissions to update credit score")
      }
    }

    // Private method to get sensitive data - only for internal use
    private def getSensitiveInfo: String = s"SSN: ${ssn.take(3)}*****, Credit: $creditScore"

    // Package-private method for compliance reporting
    private[banking] def getComplianceInfo(implicit accessor: ComplianceOfficer): String = {
      getSensitiveInfo
    }
  }

  // Companion object with factory methods and access control
  object Customer {
    // Private validation logic
    private def validateSSN(ssn: String): Boolean = {
      ssn.matches("""^\d{9}$""")
    }

    // Package-private factory method
    private[banking] def create(
      id: String,
      firstName: String,
      lastName: String,
      ssn: String,
      creditScore: Int
    )(implicit creator: BankEmployee): Try[Customer] = {
      if (!creator.hasPermission(Permission.CreateCustomer)) {
        Failure(new AccessDeniedException("Insufficient permissions to create customer"))
      } else if (!validateSSN(ssn)) {
        Failure(new IllegalArgumentException("Invalid SSN format"))
      } else {
        val customer = new Customer(id, firstName, lastName, ssn, creditScore)
        AuditLogger.log(AuditEvent.CustomerCreated(customer.id, creator.id))
        Success(customer)
      }
    }
  }

  // Account class with sophisticated access control
  class Account private[banking] (
    val accountNumber: AccountNumber,
    private var _balance: Amount,
    val accountType: AccountType,
    val owner: Customer,
    val currency: CurrencyCode = "USD"
  ) {

    // Private transaction history
    private val _transactionHistory = mutable.ListBuffer[Transaction]()

    // Public read-only balance access
    def balance: Amount = _balance

    // Public read-only transaction history
    def transactionHistory: List[Transaction] = _transactionHistory.toList

    // Protected method for balance updates (used by subclasses)
    protected def updateBalance(newBalance: Amount): Unit = {
      require(newBalance >= (accountType.minimumBalance - accountType.overdraftLimit),
              "Balance cannot go below minimum threshold")
      _balance = newBalance
    }

    // Package-private method for internal balance access
    private[banking] def getInternalBalance: Amount = _balance

    // Private method for transaction recording
    private def recordTransaction(transaction: Transaction): Unit = {
      _transactionHistory += transaction
    }

    // Public method with internal security checks
    def deposit(amount: Amount)(implicit context: TransactionContext): Try[Transaction] = {
      if (!ValidationUtils.isValidAmount(amount)) {
        Failure(new InvalidTransactionException("Invalid deposit amount"))
      } else {
        val transaction = Transaction.create(
          TransactionType.Deposit,
          amount,
          this,
          None,
          context.initiator
        )

        updateBalance(_balance + amount)
        recordTransaction(transaction)
        AuditLogger.log(AuditEvent.TransactionProcessed(transaction.id, context.initiator.id))
        Success(transaction)
      }
    }

    def withdraw(amount: Amount)(implicit context: TransactionContext): Try[Transaction] = {
      if (!ValidationUtils.isValidAmount(amount)) {
        Failure(new InvalidTransactionException("Invalid withdrawal amount"))
      } else if (amount > accountType.dailyWithdrawalLimit) {
        Failure(new InvalidTransactionException("Exceeds daily withdrawal limit"))
      } else if (_balance - amount < (accountType.minimumBalance - accountType.overdraftLimit)) {
        Failure(new InsufficientFundsException("Insufficient funds for withdrawal"))
      } else {
        val transactionType = if (amount > BigDecimal(2000)) {
          TransactionType.LargeCashWithdrawal
        } else {
          TransactionType.Withdrawal
        }

        if (transactionType.requiresApproval && !context.hasApproval) {
          Failure(new InvalidTransactionException("Transaction requires approval"))
        } else {
          val transaction = Transaction.create(
            transactionType,
            amount,
            this,
            None,
            context.initiator
          )

          updateBalance(_balance - amount)
          recordTransaction(transaction)
          AuditLogger.log(AuditEvent.TransactionProcessed(transaction.id, context.initiator.id))
          Success(transaction)
        }
      }
    }

    // Package-private method for inter-bank transfers
    private[banking] def transfer(
      amount: Amount,
      toAccount: Account
    )(implicit context: TransactionContext): Try[Transaction] = {
      if (!ValidationUtils.isValidAmount(amount)) {
        Failure(new InvalidTransactionException("Invalid transfer amount"))
      } else if (_balance - amount < (accountType.minimumBalance - accountType.overdraftLimit)) {
        Failure(new InsufficientFundsException("Insufficient funds for transfer"))
      } else {
        val transaction = Transaction.create(
          TransactionType.Transfer,
          amount,
          this,
          Some(toAccount),
          context.initiator
        )

        updateBalance(_balance - amount)
        toAccount.updateBalance(toAccount._balance + amount)

        recordTransaction(transaction)
        toAccount.recordTransaction(transaction)

        AuditLogger.log(AuditEvent.TransactionProcessed(transaction.id, context.initiator.id))
        Success(transaction)
      }
    }

    // Protected method for account closure (used by specialized accounts)
    protected def closeAccount()(implicit context: TransactionContext): Try[Unit] = {
      if (_balance != BigDecimal(0)) {
        Failure(new InvalidTransactionException("Cannot close account with non-zero balance"))
      } else {
        // Implementation for account closure
        Success(())
      }
    }
  }

  // Companion object for Account with controlled creation
  object Account {
    // Package-private factory method
    private[banking] def create(
      accountNumber: AccountNumber,
      initialBalance: Amount,
      accountType: AccountType,
      owner: Customer
    )(implicit creator: BankEmployee): Try[Account] = {
      if (!creator.hasPermission(Permission.CreateAccount)) {
        Failure(new AccessDeniedException("Insufficient permissions to create account"))
      } else if (!ValidationUtils.isValidAccountNumber(accountNumber)) {
        Failure(new IllegalArgumentException("Invalid account number format"))
      } else if (initialBalance < accountType.minimumBalance) {
        Failure(new IllegalArgumentException("Initial balance below minimum requirement"))
      } else {
        val account = new Account(accountNumber, initialBalance, accountType, owner)
        owner.addAccount(account)
        AuditLogger.log(AuditEvent.AccountCreated(accountNumber, creator.id))
        Success(account)
      }
    }
  }

  // Transaction class with immutable data and controlled access
  class Transaction private (
    val id: TransactionId,
    val transactionType: TransactionType,
    val amount: Amount,
    val fromAccount: Account,
    val toAccount: Option[Account],
    val timestamp: Instant,
    private val initiatorId: String
  ) {

    // Public read-only access to basic info
    def getTransactionInfo: String = {
      s"${transactionType.description}: ${amount} from ${fromAccount.accountNumber}"
    }

    // Package-private access to sensitive information
    private[banking] def getFullDetails: String = {
      s"Transaction $id: ${transactionType.description} of $amount from ${fromAccount.accountNumber}" +
      toAccount.map(acc => s" to ${acc.accountNumber}").getOrElse("") +
      s" initiated by $initiatorId at $timestamp"
    }

    // Protected method for audit trail access
    protected def getAuditInfo: Map[String, Any] = {
      Map(
        "transactionId" -> id,
        "type" -> transactionType.code,
        "amount" -> amount.toString,
        "fromAccount" -> fromAccount.accountNumber,
        "toAccount" -> toAccount.map(_.accountNumber),
        "timestamp" -> timestamp.toString,
        "initiator" -> initiatorId
      )
    }
  }

  // Companion object with controlled transaction creation
  object Transaction {
    private def generateId(): TransactionId = UUID.randomUUID().toString

    // Package-private factory method
    private[banking] def create(
      transactionType: TransactionType,
      amount: Amount,
      fromAccount: Account,
      toAccount: Option[Account],
      initiator: Person
    ): Transaction = {
      new Transaction(
        generateId(),
        transactionType,
        amount,
        fromAccount,
        toAccount,
        Instant.now(),
        initiator.getInternalId
      )
    }
  }
}

// Security and access control package
package com.enterprise.banking.security {

  import com.enterprise.banking._
  import com.enterprise.banking.domain._

  // Sealed trait for permissions - controlled extension
  sealed trait Permission {
    def code: String
    def description: String
  }

  object Permission {
    case object CreateCustomer extends Permission {
      val code = "CREATE_CUSTOMER"
      val description = "Create new customer accounts"
    }

    case object CreateAccount extends Permission {
      val code = "CREATE_ACCOUNT"
      val description = "Create new bank accounts"
    }

    case object ViewCustomerInfo extends Permission {
      val code = "VIEW_CUSTOMER"
      val description = "View customer information"
    }

    case object ProcessTransactions extends Permission {
      val code = "PROCESS_TRANSACTIONS"
      val description = "Process customer transactions"
    }

    case object UpdateCreditScore extends Permission {
      val code = "UPDATE_CREDIT"
      val description = "Update customer credit scores"
    }

    case object ViewAuditLogs extends Permission {
      val code = "VIEW_AUDIT"
      val description = "View audit logs"
    }

    case object ApproveTransactions extends Permission {
      val code = "APPROVE_TRANSACTIONS"
      val description = "Approve high-value transactions"
    }
  }

  // Role-based access control
  sealed trait Role {
    def permissions: Set[Permission]
    def name: String
  }

  object Role {
    case object Teller extends Role {
      val name = "Teller"
      val permissions = Set(
        Permission.ViewCustomerInfo,
        Permission.ProcessTransactions
      )
    }

    case object AccountManager extends Role {
      val name = "Account Manager"
      val permissions = Set(
        Permission.CreateCustomer,
        Permission.CreateAccount,
        Permission.ViewCustomerInfo,
        Permission.ProcessTransactions
      )
    }

    case object BranchManager extends Role {
      val name = "Branch Manager"
      val permissions = Set(
        Permission.CreateCustomer,
        Permission.CreateAccount,
        Permission.ViewCustomerInfo,
        Permission.ProcessTransactions,
        Permission.UpdateCreditScore,
        Permission.ApproveTransactions
      )
    }

    case object ComplianceOfficer extends Role {
      val name = "Compliance Officer"
      val permissions = Set(
        Permission.ViewCustomerInfo,
        Permission.ViewAuditLogs,
        Permission.UpdateCreditScore
      )
    }
  }

  // Employee hierarchy with protected access patterns
  abstract class BankEmployee(
    id: String,
    firstName: String,
    lastName: String,
    protected val employeeId: String,
    protected val role: Role
  ) extends Person(id, firstName, lastName) {

    // Public method to check permissions
    def hasPermission(permission: Permission): Boolean = {
      role.permissions.contains(permission)
    }

    // Protected method accessible to subclasses
    protected def getEmployeeInfo: String = {
      s"Employee $employeeId: $fullName (${role.name})"
    }

    // Package-private method for internal operations
    private[banking] def getRolePermissions: Set[Permission] = role.permissions
  }

  // Specific employee types with additional access patterns
  class Teller(
    id: String,
    firstName: String,
    lastName: String,
    employeeId: String
  ) extends BankEmployee(id, firstName, lastName, employeeId, Role.Teller) {

    // Teller-specific transaction processing
    def processTransaction(account: Account, transactionType: TransactionType, amount: Amount): Try[Transaction] = {
      implicit val context: TransactionContext = TransactionContext(this, hasApproval = false)

      transactionType match {
        case TransactionType.Deposit => account.deposit(amount)
        case TransactionType.Withdrawal => account.withdraw(amount)
        case _ => Failure(new AccessDeniedException("Tellers cannot process this transaction type"))
      }
    }
  }

  class BankManager(
    id: String,
    firstName: String,
    lastName: String,
    employeeId: String,
    private val branch: String
  ) extends BankEmployee(id, firstName, lastName, employeeId, Role.BranchManager) {

    // Manager can approve transactions
    def approveTransaction(): TransactionApproval = {
      TransactionApproval(this.employeeId, Instant.now())
    }

    // Manager can create accounts
    def createAccount(
      accountNumber: AccountNumber,
      accountType: AccountType,
      initialBalance: Amount,
      customer: Customer
    ): Try[Account] = {
      implicit val creator: BankEmployee = this
      Account.create(accountNumber, initialBalance, accountType, customer)
    }

    // Protected method for branch-specific operations
    protected def getBranchInfo: String = s"Branch: $branch, Manager: $fullName"
  }

  // Special compliance officer class
  class ComplianceOfficer(
    id: String,
    firstName: String,
    lastName: String,
    employeeId: String
  ) extends BankEmployee(id, firstName, lastName, employeeId, Role.ComplianceOfficer) {

    // Compliance-specific access to customer information
    def generateComplianceReport(customer: Customer): String = {
      implicit val accessor: ComplianceOfficer = this
      customer.getComplianceInfo
    }
  }

  // Transaction context for access control
  case class TransactionContext(
    initiator: Person,
    hasApproval: Boolean = false,
    approvalDetails: Option[TransactionApproval] = None
  )

  case class TransactionApproval(
    approvedBy: String,
    approvalTime: Instant
  )
}

// Audit and logging package with controlled access
package com.enterprise.banking.audit {

  import com.enterprise.banking._
  import java.time.Instant
  import scala.collection.mutable

  // Sealed trait for audit events
  sealed trait AuditEvent {
    def eventType: String
    def timestamp: Instant
    def userId: String
  }

  object AuditEvent {
    case class CustomerCreated(customerId: String, createdBy: String, timestamp: Instant = Instant.now()) extends AuditEvent {
      val eventType = "CUSTOMER_CREATED"
      val userId = createdBy
    }

    case class AccountCreated(accountNumber: String, createdBy: String, timestamp: Instant = Instant.now()) extends AuditEvent {
      val eventType = "ACCOUNT_CREATED"
      val userId = createdBy
    }

    case class TransactionProcessed(transactionId: String, processedBy: String, timestamp: Instant = Instant.now()) extends AuditEvent {
      val eventType = "TRANSACTION_PROCESSED"
      val userId = processedBy
    }

    case class CreditScoreUpdated(customerId: String, newScore: Int, updatedBy: String, timestamp: Instant = Instant.now()) extends AuditEvent {
      val eventType = "CREDIT_SCORE_UPDATED"
      val userId = updatedBy
    }

    case class AccessViolation(attemptedAction: String, deniedFor: String, timestamp: Instant = Instant.now()) extends AuditEvent {
      val eventType = "ACCESS_VIOLATION"
      val userId = deniedFor
    }
  }

  // Audit logger with controlled access
  object AuditLogger {
    private val auditLog = mutable.ListBuffer[AuditEvent]()

    // Package-private method for logging
    private[banking] def log(event: AuditEvent): Unit = synchronized {
      auditLog += event
      // In real implementation, would write to secure storage
      println(s"AUDIT: ${event.eventType} by ${event.userId} at ${event.timestamp}")
    }

    // Restricted access to audit logs
    private[banking] def getAuditLog(
      implicit accessor: com.enterprise.banking.security.BankEmployee
    ): List[AuditEvent] = {
      if (accessor.hasPermission(com.enterprise.banking.security.Permission.ViewAuditLogs)) {
        auditLog.toList
      } else {
        throw new AccessDeniedException("Insufficient permissions to view audit logs")
      }
    }

    // Private method for log cleanup
    private def cleanupOldEntries(): Unit = {
      val cutoffTime = Instant.now().minusSeconds(AUDIT_RETENTION_DAYS * 24 * 60 * 60)
      auditLog.filterInPlace(_.timestamp.isAfter(cutoffTime))
    }
  }
}

// Main banking operations package
package com.enterprise.banking.operations {

  import com.enterprise.banking._
  import com.enterprise.banking.domain._
  import com.enterprise.banking.security._
  import com.enterprise.banking.audit._
  import scala.util.{Try, Success, Failure}
  import scala.collection.mutable

  // Bank class with controlled access to all operations
  class Bank private (
    val name: String,
    private val bankCode: String
  ) {

    // Private collections with controlled access
    private val customers = mutable.Map[String, Customer]()
    private val accounts = mutable.Map[AccountNumber, Account]()
    private val employees = mutable.Map[String, BankEmployee]()

    // Public method with access control
    def registerEmployee(employee: BankEmployee)(implicit registrar: BankManager): Try[Unit] = {
      if (registrar.hasPermission(Permission.CreateCustomer)) {
        employees(employee.getInternalId) = employee
        Success(())
      } else {
        Failure(new AccessDeniedException("Insufficient permissions to register employee"))
      }
    }

    // Package-private method for customer management
    private[banking] def addCustomer(
      id: String,
      firstName: String,
      lastName: String,
      ssn: String,
      creditScore: Int
    )(implicit creator: BankEmployee): Try[Customer] = {
      Customer.create(id, firstName, lastName, ssn, creditScore) match {
        case Success(customer) =>
          customers(id) = customer
          Success(customer)
        case failure => failure
      }
    }

    // Protected method for internal operations
    protected def findCustomer(customerId: String): Option[Customer] = {
      customers.get(customerId)
    }

    // Public method with role-based access
    def getCustomer(customerId: String)(implicit accessor: BankEmployee): Try[Customer] = {
      if (accessor.hasPermission(Permission.ViewCustomerInfo)) {
        customers.get(customerId) match {
          case Some(customer) => Success(customer)
          case None => Failure(new IllegalArgumentException("Customer not found"))
        }
      } else {
        AuditLogger.log(AuditEvent.AccessViolation("VIEW_CUSTOMER", accessor.getInternalId))
        Failure(new AccessDeniedException("Insufficient permissions to view customer"))
      }
    }

    // Package-private method for account management
    private[banking] def addAccount(account: Account): Unit = {
      accounts(account.accountNumber) = account
    }

    // Internal method for compliance reporting
    private def generateInternalReport(): String = {
      s"Bank: $name, Customers: ${customers.size}, Accounts: ${accounts.size}"
    }

    // Package-private method for regulatory reporting
    private[banking] def getComplianceReport(implicit officer: ComplianceOfficer): String = {
      generateInternalReport() + s", Generated by: ${officer.fullName}"
    }
  }

  // Companion object with controlled bank creation
  object Bank {
    // Private validation
    private def validateBankCode(code: String): Boolean = {
      code.matches("""^[A-Z]{4}[A-Z0-9]{2}$""")
    }

    // Package-private factory method
    private[banking] def create(name: String, bankCode: String): Try[Bank] = {
      if (validateBankCode(bankCode)) {
        Success(new Bank(name, bankCode))
      } else {
        Failure(new IllegalArgumentException("Invalid bank code format"))
      }
    }
  }
}

// Demonstration of advanced access control
object AdvancedVisibilityDemo extends App {
  import com.enterprise.banking._
  import com.enterprise.banking.domain._
  import com.enterprise.banking.security._
  import com.enterprise.banking.operations._
  import com.enterprise.banking.audit._

  println("=== Advanced Visibility and Access Control Demo ===")

  // Create bank (package-private access)
  val bank = Bank.create("Secure National Bank", "SNBKUS33").get
  println(s"Created bank: ${bank.name}")

  // Create bank employees with different roles
  val manager = new BankManager("mgr1", "Alice", "Johnson", "MGR001", "Main Branch")
  val teller = new Teller("tel1", "Bob", "Smith", "TEL001")
  val complianceOfficer = new ComplianceOfficer("comp1", "Carol", "Davis", "COMP001")

  // Register employees (requires manager permissions)
  implicit val registrar: BankManager = manager
  bank.registerEmployee(manager).get
  bank.registerEmployee(teller).get
  bank.registerEmployee(complianceOfficer).get

  println("\nRegistered employees:")
  println(s"  Manager: ${manager.fullName}")
  println(s"  Teller: ${teller.fullName}")
  println(s"  Compliance Officer: ${complianceOfficer.fullName}")

  // Create customer (requires appropriate permissions)
  implicit val creator: BankEmployee = manager
  val customer = bank.addCustomer("cust1", "John", "Doe", "123456789", 750).get
  println(s"\nCreated customer: ${customer.fullName}")

  // Create account (manager has permissions)
  val account = manager.createAccount("ACC12345", AccountType.Premium, BigDecimal(5000), customer).get
  bank.addAccount(account)
  println(s"Created account: ${account.accountNumber} with balance: ${account.balance}")

  // Demonstrate transaction processing with access control
  println("\n=== Transaction Processing with Access Control ===")

  // Teller can process basic transactions
  val depositResult = teller.processTransaction(account, TransactionType.Deposit, BigDecimal(1000))
  depositResult match {
    case Success(transaction) =>
      println(s"✅ Teller deposit successful: ${transaction.getTransactionInfo}")
    case Failure(ex) =>
      println(s"❌ Teller deposit failed: ${ex.getMessage}")
  }

  // Try teller processing a transfer (should fail - no permission)
  implicit val tellerContext: TransactionContext = TransactionContext(teller)
  val transferResult = account.transfer(BigDecimal(500), account)(tellerContext)
  transferResult match {
    case Success(_) => println("✅ Transfer successful")
    case Failure(ex) => println(s"❌ Transfer failed: ${ex.getMessage}")
  }

  // Manager can approve and process complex transactions
  implicit val managerContext: TransactionContext = TransactionContext(manager, hasApproval = true)
  val largeWithdrawal = account.withdraw(BigDecimal(3000))(managerContext)
  largeWithdrawal match {
    case Success(transaction) =>
      println(s"✅ Manager large withdrawal: ${transaction.getTransactionInfo}")
    case Failure(ex) =>
      println(s"❌ Large withdrawal failed: ${ex.getMessage}")
  }

  // Demonstrate protected access patterns
  println("\n=== Protected and Package-Private Access ===")

  // Manager can access customer information
  implicit val viewer: BankEmployee = manager
  bank.getCustomer("cust1") match {
    case Success(cust) =>
      println(s"✅ Manager accessed customer: ${cust.fullName}")
    case Failure(ex) =>
      println(s"❌ Customer access failed: ${ex.getMessage}")
  }

  // Teller cannot access customer information directly
  implicit val tellerViewer: BankEmployee = teller
  bank.getCustomer("cust1") match {
    case Success(cust) =>
      println(s"✅ Teller accessed customer: ${cust.fullName}")
    case Failure(ex) =>
      println(s"❌ Teller customer access denied: ${ex.getMessage}")
  }

  // Compliance officer can access sensitive information
  val complianceReport = complianceOfficer.generateComplianceReport(customer)
  println(s"✅ Compliance report: $complianceReport")

  // Demonstrate sealed trait benefits
  println("\n=== Sealed Trait Hierarchies ===")

  def describeAccountType(accountType: AccountType): String = accountType match {
    case AccountType.Basic => "Basic account with limited features"
    case AccountType.Premium => "Premium account with overdraft protection"
    case AccountType.VIP => "VIP account with maximum benefits"
    // Compiler ensures all cases are covered due to sealed trait
  }

  println(s"Account type: ${describeAccountType(account.accountType)}")

  // Demonstrate audit logging with access control
  println("\n=== Audit Logging with Access Control ===")

  implicit val auditViewer: BankEmployee = complianceOfficer
  try {
    val auditLog = AuditLogger.getAuditLog
    println(s"✅ Compliance officer accessed audit log: ${auditLog.size} entries")
    auditLog.take(3).foreach { event =>
      println(s"  ${event.eventType} by ${event.userId}")
    }
  } catch {
    case ex: AccessDeniedException =>
      println(s"❌ Audit log access denied: ${ex.getMessage}")
  }

  // Try to access audit log as teller (should fail)
  implicit val unauthorizedViewer: BankEmployee = teller
  try {
    val auditLog = AuditLogger.getAuditLog
    println(s"✅ Teller accessed audit log: ${auditLog.size} entries")
  } catch {
    case ex: AccessDeniedException =>
      println(s"❌ Teller audit log access denied: ${ex.getMessage}")
  }

  // Generate bank compliance report
  implicit val complianceAccessor: ComplianceOfficer = complianceOfficer
  val bankReport = bank.getComplianceReport
  println(s"✅ Bank compliance report: $bankReport")

  println("\n=== Advanced Access Control Benefits Demonstrated ===")
  println("✅ Package-private access for internal APIs")
  println("✅ Protected inheritance with controlled visibility")
  println("✅ Private fields and methods for encapsulation")
  println("✅ Sealed trait hierarchies for type safety")
  println("✅ Companion object access control")
  println("✅ Role-based permission systems")
  println("✅ Audit logging with restricted access")
  println("✅ Multi-level security boundaries")
  println("✅ Controlled factory methods")
  println("✅ Cross-package access restrictions")
  println("✅ Sensitive data protection patterns")
  println("✅ Regulatory compliance through access control")
}

Comments

Be the first to comment on this lesson!

Visibility and Access Control: Securing Your Code

Introduction

Access Modifier Fundamentals

Basic Access Levels

Qualified Private Access

Protected Access and Inheritance

Protected Members in Class Hierarchies

API Design with Access Control

Creating Clean Public Interfaces

Builder Pattern with Access Control

Summary

What's Next

🚀 Practice Exercises

Instructions

Interactive Playground

Instructions

Interactive Playground

Comments

Sign In

Sign Up

Reset Password

Sign Out

Reset Password