DataRightsAuthorizer

Authorization callback for data rights operations.

The host application implements this interface to verify the caller's identity before the SDK performs destructive data operations (export, delete, wipe).

On shared kiosk devices, this prevents one user from accessing or erasing another user's local data. The SDK calls this before every data rights operation; if the authorizer returns false, the operation is blocked and an audit record is created.

If no authorizer is configured and the config requires authorization (CUI and CJIS presets), operations return DataDeletionResult.Unauthorized or DataExportResult.Unauthorized.