org.apache.directory.server.core.authz.support
Class RestrictedByFilter

java.lang.Object
  extended byorg.apache.directory.server.core.authz.support.RestrictedByFilter
All Implemented Interfaces:
ACITupleFilter

public class RestrictedByFilter
extends java.lang.Object
implements ACITupleFilter

An ACITupleFilter that discards all tuples that doesn't satisfy ProtectedItem.RestrictedBy constraint if available. (18.8.3.3, X.501)

Version:
$Rev: 434579 $, $Date: 2006-08-25 02:19:11 +0200 (Fri, 25 Aug 2006) $
Author:
Apache Directory Project

Constructor Summary
RestrictedByFilter()
           
 
Method Summary
 java.util.Collection filter(java.util.Collection tuples, OperationScope scope, PartitionNexusProxy proxy, java.util.Collection userGroupNames, LdapDN userName, javax.naming.directory.Attributes userEntry, AuthenticationLevel authenticationLevel, LdapDN entryName, java.lang.String attrId, java.lang.Object attrValue, javax.naming.directory.Attributes entry, java.util.Collection microOperations)
          Returns the collection of the filtered tuples using the specified extra information.
 boolean isRemovable(ACITuple tuple, java.lang.String attrId, java.lang.Object attrValue, javax.naming.directory.Attributes entry)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

RestrictedByFilter

public RestrictedByFilter()
Method Detail

filter

public java.util.Collection filter(java.util.Collection tuples,
                                   OperationScope scope,
                                   PartitionNexusProxy proxy,
                                   java.util.Collection userGroupNames,
                                   LdapDN userName,
                                   javax.naming.directory.Attributes userEntry,
                                   AuthenticationLevel authenticationLevel,
                                   LdapDN entryName,
                                   java.lang.String attrId,
                                   java.lang.Object attrValue,
                                   javax.naming.directory.Attributes entry,
                                   java.util.Collection microOperations)
                            throws javax.naming.NamingException
Description copied from interface: ACITupleFilter
Returns the collection of the filtered tuples using the specified extra information.

Specified by:
filter in interface ACITupleFilter
Parameters:
tuples - the collection of tuples to filter
scope - the scope of the operation to be performed
proxy - the proxy interceptor for this filter to access the DIT
userGroupNames - the collection of group (Name)s which the current user belongs to
userName - the Name of the current user
userEntry - the Attributes of the current user entry in the DIT
authenticationLevel - the level of authentication of the current user
entryName - the Name of the entry the current user accesses
attrId - the attribute ID the current user accesses
attrValue - the value of the attribute the current user accesses
entry - the Attributes of the entry the current user accesses
microOperations - the set of MicroOperations the current user will perform
Returns:
the collection of filtered tuples
Throws:
javax.naming.NamingException - if failed to filter the specifiec tuples

isRemovable

public boolean isRemovable(ACITuple tuple,
                           java.lang.String attrId,
                           java.lang.Object attrValue,
                           javax.naming.directory.Attributes entry)