org.apache.directory.server.core.authz.support
Class RestrictedByFilter

java.lang.Object
  extended by org.apache.directory.server.core.authz.support.RestrictedByFilter
All Implemented Interfaces:
ACITupleFilter

public class RestrictedByFilter
extends java.lang.Object
implements ACITupleFilter

An ACITupleFilter that discards all tuples that doesn't satisfy ProtectedItem.RestrictedBy constraint if available. (18.8.3.3, X.501)

Version:
$Rev: 662440 $, $Date: 2008-06-02 16:00:23 +0200 (Mo, 02 Jun 2008) $
Author:
Apache Directory Project

Constructor Summary
RestrictedByFilter()
           
 
Method Summary
 java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> filter(Registries registries, java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> tuples, OperationScope scope, OperationContext opContext, java.util.Collection<org.apache.directory.shared.ldap.name.LdapDN> userGroupNames, org.apache.directory.shared.ldap.name.LdapDN userName, ServerEntry userEntry, org.apache.directory.shared.ldap.constants.AuthenticationLevel authenticationLevel, org.apache.directory.shared.ldap.name.LdapDN entryName, java.lang.String attrId, org.apache.directory.shared.ldap.entry.Value<?> attrValue, ServerEntry entry, java.util.Collection<org.apache.directory.shared.ldap.aci.MicroOperation> microOperations, ServerEntry entryView)
          Returns the collection of the filtered tuples using the specified extra information.
 boolean isRemovable(org.apache.directory.shared.ldap.aci.ACITuple tuple, java.lang.String attrId, org.apache.directory.shared.ldap.entry.Value<?> attrValue, ServerEntry entry)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

RestrictedByFilter

public RestrictedByFilter()
Method Detail

filter

public java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> filter(Registries registries,
                                                                                  java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> tuples,
                                                                                  OperationScope scope,
                                                                                  OperationContext opContext,
                                                                                  java.util.Collection<org.apache.directory.shared.ldap.name.LdapDN> userGroupNames,
                                                                                  org.apache.directory.shared.ldap.name.LdapDN userName,
                                                                                  ServerEntry userEntry,
                                                                                  org.apache.directory.shared.ldap.constants.AuthenticationLevel authenticationLevel,
                                                                                  org.apache.directory.shared.ldap.name.LdapDN entryName,
                                                                                  java.lang.String attrId,
                                                                                  org.apache.directory.shared.ldap.entry.Value<?> attrValue,
                                                                                  ServerEntry entry,
                                                                                  java.util.Collection<org.apache.directory.shared.ldap.aci.MicroOperation> microOperations,
                                                                                  ServerEntry entryView)
                                                                           throws javax.naming.NamingException
Description copied from interface: ACITupleFilter
Returns the collection of the filtered tuples using the specified extra information.

Specified by:
filter in interface ACITupleFilter
tuples - the collection of tuples to filter
scope - the scope of the operation to be performed
userGroupNames - the collection of group (LdapDN)s which the current user belongs to
userName - the LdapDN of the current user
userEntry - the ServerEntry of the current user entry in the DIT
authenticationLevel - the level of authentication of the current user
entryName - the LdapDN of the entry the current user accesses
attrId - the attribute ID the current user accesses
attrValue - the value of the attribute the current user accesses
entry - the ServerEntry of the entry the current user accesses
microOperations - the set of MicroOperations the current user will perform
entryView - in case of a Modify operation, view of the entry being modified as if the modification permitted and completed
Returns:
the collection of filtered tuples
Throws:
javax.naming.NamingException - if failed to filter the specific tuples

isRemovable

public boolean isRemovable(org.apache.directory.shared.ldap.aci.ACITuple tuple,
                           java.lang.String attrId,
                           org.apache.directory.shared.ldap.entry.Value<?> attrValue,
                           ServerEntry entry)
                    throws javax.naming.NamingException
Throws:
javax.naming.NamingException


Copyright © 2003-2009 Apache Software Foundation. All Rights Reserved.