org.apache.directory.server.core.authz.support
Class MostSpecificUserClassFilter
java.lang.Object
org.apache.directory.server.core.authz.support.MostSpecificUserClassFilter
- All Implemented Interfaces:
- ACITupleFilter
public class MostSpecificUserClassFilter
- extends java.lang.Object
- implements ACITupleFilter
An ACITupleFilter
that chooses the tuples with the most specific user
class. (18.8.4.2)
If more than one tuple remains, choose the tuples with the most specific user
class. If there are any tuples matching the requestor with UserClasses element
name or thisEntry, discard all other tuples. Otherwise if there are any tuples
matching UserGroup, discard all other tuples. Otherwise if there are any tuples
matching subtree, discard all other tuples.
- Version:
- $Rev: 662440 $, $Date: 2008-06-02 16:00:23 +0200 (Mo, 02 Jun 2008) $
- Author:
- Apache Directory Project
Method Summary |
java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> |
filter(Registries registries,
java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> tuples,
OperationScope scope,
OperationContext opContext,
java.util.Collection<org.apache.directory.shared.ldap.name.LdapDN> userGroupNames,
org.apache.directory.shared.ldap.name.LdapDN userName,
ServerEntry userEntry,
org.apache.directory.shared.ldap.constants.AuthenticationLevel authenticationLevel,
org.apache.directory.shared.ldap.name.LdapDN entryName,
java.lang.String attrId,
org.apache.directory.shared.ldap.entry.Value<?> attrValue,
ServerEntry entry,
java.util.Collection<org.apache.directory.shared.ldap.aci.MicroOperation> microOperations,
ServerEntry entryView)
Returns the collection of the filtered tuples using the specified
extra information. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
MostSpecificUserClassFilter
public MostSpecificUserClassFilter()
filter
public java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> filter(Registries registries,
java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> tuples,
OperationScope scope,
OperationContext opContext,
java.util.Collection<org.apache.directory.shared.ldap.name.LdapDN> userGroupNames,
org.apache.directory.shared.ldap.name.LdapDN userName,
ServerEntry userEntry,
org.apache.directory.shared.ldap.constants.AuthenticationLevel authenticationLevel,
org.apache.directory.shared.ldap.name.LdapDN entryName,
java.lang.String attrId,
org.apache.directory.shared.ldap.entry.Value<?> attrValue,
ServerEntry entry,
java.util.Collection<org.apache.directory.shared.ldap.aci.MicroOperation> microOperations,
ServerEntry entryView)
throws javax.naming.NamingException
- Description copied from interface:
ACITupleFilter
- Returns the collection of the filtered tuples using the specified
extra information.
- Specified by:
filter
in interface ACITupleFilter
tuples
- the collection of tuples to filterscope
- the scope of the operation to be performeduserGroupNames
- the collection of group (LdapDN
)s which the current user belongs touserName
- the LdapDN
of the current useruserEntry
- the ServerEntry
of the current user entry in the DITauthenticationLevel
- the level of authentication of the current userentryName
- the LdapDN
of the entry the current user accessesattrId
- the attribute ID the current user accessesattrValue
- the value of the attribute the current user accessesentry
- the ServerEntry
of the entry the current user accessesmicroOperations
- the set of MicroOperation
s the current user will performentryView
- in case of a Modify operation, view of the entry being modified as if the modification permitted and completed
- Returns:
- the collection of filtered tuples
- Throws:
javax.naming.NamingException
- if failed to filter the specific tuples
Copyright © 2003-2009 Apache Software Foundation. All Rights Reserved.