|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.apache.qpid.server.security.access.config.RuleSet
public class RuleSet
Models the rule configuration for the access control plugin.
The access control rule definitions are loaded from an external configuration file, passed in as the
target to the load(ConfigurationFile)
method. The file specified
Field Summary | |
---|---|
static String |
AUTONUMBER
|
static List<String> |
CONFIG_PROPERTIES
|
static String |
CONTROLLED
|
static String |
DEFAULT_ALLOW
|
static String |
DEFAULT_DENY
|
static String |
EXPAND
|
static String |
TRANSITIVE
|
static String |
VALIDATE
|
Constructor Summary | |
---|---|
RuleSet()
|
Method Summary | |
---|---|
boolean |
addGroup(String group,
List<String> constituents)
|
void |
addRule(Integer number,
String identity,
org.apache.qpid.server.security.access.Permission permission,
Action action)
|
org.apache.qpid.server.security.Result |
check(String identity,
org.apache.qpid.server.security.access.Operation operation,
org.apache.qpid.server.security.access.ObjectType objectType,
org.apache.qpid.server.security.access.ObjectProperties properties)
Check the authorisation granted to a particular identity for an operation on an object type with specific properties. |
protected boolean |
checkName(String name)
Return true if the name is well-formed (contains legal characters). |
void |
clear()
Clear the contents, invluding groups, rules and configuration. |
void |
configure(Map<String,Boolean> properties)
Configure properties for the plugin instance. |
void |
configure(String key,
Boolean value)
Configure a single property for the plugin instance. |
void |
disableRule(int ruleNumber)
|
void |
enableRule(int ruleNumber)
|
org.apache.qpid.server.security.Result |
getDefault()
Default deny. |
int |
getRuleCount()
|
List<Rule> |
getRules(String identity,
org.apache.qpid.server.security.access.Operation operation,
org.apache.qpid.server.security.access.ObjectType objectType)
Filtered rules list based on an identity and operation. |
void |
grant(Integer number,
String identity,
org.apache.qpid.server.security.access.Permission permission,
org.apache.qpid.server.security.access.Operation operation)
|
void |
grant(Integer number,
String identity,
org.apache.qpid.server.security.access.Permission permission,
org.apache.qpid.server.security.access.Operation operation,
org.apache.qpid.server.security.access.ObjectType object,
org.apache.qpid.server.security.access.ObjectProperties properties)
|
protected boolean |
isSet(String key)
Check if a configuration property is set. |
boolean |
isValidNumber(Integer number)
|
protected boolean |
isvalidUserName(String name)
Returns true if a username has the name[@domain][/realm] format |
boolean |
ruleExists(String identity,
Action action)
|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static final String DEFAULT_ALLOW
public static final String DEFAULT_DENY
public static final String TRANSITIVE
public static final String EXPAND
public static final String AUTONUMBER
public static final String CONTROLLED
public static final String VALIDATE
public static final List<String> CONFIG_PROPERTIES
Constructor Detail |
---|
public RuleSet()
Method Detail |
---|
public void clear()
public int getRuleCount()
public List<Rule> getRules(String identity, org.apache.qpid.server.security.access.Operation operation, org.apache.qpid.server.security.access.ObjectType objectType)
public boolean isValidNumber(Integer number)
public void grant(Integer number, String identity, org.apache.qpid.server.security.access.Permission permission, org.apache.qpid.server.security.access.Operation operation)
public void grant(Integer number, String identity, org.apache.qpid.server.security.access.Permission permission, org.apache.qpid.server.security.access.Operation operation, org.apache.qpid.server.security.access.ObjectType object, org.apache.qpid.server.security.access.ObjectProperties properties)
public boolean ruleExists(String identity, Action action)
public void addRule(Integer number, String identity, org.apache.qpid.server.security.access.Permission permission, Action action)
public void enableRule(int ruleNumber)
public void disableRule(int ruleNumber)
public boolean addGroup(String group, List<String> constituents)
protected boolean checkName(String name)
protected boolean isvalidUserName(String name)
public org.apache.qpid.server.security.Result check(String identity, org.apache.qpid.server.security.access.Operation operation, org.apache.qpid.server.security.access.ObjectType objectType, org.apache.qpid.server.security.access.ObjectProperties properties)
public org.apache.qpid.server.security.Result getDefault()
protected boolean isSet(String key)
public void configure(Map<String,Boolean> properties)
properties
- public void configure(String key, Boolean value)
key
- value
-
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |