|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.jboss.security.authorization.AuthorizationContext
public abstract class AuthorizationContext
JBAS-3374: Authorization Framework for Policy Decision Modules For information on the behavior of the Authorization Modules, For Authorization Modules behavior(Required, Requisite, Sufficient and Optional) please refer to the javadoc for @see javax.security.auth.login.Configuration The AuthorizationContext derives the AuthorizationInfo(configuration for the modules) in the following way: a) If there has been an injection of ApplicationPolicy, then it will be used. b) Util.getApplicationPolicy will be used(which relies on SecurityConfiguration static class). c) Flag an error that there is no available Application Policy
Field Summary | |
---|---|
protected CallbackHandler |
callbackHandler
|
protected List<ControlFlag> |
controlFlags
Control Flags for the individual modules |
static int |
DENY
|
protected List<AuthorizationModule> |
modules
Roles of the Subject |
static int |
PERMIT
|
protected String |
securityDomainName
|
protected Map<String,Object> |
sharedState
|
Constructor Summary | |
---|---|
AuthorizationContext()
|
Method Summary | |
---|---|
abstract int |
authorize(Resource resource)
Authorize the Resource |
abstract int |
authorize(Resource resource,
Subject subject,
RoleGroup roles)
Authorize the resource |
String |
getSecurityDomain()
Return the Security Domain Name |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
protected String securityDomainName
protected CallbackHandler callbackHandler
protected Map<String,Object> sharedState
protected List<AuthorizationModule> modules
protected List<ControlFlag> controlFlags
public static final int PERMIT
public static final int DENY
Constructor Detail |
---|
public AuthorizationContext()
Method Detail |
---|
public abstract int authorize(Resource resource) throws AuthorizationException
resource
-
AuthorizationException
public abstract int authorize(Resource resource, Subject subject, RoleGroup roles) throws AuthorizationException
resource
- subject
- Subject of the callerroles
- Roles of the caller
AuthorizationException
public String getSecurityDomain()
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |