issrg.pba.rbac.x509
Class RepositoryACPolicyFinder

java.lang.Object
  extended byissrg.pba.rbac.PolicyFinder
      extended byissrg.pba.rbac.x509.SimplePERMISACPolicyFinder
          extended byissrg.pba.rbac.x509.RepositoryACPolicyFinder
Direct Known Subclasses:
URLACPolicyFinder

public class RepositoryACPolicyFinder
extends SimplePERMISACPolicyFinder

This PolicyFinder can locate a PERMIS policy in one of the ACs retrieved from the SOA's repository entry. To do that, it needs to know the SOA's entry name, the identifier of the policy (policy OID in PERMIS XML), the AttributeRepository and the SignatureVerifier.

Author:
Sassa

Field Summary
 
Fields inherited from class issrg.pba.rbac.PolicyFinder
accessPolicy, allocationPolicy, msodPolicySet, parsedPolicy, policyOID, Repository, sawsServer, sv
 
Constructor Summary
RepositoryACPolicyFinder(AttributeRepository attRep, java.lang.String PolicyId, java.security.Principal SOA, SignatureVerifier SV)
          Given the inputs, it finds all the X.509 Attribute Certificates that are in the entry of the SOA and initialises the Policy Finder with that.
 
Methods inherited from class issrg.pba.rbac.x509.SimplePERMISACPolicyFinder
initPolicyFromACArray
 
Methods inherited from class issrg.pba.rbac.PolicyFinder
getAccessPolicy, getAllocationPolicy, getMSoDPolicy, getParsedPolicy, getPolicyOID, getRepository, getSV, removeSystemTag
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

RepositoryACPolicyFinder

public RepositoryACPolicyFinder(AttributeRepository attRep,
                                java.lang.String PolicyId,
                                java.security.Principal SOA,
                                SignatureVerifier SV)
                         throws PbaException
Given the inputs, it finds all the X.509 Attribute Certificates that are in the entry of the SOA and initialises the Policy Finder with that.

Parameters:
attRep - - the AttributeRepository with the SOA's entry in it containing the X.509 Attribute Certificates, one of which must have the PERMIS Policy
PolicyId - - the identifier of the Policy that must be loaded (Policy OID in PERMIS XML)
SOA - - the Principal naming the SOA's entry in the AttributeRepository
SV - - the SignatureVerifier to be used to validate the signatures on the X.509 Attribute Certificates; if null, no signature verification is performed
Throws:
PbaException, - if there was a problem loading the ACs, or if there was a problem to initialise the Policy Finder with the ACs that were found.
PbaException