issrg.pba.management.agent.managed
Class ManagedRepositoryACPolicyFinder

java.lang.Object
  issrg.pba.rbac.PolicyFinder
      issrg.pba.rbac.x509.SimplePERMISACPolicyFinder
          issrg.pba.rbac.x509.RepositoryACPolicyFinder
              issrg.pba.management.agent.managed.ManagedRepositoryACPolicyFinder

All Implemented Interfaces:

ManagedPolicyFinder

public class ManagedRepositoryACPolicyFinder
extends RepositoryACPolicyFinder
implements ManagedPolicyFinder

a managed policy finder.

based on the repository policy finder.

this class will retain information, not retained by the sub class, which is necessary to be able to re initialise the policy from the source location (i.e. the repository).

this class will implement the ManagedPolicyFinder interface, which the managed-engine uses to interface with this managed-policy-finder.

Version:

0.2.2008.02.24

Author:

mfb4@kent.ac.uk

Field Summary

Fields inherited from class issrg.pba.rbac.PolicyFinder

accessPolicy, allocationPolicy, authzTokenRepository, filepath, msodPolicySet, parsedPolicy, policyOID, satLevel, sawsServer, soa, sv, tokenParser

Constructor Summary

ManagedRepositoryACPolicyFinder(AttributeRepository attRep, java.lang.String policyName, java.security.Principal soaPrincipalParam, SignatureVerifier signatureVerifier)
This constructor adds the recording of the SOA principal.

ManagedRepositoryACPolicyFinder(AttributeRepository attRep, java.lang.String policyName, java.security.Principal soaPrincipalParam, SignatureVerifier signatureVerifier, int satLevel)
This constructor adds the recording of the SOA constructor.

Method Summary

java.security.Principal	getPrincipalSOA() Source of Authority.
java.lang.String	updatePolicy(AttributeRepository attributeRepository, java.lang.String policyName) This will replace the existing policy with a new one found in the repository.

Methods inherited from class issrg.pba.rbac.x509.RepositoryACPolicyFinder

initPolicyFromRepository

Methods inherited from class issrg.pba.rbac.x509.SimplePERMISACPolicyFinder

initPolicyFromACArray

Methods inherited from class issrg.pba.rbac.PolicyFinder

getAccessPolicy, getAllocationPolicy, getfilepath, getMSoDPolicy, getParsedPolicy, getPolicyOID, getRepository, getSATLevel, getSAWSServer, getSOA, getSV, removeSystemTag, SAWSCloseLog, setSV

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ManagedRepositoryACPolicyFinder

public ManagedRepositoryACPolicyFinder(AttributeRepository attRep,
                                       java.lang.String policyName,
                                       java.security.Principal soaPrincipalParam,
                                       SignatureVerifier signatureVerifier)
                                throws PbaException

This constructor adds the recording of the SOA principal.

Parameters:

attRep - - the AttributeRepository with the SOA's entry in it containing the X.509 Attribute Certificates, one of which must have the PERMIS Policy

policyName - - the identifier of the Policy that must be loaded (Policy OID in PERMIS XML)

soaPrincipalParam - - the Principal naming the SOA's entry in the AttributeRepository

signatureVerifier - - the SignatureVerifier to be used to validate the signatures on the X.509 Attribute Certificates; if null, no signature verification is performed

Throws:

PbaException - if there was a problem loading the ACs, or if there was a problem to initialise the Policy Finder with the ACs that were found.

Since:

0.1.2008.02.22

ManagedRepositoryACPolicyFinder

public ManagedRepositoryACPolicyFinder(AttributeRepository attRep,
                                       java.lang.String policyName,
                                       java.security.Principal soaPrincipalParam,
                                       SignatureVerifier signatureVerifier,
                                       int satLevel)
                                throws PbaException

This constructor adds the recording of the SOA constructor.

Parameters:

attRep - - the AttributeRepository with the SOA's entry in it containing the X.509 Attribute Certificates, one of which must have the PERMIS Policy

policyName - - the identifier of the Policy that must be loaded (Policy OID in PERMIS XML)

soaPrincipalParam - - the Principal naming the SOA's entry in the AttributeRepository

signatureVerifier - - the SignatureVerifier to be used to validate the signatures on the X.509 Attribute Certificates; if null, no signature verification is performed

satLevel - ??

Throws:

PbaException - if there was a problem loading the ACs, or if there was a problem to initialise the Policy Finder with the ACs that were found.

Since:

0.1.2008.02.22

Method Detail

getPrincipalSOA

public java.security.Principal getPrincipalSOA()

Source of Authority. Representing the owner of the policy.

Specified by:

getPrincipalSOA in interface ManagedPolicyFinder

Returns:

the principal object representing the SOA.

Since:

0.1.2008.02.22

updatePolicy

public java.lang.String updatePolicy(AttributeRepository attributeRepository,
                                     java.lang.String policyName)
                              throws PbaException

This will replace the existing policy with a new one found in the repository. if all goes well than is returned.

Specified by:

updatePolicy in interface ManagedPolicyFinder

Parameters:

attributeRepository - used to locate or contains the policy.

policyName - the unique policy name.

Returns:

a response code indicating the success of the update.

Throws:

PbaException - if the policy update failed.

Since:

0.3.2008.03.20