|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object issrg.pba.rbac.CustomisePERMIS
public class CustomisePERMIS
This class should be used to customise the components PERMIS RBAC uses.
These include:
CustomisePERMIS and the creation of PermisRBAC should be in a synchronized block, so the other threads do not modify your settings.
Field Summary | |
---|---|
protected static java.lang.Class |
authTokenParser
The class of the default AuthTokenParser (issrg.simplePERMIS.SimplePERMISTokenParser). |
protected static boolean |
certFirst
|
static java.lang.Class |
comparator
This is the default Role Assignment Rule Comparator, used to optimise the delegation chain validation by applying the most relevant Role Assignment Rules first. |
protected static int |
rev_time
|
protected static java.lang.Class |
revocationChecker
|
protected static boolean |
shouldRevoke
|
static Clock |
systemClock
This is the secure source of time used by PERMIS. |
Constructor Summary | |
---|---|
CustomisePERMIS()
|
Method Summary | |
---|---|
static void |
addURLHandler(java.lang.String className)
This method adds a URL Handler. |
static boolean |
checkCertificateFirst()
This is the method which administrators should change if they want to reverse the order of revocation checking The values are: certFirst and crlFirst The default setting is to get the certificate first for performance. |
static void |
configureX509Flavour()
This is the method to configure X.509 flavour into PERMIS: after this PERMIS will accept X.509 ACs by default. |
static java.lang.String |
getAttributeCertificateAttribute()
This method returns the LDAP attribute name used to retrieve the Attribute Certificates. |
static AuthzTokenParser |
getAuthzTokenParser()
This method returns an instance of a AuthTokenParser configured into PERMIS. |
static java.util.Calendar |
getCalendar()
This method returns the calendar to be used by all classes interpreting time. |
static RuleComparator |
getComparator()
This method returns an instance of the default Role Assignment Rule Comparator. |
static java.lang.String |
getDefaultSchemaLocation()
This method is used by W3CXMLSchemaValidator's default constructor to find out the path to the default schema for policies. |
static RevocationChecker |
getRevocationChecker()
The revocation checker is used to check if certificates are revoked |
static int |
getRevocationCount()
|
static int |
getRevocationTimeOut()
|
static SAMLSecurity |
getSAMLSecurity()
this method is used to get SAML security object in order to retrieve user's keys |
static Clock |
getSystemClock()
This method returns the clock that will be used for calculating relative validity periods and a time reference for decision-making. |
static java.lang.String |
getUserCertificateAttribute()
This method returns the LDAP attribute name used to retrieve the Public Key Certificates. |
static boolean |
isMultiParserUsed()
it returns true if multiple parsers are used. |
static void |
registerACExtensions()
This method registers the default X.509 AC extension parsing classes. |
static void |
registerACExtensions(java.lang.String[] exts)
This method registers the X.509 AC extension parsing classes provided in addition to already registered exntensions. |
static void |
setAttributeCertificateAttribute(java.lang.String id)
This method sets the LDAP attribute name used to retrieve the Attribute Certificates. |
static void |
setAuthzTokenParser(java.lang.String className)
Sets the default Auth Token Parser to be used by PERMIS. |
static void |
setCheckCRLRevocationFirst(boolean shouldCRLbeCheckedFirst)
|
static void |
setComparator(java.lang.String className)
This method sets the name of the class of the default Role Assignment Rule Comparator. |
static void |
setDefaultSchemaLocation(java.lang.String defaultSchemaLocation)
Set the path to the default permis schema at runtime. |
static void |
setMultiParser(boolean mp)
this method is used to flag whether multiple parsers are used. |
static void |
setRevocationChecker(java.lang.String className)
Sets the default Revocation checker to be used by PERMIS. |
static void |
setRevocationCheckerRevoking(boolean revoke)
|
static void |
setSAMLSecurity(SAMLSecurity security)
this method is used to set the SAML security object for holding user's security information, e.g. |
static void |
setSystemClock(java.lang.String className)
Sets the default System Clock to be used by PERMIS. |
static void |
setUserCertificateAttribute(java.lang.String id)
This method sets the LDAP attribute name used to retrieve the Public Key Certificates. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static Clock systemClock
protected static java.lang.Class revocationChecker
protected static boolean certFirst
protected static int rev_time
protected static boolean shouldRevoke
protected static java.lang.Class authTokenParser
public static java.lang.Class comparator
RuleComparator
Constructor Detail |
---|
public CustomisePERMIS()
Method Detail |
---|
public static Clock getSystemClock()
Replacing the value does not affect any of the objects already created.
public static java.util.Calendar getCalendar()
public static AuthzTokenParser getAuthzTokenParser()
public static boolean checkCertificateFirst()
public static void setCheckCRLRevocationFirst(boolean shouldCRLbeCheckedFirst)
public static int getRevocationTimeOut()
public static int getRevocationCount()
public static RevocationChecker getRevocationChecker()
public static void setRevocationCheckerRevoking(boolean revoke)
public static void setAuthzTokenParser(java.lang.String className) throws java.lang.ClassNotFoundException
className
- - the name of the class to use as the authorisation
token parser
java.lang.ClassNotFoundException
SimplePERMISTokenParser
public static void setRevocationChecker(java.lang.String className) throws java.lang.ClassNotFoundException
className
- - the name of the class to use as the revocation checker
java.lang.ClassNotFoundException
RevocationChecker
public static void setSystemClock(java.lang.String className) throws java.lang.ClassNotFoundException
className
- - the name of the class to use as the system clock
java.lang.ClassNotFoundException
SystemClock
public static void addURLHandler(java.lang.String className) throws java.lang.ClassNotFoundException
className
- - the name of the class to be added as a URLHandler.
java.lang.ClassNotFoundException
URLHandler
public static void configureX509Flavour() throws PbaException
The method registers the default AuthTokenParser that supports X.509 Attribute Certificates and registers all the AC Extensions.
PbaException
public static java.lang.String getAttributeCertificateAttribute()
public static void setAttributeCertificateAttribute(java.lang.String id)
public static java.lang.String getUserCertificateAttribute()
public static void setUserCertificateAttribute(java.lang.String id)
public static void registerACExtensions() throws PbaException
PbaException
public static void registerACExtensions(java.lang.String[] exts) throws PbaException
PbaException
public static RuleComparator getComparator()
RuleComparator
public static void setComparator(java.lang.String className) throws java.lang.ClassNotFoundException
java.lang.ClassNotFoundException
RuleComparator
public static void setMultiParser(boolean mp)
public static boolean isMultiParserUsed()
public static void setSAMLSecurity(SAMLSecurity security)
public static SAMLSecurity getSAMLSecurity()
public static java.lang.String getDefaultSchemaLocation()
public static void setDefaultSchemaLocation(java.lang.String defaultSchemaLocation)
defaultSchemaLocation
- the new location of the default schema
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |