|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object issrg.pba.rbac.policies.MSoDRule
public class MSoDRule
This is the class representing the MSoD rule. It determines whether the request is allowed by this MSoD rule.
Field Summary | |
---|---|
protected java.lang.String |
contextName
|
protected java.util.Vector |
mmepVec
|
protected java.util.Vector |
mmerVec
This is where the MSoD Rules are stored |
protected ContextNamePrincipal |
policyDN
|
Constructor Summary | |
---|---|
protected |
MSoDRule()
|
|
MSoDRule(java.lang.String context,
java.lang.String firstAction,
java.lang.String firstTarget,
java.lang.String lastAction,
java.lang.String lastTarget,
java.util.Vector mmerv,
java.util.Vector mmepv)
Deprecated. |
|
MSoDRule(java.lang.String context,
UserAction firstStep,
UserAction lastStep,
java.util.Vector mmerv,
java.util.Vector mmepv)
|
Method Summary | |
---|---|
boolean |
contains(ContextNamePrincipal instanceDN)
This method is for determining if a context instance is governed by this MSoD rule, ie if the context instance is contained by the policy context in this MSoD rule. |
ContextNamePrincipal |
getPolicyContext()
This method returns the policy context of this MSoD rule. |
boolean |
isLastStep(java.lang.String actionName,
java.lang.String targetName)
This method is to determine if the input action and target is the last step in this context. |
boolean |
separationOfDutiesApplies(RetainedADI retainedADI,
Credentials creds,
Subject subject,
Action a,
Target t,
java.util.Map environment,
ContextNamePrincipal instanceDN)
This method is to determine if this MSoD rule applies to this user access request. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
protected java.util.Vector mmerVec
protected java.util.Vector mmepVec
protected java.lang.String contextName
protected ContextNamePrincipal policyDN
Constructor Detail |
---|
protected MSoDRule()
@Deprecated public MSoDRule(java.lang.String context, java.lang.String firstAction, java.lang.String firstTarget, java.lang.String lastAction, java.lang.String lastTarget, java.util.Vector mmerv, java.util.Vector mmepv)
public MSoDRule(java.lang.String context, UserAction firstStep, UserAction lastStep, java.util.Vector mmerv, java.util.Vector mmepv)
Method Detail |
---|
public boolean contains(ContextNamePrincipal instanceDN)
instanceDN
- is the input context instance.
public ContextNamePrincipal getPolicyContext()
public boolean isLastStep(java.lang.String actionName, java.lang.String targetName)
actionName
- is the action.targetName
- is the target of the action
public boolean separationOfDutiesApplies(RetainedADI retainedADI, Credentials creds, Subject subject, Action a, Target t, java.util.Map environment, ContextNamePrincipal instanceDN)
retainedADI
- is the retained ADI, it contains the access request decisions in historycreds
- is the user credentialsubject
- is the user subjecta
- is the user actiont
- is the user requested targetenvironment
- is the environment of the decision by PERMISinstanceDN
- is the context instance name of this user requested action
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |