issrg.pba.rbac.x509
Class RepositoryACPolicyFinder

java.lang.Object
  extended by issrg.pba.rbac.PolicyFinder
      extended by issrg.pba.rbac.x509.SimplePERMISACPolicyFinder
          extended by issrg.pba.rbac.x509.RepositoryACPolicyFinder
Direct Known Subclasses:
DISRAPandParser, ManagedRepositoryACPolicyFinder, URLACPolicyFinder

public class RepositoryACPolicyFinder
extends SimplePERMISACPolicyFinder

This PolicyFinder can locate a PERMIS policy in one of the ACs retrieved from the SOA's repository entry. To do that, it needs to know the SOA's entry name, the identifier of the policy (policy OID in PERMIS XML), the AttributeRepository and the SignatureVerifier.

Author:
Sassa

Field Summary
 
Fields inherited from class issrg.pba.rbac.PolicyFinder
accessPolicy, allocationPolicy, authzTokenRepository, filepath, msodPolicySet, parsedPolicy, policyOID, satLevel, sawsServer, soa, sv, tokenParser
 
Constructor Summary
RepositoryACPolicyFinder(AttributeRepository attRep, java.lang.String PolicyId, java.security.Principal SOA, SignatureVerifier SV)
          Given the inputs, it finds all the X.509 Attribute Certificates that are in the entry of the SOA and initialises the Policy Finder with that.
RepositoryACPolicyFinder(AttributeRepository attRep, java.lang.String PolicyId, java.security.Principal SOA, SignatureVerifier SV, int SATLevel)
           
 
Method Summary
protected  void initPolicyFromRepository(AttributeRepository attRep, java.lang.String PolicyId, java.security.Principal SOA, SignatureVerifier SV)
           
 
Methods inherited from class issrg.pba.rbac.x509.SimplePERMISACPolicyFinder
initPolicyFromACArray
 
Methods inherited from class issrg.pba.rbac.PolicyFinder
getAccessPolicy, getAllocationPolicy, getfilepath, getMSoDPolicy, getParsedPolicy, getPolicyOID, getRepository, getSATLevel, getSAWSServer, getSOA, getSV, removeSystemTag, SAWSCloseLog, setSV
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

RepositoryACPolicyFinder

public RepositoryACPolicyFinder(AttributeRepository attRep,
                                java.lang.String PolicyId,
                                java.security.Principal SOA,
                                SignatureVerifier SV)
                         throws PbaException
Given the inputs, it finds all the X.509 Attribute Certificates that are in the entry of the SOA and initialises the Policy Finder with that.

Parameters:
attRep - - the AttributeRepository with the SOA's entry in it containing the X.509 Attribute Certificates, one of which must have the PERMIS Policy
PolicyId - - the identifier of the Policy that must be loaded (Policy OID in PERMIS XML)
SOA - - the Principal naming the SOA's entry in the AttributeRepository
SV - - the SignatureVerifier to be used to validate the signatures on the X.509 Attribute Certificates; if null, no signature verification is performed
Throws:
PbaException, - if there was a problem loading the ACs, or if there was a problem to initialise the Policy Finder with the ACs that were found.
PbaException

RepositoryACPolicyFinder

public RepositoryACPolicyFinder(AttributeRepository attRep,
                                java.lang.String PolicyId,
                                java.security.Principal SOA,
                                SignatureVerifier SV,
                                int SATLevel)
                         throws PbaException
Throws:
PbaException
Method Detail

initPolicyFromRepository

protected void initPolicyFromRepository(AttributeRepository attRep,
                                        java.lang.String PolicyId,
                                        java.security.Principal SOA,
                                        SignatureVerifier SV)
                                 throws PbaException
Throws:
PbaException