issrg.pba.rbac.x509
Class RepositoryACPolicyFinder

java.lang.Object
  issrg.pba.rbac.PolicyFinder
      issrg.pba.rbac.x509.SimplePERMISACPolicyFinder
          issrg.pba.rbac.x509.RepositoryACPolicyFinder

Direct Known Subclasses:

DISRAPandParser, ManagedRepositoryACPolicyFinder, URLACPolicyFinder

public class RepositoryACPolicyFinder
extends SimplePERMISACPolicyFinder

This PolicyFinder can locate a PERMIS policy in one of the ACs retrieved from the SOA's repository entry. To do that, it needs to know the SOA's entry name, the identifier of the policy (policy OID in PERMIS XML), the AttributeRepository and the SignatureVerifier.

Author:

Sassa

Field Summary

Fields inherited from class issrg.pba.rbac.PolicyFinder

accessPolicy, allocationPolicy, authzTokenRepository, filepath, msodPolicySet, parsedPolicy, policyOID, satLevel, sawsServer, soa, sv, tokenParser

Constructor Summary

RepositoryACPolicyFinder(AttributeRepository attRep, java.lang.String PolicyId, java.security.Principal SOA, SignatureVerifier SV)
Given the inputs, it finds all the X.509 Attribute Certificates that are in the entry of the SOA and initialises the Policy Finder with that.

RepositoryACPolicyFinder(AttributeRepository attRep, java.lang.String PolicyId, java.security.Principal SOA, SignatureVerifier SV, int SATLevel)

Method Summary

protected void

initPolicyFromRepository(AttributeRepository attRep, java.lang.String PolicyId, java.security.Principal SOA, SignatureVerifier SV)

Methods inherited from class issrg.pba.rbac.x509.SimplePERMISACPolicyFinder

initPolicyFromACArray

Methods inherited from class issrg.pba.rbac.PolicyFinder

getAccessPolicy, getAllocationPolicy, getfilepath, getMSoDPolicy, getParsedPolicy, getPolicyOID, getRepository, getSATLevel, getSAWSServer, getSOA, getSV, removeSystemTag, SAWSCloseLog, setSV

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

RepositoryACPolicyFinder

public RepositoryACPolicyFinder(AttributeRepository attRep,
                                java.lang.String PolicyId,
                                java.security.Principal SOA,
                                SignatureVerifier SV)
                         throws PbaException

Given the inputs, it finds all the X.509 Attribute Certificates that are in the entry of the SOA and initialises the Policy Finder with that.

Parameters:

attRep - - the AttributeRepository with the SOA's entry in it containing the X.509 Attribute Certificates, one of which must have the PERMIS Policy

PolicyId - - the identifier of the Policy that must be loaded (Policy OID in PERMIS XML)

SOA - - the Principal naming the SOA's entry in the AttributeRepository

SV - - the SignatureVerifier to be used to validate the signatures on the X.509 Attribute Certificates; if null, no signature verification is performed

Throws:

PbaException, - if there was a problem loading the ACs, or if there was a problem to initialise the Policy Finder with the ACs that were found.

PbaException

RepositoryACPolicyFinder

public RepositoryACPolicyFinder(AttributeRepository attRep,
                                java.lang.String PolicyId,
                                java.security.Principal SOA,
                                SignatureVerifier SV,
                                int SATLevel)
                         throws PbaException

Throws:

PbaException

Method Detail

initPolicyFromRepository

protected void initPolicyFromRepository(AttributeRepository attRep,
                                        java.lang.String PolicyId,
                                        java.security.Principal SOA,
                                        SignatureVerifier SV)
                                 throws PbaException

Throws:

PbaException