|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface Protocol
Method Summary | |
---|---|
org.w3c.dom.Element |
createRequestContext(java.lang.String DNIn)
This method returns a simple WS-Trust request security token, which takes the given DNIn as the X509SubjectName value. |
org.w3c.dom.Element |
createRequestContext(java.lang.String DNIn,
java.lang.String[] x509ACs,
java.lang.String[] x509proxyCerts,
org.w3c.dom.Element[] assertions,
java.lang.String mode)
this method is used to create a WS-Trust request for getting authorisation credentials. |
org.w3c.dom.Element |
createRequestContext(java.lang.String actionIn,
java.lang.String resourceIn,
org.w3c.dom.Element subject)
this method returns an XACML request context, in which the given action and resource are used as the action-id and resource-id value, and the given subject is the Subject section in the context. |
org.w3c.dom.Element |
createSamlReuest(java.lang.String userDN,
java.lang.String actionName,
java.lang.String targetDN)
this method create a SAML authz request including an authorisation decision query. |
org.w3c.dom.Element |
getAuthzDecision(org.w3c.dom.Element reqCtx)
This method provides an XACML interface to call PERMIS PDP for authz decisions |
org.w3c.dom.Element |
getResourceCreds(org.w3c.dom.Element wst_request)
This method returns a resource XACML request context by given a WS-Trust request |
org.w3c.dom.Element |
getSamlAuthzDecision(org.w3c.dom.Element samlRequest)
This method provides a SAML interface to call PERMIS PDP for making authz decisions |
org.w3c.dom.Element |
getSamlAuthzDecision(org.w3c.dom.Element samlRequest,
java.lang.String url,
boolean grid)
This method provides a SAML interface to call PERMIS PDP for making authz decisions via a saml service. |
org.w3c.dom.Element |
getSubjectCreds(org.w3c.dom.Element wst_request)
This method returns a subject XACML request context by given a WS-Trust request |
Method Detail |
---|
org.w3c.dom.Element createRequestContext(java.lang.String DNIn, java.lang.String[] x509ACs, java.lang.String[] x509proxyCerts, org.w3c.dom.Element[] assertions, java.lang.String mode) throws HandlerServiceException
DNIn
- is the subject DN, can be an empty string representing anonymous subject.x509ACs
- is a set of X509 ACs base64 encoded, can be null.x509proxyCerts
- is a set of proxy certificates base64 encoded, e.g. VOMS ACs, can be nullassertions
- is a set of SAML attribute assertions, can be nullmode
- is a string, which specifies what mode the PERMIS CVS works in.
HandlerServiceException
org.w3c.dom.Element createRequestContext(java.lang.String DNIn) throws HandlerServiceException
DNIn
- - this is the LDAP DN
HandlerServiceException
org.w3c.dom.Element createRequestContext(java.lang.String actionIn, java.lang.String resourceIn, org.w3c.dom.Element subject) throws HandlerServiceException
actionIn
- will be the action-id value.resourceIn
- will be the resource-id valuesubject
- is the subject request context
HandlerServiceException
org.w3c.dom.Element createSamlReuest(java.lang.String userDN, java.lang.String actionName, java.lang.String targetDN)
userDN
- is in the LDAP DN formataction
- can be any string value, which names the actiontargetDN
- is either a LDAP DN or URLorg.w3c.dom.Element getSubjectCreds(org.w3c.dom.Element wst_request) throws HandlerServiceException
wstReq
- represents the WS-Trust request.
HandlerServiceException
org.w3c.dom.Element getResourceCreds(org.w3c.dom.Element wst_request) throws HandlerServiceException
wstReq
- represents the WS-Trust request.
HandlerServiceException
org.w3c.dom.Element getAuthzDecision(org.w3c.dom.Element reqCtx) throws HandlerServiceException
reqCtx,
- which is an XACML request context
HandlerServiceException
org.w3c.dom.Element getSamlAuthzDecision(org.w3c.dom.Element samlRequest) throws HandlerServiceException
samlRequest,
- which is a SAML authz request.
HandlerServiceException
org.w3c.dom.Element getSamlAuthzDecision(org.w3c.dom.Element samlRequest, java.lang.String url, boolean grid) throws HandlerServiceException
samlRequest,
- which is a SAML authz request.url
- is the URL of the saml service.grid
- indicates the saml service is a globus one, if it is true.
HandlerServiceException
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |