org.wso2.balana.combine.xacml3
Class DenyUnlessPermitPolicyAlg
java.lang.Object
org.wso2.balana.combine.CombiningAlgorithm
org.wso2.balana.combine.PolicyCombiningAlgorithm
org.wso2.balana.combine.xacml3.DenyUnlessPermitPolicyAlg
public class DenyUnlessPermitPolicyAlg
- extends PolicyCombiningAlgorithm
This is the standard Deny unless permit policy combining algorithm. This algorithm is intended for
those cases where a permit decision should have priority over a deny decision,
and an "Indeterminate" or "NotApplicable" must never be the result.
It is particularly useful at the top level in a policy structure to ensure that a
PDP will always return a definite "Permit" or "Deny" result.
Field Summary |
static String |
algId
The standard URN used to identify this algorithm |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
algId
public static final String algId
- The standard URN used to identify this algorithm
- See Also:
- Constant Field Values
DenyUnlessPermitPolicyAlg
public DenyUnlessPermitPolicyAlg()
- Standard constructor.
combine
public AbstractResult combine(EvaluationCtx context,
List parameters,
List policyElements)
- Description copied from class:
PolicyCombiningAlgorithm
- Combines the policies based on the context to produce some unified result. This is the one
function of a combining algorithm.
Note that unlike in the RuleCombiningAlgorithms, here you must explicitly match the
sub-policies to make sure that you should consider them, and you must handle Obligations.
- Specified by:
combine
in class PolicyCombiningAlgorithm
- Parameters:
context
- the representation of the requestparameters
- a (possibly empty) non-null List
of
CombinerParameterspolicyElements
- a List
of CombinerElements
- Returns:
- a single unified result based on the combining logic
Copyright © 2015 WSO2. All rights reserved.