co.cask.cdap.security.authorization

Class DefaultAuthorizationEnforcementService

java.lang.Object

com.google.common.util.concurrent.AbstractScheduledService

co.cask.cdap.security.authorization.AbstractAuthorizationService

co.cask.cdap.security.authorization.DefaultAuthorizationEnforcementService

All Implemented Interfaces:

AuthorizationEnforcementService, AuthorizationEnforcer, com.google.common.util.concurrent.Service

public class DefaultAuthorizationEnforcementService
extends AbstractAuthorizationService
implements AuthorizationEnforcementService

Default implementation of AuthorizationEnforcementService.

Nested Class Summary

Nested classes/interfaces inherited from class com.google.common.util.concurrent.AbstractScheduledService

com.google.common.util.concurrent.AbstractScheduledService.CustomScheduler, com.google.common.util.concurrent.AbstractScheduledService.Scheduler

Nested classes/interfaces inherited from interface com.google.common.util.concurrent.Service

com.google.common.util.concurrent.Service.Listener, com.google.common.util.concurrent.Service.State

Field Summary

Fields inherited from class co.cask.cdap.security.authorization.AbstractAuthorizationService

authorizationEnabled, cacheEnabled, securityEnabled

Method Summary

Methods

Modifier and Type	Method and Description
co.cask.cdap.api.Predicate<EntityId>	createFilter(Principal principal)
void	enforce(EntityId entity, Principal principal, Action action)
void	enforce(EntityId entity, Principal principal, Set<Action> actions)
void	invalidate(com.google.common.base.Predicate<Principal> predicate) Invalidates cached privileges of all principals that satisfy the specified Predicate.
protected boolean	isSecurityAuthorizationEnabled()

Methods inherited from class co.cask.cdap.security.authorization.AbstractAuthorizationService

doInvalidate, executor, fetchPrivileges, getPrivileges, runOneIteration, scheduler, shutDown, startUp

Methods inherited from class com.google.common.util.concurrent.AbstractScheduledService

addListener, isRunning, start, startAndWait, state, stop, stopAndWait, toString

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Methods inherited from interface com.google.common.util.concurrent.Service

addListener, isRunning, start, startAndWait, state, stop, stopAndWait

Method Detail

enforce

public void enforce(EntityId entity,
           Principal principal,
           Action action)
             throws Exception

Specified by:

enforce in interface AuthorizationEnforcer

Throws:

Exception

enforce

public void enforce(EntityId entity,
           Principal principal,
           Set<Action> actions)
             throws Exception

Specified by:

enforce in interface AuthorizationEnforcer

Throws:

Exception

createFilter

public co.cask.cdap.api.Predicate<EntityId> createFilter(Principal principal)
                                                  throws Exception

Specified by:

createFilter in interface AuthorizationEnforcer

Throws:

Exception

isSecurityAuthorizationEnabled

protected boolean isSecurityAuthorizationEnabled()

invalidate

public void invalidate(com.google.common.base.Predicate<Principal> predicate)

Description copied from interface: AuthorizationEnforcementService

Invalidates cached privileges of all principals that satisfy the specified Predicate.

Specified by:

invalidate in interface AuthorizationEnforcementService