org.wso2.registry.users.accesscontrol
Class ACLAccessControlAdmin

java.lang.Object
  extended by org.wso2.registry.users.accesscontrol.ACLAuthorizer
      extended by org.wso2.registry.users.accesscontrol.ACLAccessControlAdmin
All Implemented Interfaces:
AccessControlAdmin, Authorizer

public class ACLAccessControlAdmin
extends ACLAuthorizer
implements AccessControlAdmin

Manipulates access control data in the user store Cannot change admin privileges through this interface

See Also:
org.wso2.registry.usersAccessControlAdmin

Field Summary
 
Fields inherited from class org.wso2.registry.users.accesscontrol.ACLAuthorizer
config, isAdmin
 
Constructor Summary
ACLAccessControlAdmin(Authorizer athzr, AccessControlAdmin admin, AuthorizingRealmConfig authConfig)
          Constructor
 
Method Summary
 void authorizeRole(java.lang.String roleName, java.lang.String resourceId, java.lang.String action)
          Grant access to role
 void authorizeUser(java.lang.String userName, java.lang.String resourceId, java.lang.String action)
          Authorize user
 void clearResourceAuthorizations(java.lang.String resourceId)
          Clears all authorizations on a Role
 void clearRoleAuthorization(java.lang.String roleName, java.lang.String resourceId, java.lang.String action)
          Removes granted access from Role
 void clearUserAuthorization(java.lang.String userName, java.lang.String resourceId, java.lang.String action)
          Removes granted access from user
 void copyAuthorizations(java.lang.String fromResourceId, java.lang.String toResourceId)
          Duplicates granted/denied access
 void denyRole(java.lang.String roleName, java.lang.String resourceId, java.lang.String action)
          Deny access to role
 void denyUser(java.lang.String userName, java.lang.String resourceId, java.lang.String action)
          Deny access to user
protected  void doAuthorizationToAuthorize()
           
 
Methods inherited from class org.wso2.registry.users.accesscontrol.ACLAuthorizer
getAllowedRolesForResource, getAllowedUsersForResource, getDeniedRolesForResource, getDeniedUsersForResource, isRoleAuthorized, isUserAuthorized
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 
Methods inherited from interface org.wso2.registry.users.Authorizer
getAllowedRolesForResource, getAllowedUsersForResource, getDeniedRolesForResource, getDeniedUsersForResource, isRoleAuthorized, isUserAuthorized
 

Constructor Detail

ACLAccessControlAdmin

public ACLAccessControlAdmin(Authorizer athzr,
                             AccessControlAdmin admin,
                             AuthorizingRealmConfig authConfig)
Constructor

Method Detail

authorizeUser

public void authorizeUser(java.lang.String userName,
                          java.lang.String resourceId,
                          java.lang.String action)
                   throws UserStoreException
Authorize user

Specified by:
authorizeUser in interface AccessControlAdmin
Throws:
UserStoreException

denyUser

public void denyUser(java.lang.String userName,
                     java.lang.String resourceId,
                     java.lang.String action)
              throws UserStoreException
Deny access to user

Specified by:
denyUser in interface AccessControlAdmin
Throws:
UserStoreException

authorizeRole

public void authorizeRole(java.lang.String roleName,
                          java.lang.String resourceId,
                          java.lang.String action)
                   throws UserStoreException
Grant access to role

Specified by:
authorizeRole in interface AccessControlAdmin
Throws:
UserStoreException

denyRole

public void denyRole(java.lang.String roleName,
                     java.lang.String resourceId,
                     java.lang.String action)
              throws UserStoreException
Deny access to role

Specified by:
denyRole in interface AccessControlAdmin
Throws:
UserStoreException

clearUserAuthorization

public void clearUserAuthorization(java.lang.String userName,
                                   java.lang.String resourceId,
                                   java.lang.String action)
                            throws UserStoreException
Removes granted access from user

Specified by:
clearUserAuthorization in interface AccessControlAdmin
Throws:
UserStoreException

clearRoleAuthorization

public void clearRoleAuthorization(java.lang.String roleName,
                                   java.lang.String resourceId,
                                   java.lang.String action)
                            throws UserStoreException
Removes granted access from Role

Specified by:
clearRoleAuthorization in interface AccessControlAdmin
Throws:
UserStoreException

clearResourceAuthorizations

public void clearResourceAuthorizations(java.lang.String resourceId)
                                 throws UserStoreException
Clears all authorizations on a Role

Specified by:
clearResourceAuthorizations in interface AccessControlAdmin
Throws:
UserStoreException

copyAuthorizations

public void copyAuthorizations(java.lang.String fromResourceId,
                               java.lang.String toResourceId)
                        throws UserStoreException
Duplicates granted/denied access

Specified by:
copyAuthorizations in interface AccessControlAdmin
Throws:
UserStoreException

doAuthorizationToAuthorize

protected void doAuthorizationToAuthorize()
                                   throws UserStoreException
Throws:
UserStoreException


Copyright © 2007 Apache Web Services Project. All Rights Reserved.