net.jxta.impl.access.simpleACL.SimpleACLAccessService
|
Project JXTA | |||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Object
public class SimpleACLAccessService
Implements the AccessService using a simple ACL
scheme.
perm entry of the Access Service parameters in the group adv is
assumed to be a permission in the following format:
<operation> ":" ( <identity> )* ( "," <identity> )*
A sample ACL table extracted from a PeerGroupAdvertisement:
...
<Svc>
<MCID>urn:jxta:uuid-DEADBEEFDEAFBABAFEEDBABE0000001005</MCID>
<Parm>
<perm><<DEFAULT>>:nobody,permit</perm>
<perm>everyone:<<ALL>></perm>
<perm>permit:nobody,permit,allow</perm>
<perm>deny:notpermit,notallow</perm>
</Parm>
</Svc>
...
If <<ALL>> is provided as an identity then the
operation is permitted for all valid credentials.
if <<DEFAULT>> is provided as an operation then the
provided identities will be allowed for all operations which are not
recognized.
This implementation makes no effort to ensure that the
permission table has not been altered. It is not appropriate for use
in security sensitive deployments unless the integrity of the group
advertisement is ensured.
AccessService| Nested Class Summary |
|---|
| Nested classes/interfaces inherited from interface net.jxta.access.AccessService |
|---|
AccessService.AccessResult |
| Field Summary | |
|---|---|
(package private) Map |
ACLs
The ACLs we are supporting. |
(package private) PeerGroup |
group
|
(package private) ModuleImplAdvertisement |
implAdvertisement
|
static ModuleSpecID |
simpleACLAccessSpecID
Well known access specification identifier: the simple ACL access service |
| Fields inherited from interface net.jxta.platform.Module |
|---|
START_AGAIN_PROGRESS, START_AGAIN_STALLED, START_OK |
| Constructor Summary | |
|---|---|
SimpleACLAccessService()
The default constructor |
|
| Method Summary | |
|---|---|
AccessService.AccessResult |
doAccessCheck(PrivilegedOperation op,
Credential cred)
|
Advertisement |
getImplAdvertisement()
|
Service |
getInterface()
|
(package private) PeerGroup |
getPeerGroup()
|
void |
init(PeerGroup group,
ID assignedID,
Advertisement implAdv)
|
PrivilegedOperation |
newPrivilegedOperation(Element source)
|
PrivilegedOperation |
newPrivilegedOperation(Object subject,
Credential offerer)
|
int |
startApp(String[] args)
|
void |
stopApp()
|
| Methods inherited from class java.lang.Object |
|---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Field Detail |
|---|
public static final ModuleSpecID simpleACLAccessSpecID
PeerGroup group
ModuleImplAdvertisement implAdvertisement
Map ACLs
| Constructor Detail |
|---|
public SimpleACLAccessService()
| Method Detail |
|---|
public void init(PeerGroup group,
ID assignedID,
Advertisement implAdv)
throws PeerGroupException
init in interface ModulePeerGroupExceptionpublic int startApp(String[] args)
startApp in interface Modulepublic void stopApp()
stopApp in interface Modulepublic Advertisement getImplAdvertisement()
getImplAdvertisement in interface Servicepublic Service getInterface()
getInterface in interface Service
public AccessService.AccessResult doAccessCheck(PrivilegedOperation op,
Credential cred)
doAccessCheck in interface AccessService
public PrivilegedOperation newPrivilegedOperation(Object subject,
Credential offerer)
newPrivilegedOperation in interface AccessServicepublic PrivilegedOperation newPrivilegedOperation(Element source)
newPrivilegedOperation in interface AccessServicePeerGroup getPeerGroup()
|
JXTA J2SE | |||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||