org.apache.directory.server.core.authz.support
Class MostSpecificProtectedItemFilter
java.lang.Object
org.apache.directory.server.core.authz.support.MostSpecificProtectedItemFilter
- All Implemented Interfaces:
- ACITupleFilter
public class MostSpecificProtectedItemFilter
- extends java.lang.Object
- implements ACITupleFilter
An ACITupleFilter
that chooses the tuples with the most specific
protected item. (18.8.4.3, X.501)
If more than one tuple remains, choose the tuples with the most specific
protected item. If the protected item is an attribute and there are tuples
that specify the attribute type explicitly, discard all other tuples. If
the protected item is an attribute value, and there are tuples that specify
the attribute value explicitly, discard all other tuples. A protected item
which is a rangeOfValues is to be treated as specifying an attribute value
explicitly.
- Version:
- $Rev: 434579 $, $Date: 2006-08-24 20:19:11 -0400 (Thu, 24 Aug 2006) $
- Author:
- Apache Directory Project
Method Summary |
java.util.Collection |
filter(java.util.Collection tuples,
OperationScope scope,
PartitionNexusProxy proxy,
java.util.Collection userGroupNames,
LdapDN userName,
javax.naming.directory.Attributes userEntry,
AuthenticationLevel authenticationLevel,
LdapDN entryName,
java.lang.String attrId,
java.lang.Object attrValue,
javax.naming.directory.Attributes entry,
java.util.Collection microOperations)
Returns the collection of the filtered tuples using the specified
extra information. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
MostSpecificProtectedItemFilter
public MostSpecificProtectedItemFilter()
filter
public java.util.Collection filter(java.util.Collection tuples,
OperationScope scope,
PartitionNexusProxy proxy,
java.util.Collection userGroupNames,
LdapDN userName,
javax.naming.directory.Attributes userEntry,
AuthenticationLevel authenticationLevel,
LdapDN entryName,
java.lang.String attrId,
java.lang.Object attrValue,
javax.naming.directory.Attributes entry,
java.util.Collection microOperations)
throws javax.naming.NamingException
- Description copied from interface:
ACITupleFilter
- Returns the collection of the filtered tuples using the specified
extra information.
- Specified by:
filter
in interface ACITupleFilter
- Parameters:
tuples
- the collection of tuples to filterscope
- the scope of the operation to be performedproxy
- the proxy interceptor for this filter to access the DITuserGroupNames
- the collection of group (Name
)s which the current user belongs touserName
- the Name
of the current useruserEntry
- the Attributes
of the current user entry in the DITauthenticationLevel
- the level of authentication of the current userentryName
- the Name
of the entry the current user accessesattrId
- the attribute ID the current user accessesattrValue
- the value of the attribute the current user accessesentry
- the Attributes
of the entry the current user accessesmicroOperations
- the set of MicroOperation
s the current user will perform
- Returns:
- the collection of filtered tuples
- Throws:
javax.naming.NamingException
- if failed to filter the specifiec tuples