org.apache.ldap.server.authz
Class AuthorizationService

java.lang.Object
  extended byorg.apache.ldap.server.interceptor.BaseInterceptor
      extended byorg.apache.ldap.server.authz.AuthorizationService
All Implemented Interfaces:
Interceptor

public class AuthorizationService
extends BaseInterceptor

An Interceptor that controls access to BackingStore operations. If a user tries to perform any operations that requires permission he or she doesn't have, NamingException will be thrown and therefore the current invocation chain will terminate.

Version:
$Rev: 159260 $, $Date: 2005-03-28 12:15:52 -0500 (Mon, 28 Mar 2005) $
Author:
Apache Directory Project

Constructor Summary
AuthorizationService()
          Creates an authorization service interceptor.
 
Method Summary
 void destroy()
          Deinitializes this interceptor.
 void init(InterceptorContext ctx)
          Intializes this interceptor.
protected  void process(NextInterceptor nextInterceptor, Delete call)
           
protected  void process(NextInterceptor nextInterceptor, HasEntry call)
          Note that we do nothing here.
 void process(NextInterceptor nextInterceptor, Invocation call)
          Uses a switch on the invocation method type to call the respective member analog method that does the work of the Interceptor for that Invocation method.
protected  void process(NextInterceptor nextInterceptor, List call)
           
protected  void process(NextInterceptor nextInterceptor, Lookup call)
           
protected  void process(NextInterceptor nextInterceptor, LookupWithAttrIds call)
           
protected  void process(NextInterceptor nextInterceptor, Modify call)
          This policy needs to be really tight too because some attributes may take part in giving the user permissions to protected resources.
protected  void process(NextInterceptor nextInterceptor, ModifyMany call)
          This policy needs to be really tight too because some attributes may take part in giving the user permissions to protected resources.
protected  void process(NextInterceptor nextInterceptor, ModifyRN call)
           
protected  void process(NextInterceptor nextInterceptor, Move call)
           
protected  void process(NextInterceptor nextInterceptor, MoveAndModifyRN call)
           
protected  void process(NextInterceptor nextInterceptor, Search call)
           
 
Methods inherited from class org.apache.ldap.server.interceptor.BaseInterceptor
getPrincipal, process, process, process, process, process
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

AuthorizationService

public AuthorizationService()
Creates an authorization service interceptor.

Method Detail

init

public void init(InterceptorContext ctx)
          throws javax.naming.NamingException
Description copied from interface: Interceptor
Intializes this interceptor. This is invoked by directory service provider when this intercepter is loaded into interceptor chain.

Parameters:
ctx - the configuration properties for this interceptor
Throws:
javax.naming.NamingException - if failed to initialize this interceptor

destroy

public void destroy()
Description copied from interface: Interceptor
Deinitializes this interceptor. This is invoked by directory service provider when this intercepter is unloaded from interceptor chain.


process

public void process(NextInterceptor nextInterceptor,
                    Invocation call)
             throws javax.naming.NamingException
Description copied from class: BaseInterceptor
Uses a switch on the invocation method type to call the respective member analog method that does the work of the Interceptor for that Invocation method.

Specified by:
process in interface Interceptor
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       Delete call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       HasEntry call)
                throws javax.naming.NamingException
Note that we do nothing here. First because this is not an externally exposed function via the JNDI interfaces. It is used internally by the provider for optimization purposes so there is no reason for us to start to constrain it.

Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       Modify call)
                throws javax.naming.NamingException
This policy needs to be really tight too because some attributes may take part in giving the user permissions to protected resources. We do not want users to self access these resources. As far as we're concerned no one but the admin needs access.

Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       ModifyMany call)
                throws javax.naming.NamingException
This policy needs to be really tight too because some attributes may take part in giving the user permissions to protected resources. We do not want users to self access these resources. As far as we're concerned no one but the admin needs access.

Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       ModifyRN call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       Move call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       MoveAndModifyRN call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       Lookup call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       LookupWithAttrIds call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       Search call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException

process

protected void process(NextInterceptor nextInterceptor,
                       List call)
                throws javax.naming.NamingException
Overrides:
process in class BaseInterceptor
Throws:
javax.naming.NamingException


Copyright © 2002-2005 . All Rights Reserved.