public class ManagementPermissionAuthorizer extends Object implements Authorizer
Authorizer.AuthorizerDescription
Constructor and Description |
---|
ManagementPermissionAuthorizer(PermissionFactory permissionFactory,
JmxPermissionFactory jmxPermissionFactory) |
Modifier and Type | Method and Description |
---|---|
AuthorizationResult |
authorize(Caller caller,
Environment callEnvironment,
Action action,
TargetAttribute target)
Authorize a management operation affecting an individual attribute.
|
AuthorizationResult |
authorize(Caller caller,
Environment callEnvironment,
Action action,
TargetResource target)
Authorize a management operation affecting an entire resource.
|
AuthorizationResult |
authorizeJmxOperation(Caller caller,
Environment callEnvironment,
JmxAction action)
Authorize a JMX operation.
|
Set<String> |
getCallerRoles(Caller caller,
Environment callEnvironment,
Set<String> runAsroles)
Gets the set of roles the caller can run as taking into account and requested 'run as' roles.
|
Authorizer.AuthorizerDescription |
getDescription()
Gets a description of the characteristics of this authorizer
|
public ManagementPermissionAuthorizer(PermissionFactory permissionFactory, JmxPermissionFactory jmxPermissionFactory)
public Authorizer.AuthorizerDescription getDescription()
Authorizer
getDescription
in interface Authorizer
null
public AuthorizationResult authorize(Caller caller, Environment callEnvironment, Action action, TargetAttribute target)
Authorizer
authorize
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
public AuthorizationResult authorize(Caller caller, Environment callEnvironment, Action action, TargetResource target)
Authorizer
authorize
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
public AuthorizationResult authorizeJmxOperation(Caller caller, Environment callEnvironment, JmxAction action)
Authorizer
authorizeJmxOperation
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
null
public Set<String> getCallerRoles(Caller caller, Environment callEnvironment, Set<String> runAsroles)
Authorizer
getCallerRoles
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
null
may be returned if the access control provider does not support role mapping.Copyright © 2013 JBoss by Red Hat. All rights reserved.