|
Project JXTA | ||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectnet.jxta.impl.access.simpleACL.SimpleACLAccessService
Implements the AccessService
using a simple ACL
scheme.
perm
entry of the Access Service parameters in the group adv is
assumed to be a permission in the following format:
<operation> ":" ( <identity> )* ( "," <identity> )*A sample ACL table extracted from a PeerGroupAdvertisement:
... <Svc> <MCID>urn:jxta:uuid-DEADBEEFDEAFBABAFEEDBABE0000001005</MCID> <Parm> <perm><<DEFAULT>>:nobody,permit</perm> <perm>everyone:<<ALL>></perm> <perm>permit:nobody,permit,allow</perm> <perm>deny:notpermit,notallow</perm> </Parm> </Svc> ...If
<<ALL>>
is provided as an identity then the
operation is permitted for all valid credentials.
if <<DEFAULT>>
is provided as an operation then the
provided identities will be allowed for all operations which are not
recognized.
This implementation makes no effort to ensure that the
permission table has not been altered. It is not appropriate for use
in security sensitive deployments unless the integrity of the group
advertisement is ensured.
AccessService
Nested Class Summary |
Nested classes inherited from class net.jxta.access.AccessService |
AccessService.AccessResult |
Field Summary | |
(package private) Map |
ACLs
The ACLs we are supporting. |
(package private) PeerGroup |
group
|
(package private) ModuleImplAdvertisement |
implAdvertisement
|
static ModuleSpecID |
simpleACLAccessSpecID
Well known access specification identifier: the simple ACL access service |
Fields inherited from interface net.jxta.platform.Module |
START_AGAIN_PROGRESS, START_AGAIN_STALLED, START_OK |
Constructor Summary | |
SimpleACLAccessService()
The default constructor |
Method Summary | |
AccessService.AccessResult |
doAccessCheck(PrivilegedOperation op,
Credential cred)
|
Advertisement |
getImplAdvertisement()
|
Service |
getInterface()
|
(package private) PeerGroup |
getPeerGroup()
{@inheritDoc} |
void |
init(PeerGroup group,
ID assignedID,
Advertisement implAdv)
|
PrivilegedOperation |
newPrivilegedOperation(Element source)
|
PrivilegedOperation |
newPrivilegedOperation(Object subject,
Credential offerer)
|
int |
startApp(String[] args)
|
void |
stopApp()
|
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
public static final ModuleSpecID simpleACLAccessSpecID
PeerGroup group
ModuleImplAdvertisement implAdvertisement
Map ACLs
Constructor Detail |
public SimpleACLAccessService()
Method Detail |
public void init(PeerGroup group, ID assignedID, Advertisement implAdv) throws PeerGroupException
init
in interface Module
PeerGroupException
public int startApp(String[] args)
startApp
in interface Module
public void stopApp()
stopApp
in interface Module
public Advertisement getImplAdvertisement()
getImplAdvertisement
in interface Service
public Service getInterface()
getInterface
in interface Service
public AccessService.AccessResult doAccessCheck(PrivilegedOperation op, Credential cred)
doAccessCheck
in interface AccessService
public PrivilegedOperation newPrivilegedOperation(Object subject, Credential offerer)
newPrivilegedOperation
in interface AccessService
public PrivilegedOperation newPrivilegedOperation(Element source)
newPrivilegedOperation
in interface AccessService
PeerGroup getPeerGroup()
|
JXTA J2SE | ||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |