Package | Description |
---|---|
org.opends.server.authorization.dseecompat |
Contains the Directory Server Sun Java System Directory Server Enterprise
Edition (dseecompat) compatability access control handler implementation.
|
Modifier and Type | Method and Description |
---|---|
static Aci |
Aci.decode(org.forgerock.opendj.ldap.ByteSequence byteString,
org.forgerock.opendj.ldap.Dn dn)
Decode an ACI byte string.
|
Modifier and Type | Method and Description |
---|---|
List<Aci> |
AciEvalContext.getAllowList()
Get the list allow ACIs.
|
List<Aci> |
AciList.getCandidateAcis(org.forgerock.opendj.ldap.Dn baseDN)
Using the base DN, return a list of ACIs that are candidates for
evaluation by walking up from the base DN towards the root of the
DIT gathering ACIs on parents.
|
List<Aci> |
AciEvalContext.getDenyList()
Get the list of deny ACIs.
|
Modifier and Type | Method and Description |
---|---|
void |
AciTargetMatchContext.addTargAttrFiltersMatchAci(Aci aci)
Add the specified ACI to a list of ACIs that have a targattrfilters rule
that matched.
|
int |
Aci.compareTo(Aci aci)
Compares this Aci with the provided Aci based on a natural order.
|
static EnumEvalResult |
Aci.evaluate(AciEvalContext evalCtx,
Aci aci)
Static class used to evaluate an ACI and evaluation context.
|
boolean |
AciEvalContext.hasTargAttrFiltersMatchAci(Aci aci)
The context maintains a hashtable of ACIs that matched the targattrfilters
keyword evaluation.
|
static boolean |
Aci.isApplicable(Aci aci,
AciTargetMatchContext matchCtx)
Test if the given ACI is applicable using the target match information
provided.
|
boolean |
TargAttrFilters.isApplicableMod(AciTargetMatchContext matchCtx,
Aci aci)
Check if this TargAttrFilters object is applicable to the target
specified match context.
|
static boolean |
AciTargets.isExtOpApplicable(Aci aci,
AciTargetMatchContext matchCtx)
Check an ACI's extop rule against a target match context.
|
static boolean |
AciTargets.isTargAttrFiltersApplicable(Aci aci,
AciTargetMatchContext matchCtx)
Check an ACI's targattrfilters rule against a target match context.
|
static boolean |
AciTargets.isTargetApplicable(Aci aci,
AciTargetMatchContext matchCtx)
Wrapper class that passes an ACI, an ACI's targets and the specified
target match context's resource entry DN to the main isTargetApplicable
method.
|
static boolean |
AciTargets.isTargetApplicable(Aci aci,
AciTargets targets,
org.forgerock.opendj.ldap.Dn entryDN)
Main target isApplicable method.
|
static boolean |
AciTargets.isTargetAttrApplicable(Aci aci,
AciTargetMatchContext targetMatchCtx)
Checks an provided ACI's targetattr rule against a target match
context.
|
static boolean |
AciTargets.isTargetControlApplicable(Aci aci,
AciTargetMatchContext matchCtx)
Check an ACI's targetcontrol rule against a target match context.
|
static boolean |
AciTargets.isTargetFilterApplicable(Aci aci,
AciTargetMatchContext matchCtx)
Checks an ACI's targetfilter rule information against a target match
context.
|
void |
AciEvalContext.setEvaluationResult(EnumEvalReason reason,
Aci decidingAci)
Set the reason and the ACI that decided why the last access evaluation was
evaluated the way it was.
|
static boolean |
AciEffectiveRights.setTargAttrAci(AciEvalContext evalCtx,
Aci aci,
boolean denyAci)
If the specified ACI is in the targattrfilters hashtable contained in the
evaluation context, set the evaluation context's targattrfilters match
variable to either ACL_TARGATTR_DENY_MATCH or ACL_TARGATTR_ALLOW_MATCH
depending on the value of the variable denyAci.
|
Modifier and Type | Method and Description |
---|---|
void |
AciList.addAci(org.forgerock.opendj.ldap.Dn dn,
SortedSet<Aci> acis)
Add a set of ACIs to the ACI list.
|
void |
AciTargetMatchContext.setAllowList(List<Aci> allowList)
Set the allow ACI list.
|
void |
AciTargetMatchContext.setDenyList(List<Aci> denyList)
Set the deny ACI list.
|
Copyright © 2010-2017 ForgeRock AS. All Rights Reserved.