public class GridOsSecurityProcessor extends GridProcessorAdapter implements GridSecurityProcessor
GridSecurityProcessor
.GridComponent.DiscoveryDataExchangeType
ctx, log
Constructor and Description |
---|
GridOsSecurityProcessor(GridKernalContext ctx) |
Modifier and Type | Method and Description |
---|---|
SecurityContext |
authenticate(AuthenticationContext authCtx)
Authenticates subject via underlying Authenticator.
|
SecuritySubject |
authenticatedSubject(UUID nodeId)
Gets authenticated node subject.
|
Collection<SecuritySubject> |
authenticatedSubjects()
Gets collection of authenticated nodes.
|
SecurityContext |
authenticateNode(ClusterNode node,
SecurityCredentials cred)
Authenticates grid node with it's attributes via underlying Authenticator.
|
void |
authorize(String name,
SecurityPermission perm,
SecurityContext securityCtx)
Authorizes grid operation.
|
boolean |
enabled() |
boolean |
isGlobalNodeAuthentication()
Gets flag indicating whether all nodes or coordinator only should run the authentication for joining node.
|
void |
onSessionExpired(UUID subjId)
Callback invoked when subject session got expired.
|
assertParameter, collectGridNodeData, collectJoiningNodeData, discoveryDataType, onDisconnected, onGridDataReceived, onJoiningNodeDataReceived, onKernalStart, onKernalStop, onReconnected, printMemoryStats, start, stop, toString, validateNode
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
collectGridNodeData, collectJoiningNodeData, discoveryDataType, onDisconnected, onGridDataReceived, onJoiningNodeDataReceived, onKernalStart, onKernalStop, onReconnected, printMemoryStats, start, stop, validateNode
public GridOsSecurityProcessor(GridKernalContext ctx)
ctx
- Kernal context.public SecurityContext authenticateNode(ClusterNode node, SecurityCredentials cred) throws IgniteCheckedException
authenticateNode
in interface GridSecurityProcessor
node
- Node id to authenticate.cred
- Security credentials.True
if succeeded, false
otherwise.IgniteCheckedException
- If error occurred.public boolean isGlobalNodeAuthentication()
isGlobalNodeAuthentication
in interface GridSecurityProcessor
True
if all nodes should run authentication process, false
otherwise.public SecurityContext authenticate(AuthenticationContext authCtx) throws IgniteCheckedException
authenticate
in interface GridSecurityProcessor
authCtx
- Authentication context.True
if succeeded, false
otherwise.IgniteCheckedException
- If error occurred.public Collection<SecuritySubject> authenticatedSubjects()
authenticatedSubjects
in interface GridSecurityProcessor
public SecuritySubject authenticatedSubject(UUID nodeId)
authenticatedSubject
in interface GridSecurityProcessor
nodeId
- Subject ID.public void authorize(String name, SecurityPermission perm, @Nullable SecurityContext securityCtx) throws SecurityException
authorize
in interface GridSecurityProcessor
name
- Cache name or task class name.perm
- Permission to authorize.securityCtx
- Optional security context.SecurityException
- If security check failed.public void onSessionExpired(UUID subjId)
onSessionExpired
in interface GridSecurityProcessor
subjId
- Subject ID.public boolean enabled()
enabled
in interface GridSecurityProcessor
Follow @ApacheIgnite
Ignite Fabric : ver. 2.0.0 Release Date : April 30 2017