Authorization (core 1.6.0 API)

Overview

Package

Class

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

com.dtolabs.rundeck.core.authorization
Interface Authorization

All Known Subinterfaces:: LegacyAuthorization

All Known Implementing Classes:: BaseAclsAuthorization, BaseAuthorization, DenyAuthorization, JndiAuthorization, NoAuthorization, SAREAuthorization

public interface Authorization

Instances of classes that implement this interface take context and command info and lookup whether the user can execute the specified handler.

Method Summary
`Decision`	`evaluate(java.util.Map<java.lang.String,java.lang.String> resource, javax.security.auth.Subject subject, java.lang.String action, java.util.Set<Attribute> environment)` Evaluate the authorization request and return if this request is valid.
`java.util.Set<Decision>`	`evaluate(java.util.Set<java.util.Map<java.lang.String,java.lang.String>> resources, javax.security.auth.Subject subject, java.util.Set<java.lang.String> actions, java.util.Set<Attribute> environment)` Make a multiple resource determination.

Method Detail

evaluate

Decision evaluate(java.util.Map<java.lang.String,java.lang.String> resource,
                  javax.security.auth.Subject subject,
                  java.lang.String action,
                  java.util.Set<Attribute> environment)

Evaluate the authorization request and return if this request is valid. Make a single resource determination. The method is loosely based on the XACML model for structuring requests and response. These can be prefixed with a fully qualified namespace and ':'. If anything goes wrong in evaluating the request, the result will be false. No exception will be thrown.

Parameters:: resource - The properties that identify the resource.; subject - The properties that represent the subject.; action - A set of actions that are being requested on the resource.; environment - A set of environment properties (hostname, time of day, etc.)
Returns:: decision Return true if the subject's action on the object given the environment is authorized.

evaluate

java.util.Set<Decision> evaluate(java.util.Set<java.util.Map<java.lang.String,java.lang.String>> resources,
                                 javax.security.auth.Subject subject,
                                 java.util.Set<java.lang.String> actions,
                                 java.util.Set<Attribute> environment)

Make a multiple resource determination.

Parameters:: resources -; subject -; actions -; environment -
Returns:: decisions

Overview

Package

Class

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

com.dtolabs.rundeck.core.authorization Interface Authorization

evaluate

evaluate

com.dtolabs.rundeck.core.authorization
Interface Authorization