public class ManagementPermissionAuthorizer extends Object implements Authorizer
Authorizer.AuthorizerDescription
Constructor and Description |
---|
ManagementPermissionAuthorizer(PermissionFactory permissionFactory) |
Modifier and Type | Method and Description |
---|---|
AuthorizationResult |
authorize(Caller caller,
Environment callEnvironment,
Action action,
TargetAttribute target)
Authorize a management operation affecting an individual attribute.
|
AuthorizationResult |
authorize(Caller caller,
Environment callEnvironment,
Action action,
TargetResource target)
Authorize a management operation affecting an entire resource.
|
AuthorizationResult |
authorizeJmxOperation(Caller caller,
Environment callEnvironment,
JmxAction action,
JmxTarget target)
Authorize a JMX operation.
|
Set<String> |
getCallerRoles(Caller caller,
Environment callEnvironment,
Set<String> runAsRoles)
Gets the set of roles the caller can run as taking into account any requested 'run as' roles.
|
Authorizer.AuthorizerDescription |
getDescription()
Gets a description of the characteristics of this authorizer
|
public ManagementPermissionAuthorizer(PermissionFactory permissionFactory)
public Authorizer.AuthorizerDescription getDescription()
Authorizer
getDescription
in interface Authorizer
null
public AuthorizationResult authorize(Caller caller, Environment callEnvironment, Action action, TargetAttribute target)
Authorizer
authorize
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
public AuthorizationResult authorize(Caller caller, Environment callEnvironment, Action action, TargetResource target)
Authorizer
authorize
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
public AuthorizationResult authorizeJmxOperation(Caller caller, Environment callEnvironment, JmxAction action, JmxTarget target)
Authorizer
authorizeJmxOperation
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
public Set<String> getCallerRoles(Caller caller, Environment callEnvironment, Set<String> runAsRoles)
Authorizer
getCallerRoles
in interface Authorizer
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
runAsRoles
- any requested 'run as' roles. May be null
null
will be returned if the access control provider does not support role mapping.Copyright © 2023 JBoss by Red Hat. All rights reserved.