public interface Authorizer
Modifier and Type | Interface and Description |
---|---|
static interface |
Authorizer.AuthorizerDescription
Description of standard information about the custom authorizer.
|
Modifier and Type | Method and Description |
---|---|
AuthorizationResult |
authorize(Caller caller,
Environment callEnvironment,
Action action,
TargetAttribute target)
Authorize a management operation affecting an individual attribute.
|
AuthorizationResult |
authorize(Caller caller,
Environment callEnvironment,
Action action,
TargetResource target)
Authorize a management operation affecting an entire resource.
|
AuthorizationResult |
authorizeJmxOperation(Caller caller,
Environment callEnvironment,
JmxAction action,
JmxTarget target)
Authorize a JMX operation.
|
Set<String> |
getCallerRoles(Caller caller,
Environment callEnvironment,
Set<String> runAsRoles)
Gets the set of roles the caller can run as taking into account any requested 'run as' roles.
|
Authorizer.AuthorizerDescription |
getDescription()
Gets a description of the characteristics of this authorizer
|
Authorizer.AuthorizerDescription getDescription()
null
AuthorizationResult authorize(Caller caller, Environment callEnvironment, Action action, TargetAttribute target)
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
AuthorizationResult authorize(Caller caller, Environment callEnvironment, Action action, TargetResource target)
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
AuthorizationResult authorizeJmxOperation(Caller caller, Environment callEnvironment, JmxAction action, JmxTarget target)
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
action
- the action being authorized. Cannot be null
target
- the target of the action. Cannot be null
null
Set<String> getCallerRoles(Caller caller, Environment callEnvironment, Set<String> runAsRoles)
caller
- the caller. Cannot be null
callEnvironment
- the call environment. Cannot be null
runAsRoles
- any requested 'run as' roles. May be null
null
will be returned if the access control provider does not support role mapping.Copyright © 2023 JBoss by Red Hat. All rights reserved.