org.jboss.as.controller.access.rbac

Class DefaultPermissionFactory

java.lang.Object

org.jboss.as.controller.access.rbac.DefaultPermissionFactory

All Implemented Interfaces:

AuthorizerConfiguration.ScopedRoleListener, PermissionFactory

public class DefaultPermissionFactory
extends Object
implements PermissionFactory, AuthorizerConfiguration.ScopedRoleListener

Default PermissionFactory implementation that supports the WildFly default role-based access control permission scheme.

Author:

Brian Stansberry (c) 2013 Red Hat Inc.

Constructor Summary

Constructors

Constructor and Description
DefaultPermissionFactory(RoleMapper roleMapper, AuthorizerConfiguration authorizerConfiguration) Creates a new DefaultPermissionFactory

Method Summary

Modifier and Type	Method and Description
PermissionCollection	getRequiredPermissions(Action action, TargetAttribute target)
PermissionCollection	getRequiredPermissions(Action action, TargetResource target)
PermissionCollection	getRequiredPermissions(JmxAction action, JmxTarget target)
PermissionCollection	getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, Action action, TargetAttribute target)
PermissionCollection	getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, Action action, TargetResource target)
PermissionCollection	getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity, Environment callEnvironment, JmxAction action, JmxTarget target)
void	scopedRoleAdded(AuthorizerConfiguration.ScopedRole added) Notification that a scoped role is being added.
void	scopedRoleRemoved(AuthorizerConfiguration.ScopedRole removed) Notification that a scoped role has been removed.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

DefaultPermissionFactory

public DefaultPermissionFactory(RoleMapper roleMapper,
                                AuthorizerConfiguration authorizerConfiguration)

Creates a new DefaultPermissionFactory

Parameters:

roleMapper - the role mapper. Cannot be null

authorizerConfiguration - the configuration for the Authorizer that is using this factory. Cannot be null

Method Detail

getUserPermissions

public PermissionCollection getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity,
                                               Environment callEnvironment,
                                               Action action,
                                               TargetAttribute target)

Specified by:

getUserPermissions in interface PermissionFactory

getUserPermissions

public PermissionCollection getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity,
                                               Environment callEnvironment,
                                               Action action,
                                               TargetResource target)

Specified by:

getUserPermissions in interface PermissionFactory

getUserPermissions

public PermissionCollection getUserPermissions(org.wildfly.security.auth.server.SecurityIdentity identity,
                                               Environment callEnvironment,
                                               JmxAction action,
                                               JmxTarget target)

Specified by:

getUserPermissions in interface PermissionFactory

getRequiredPermissions

public PermissionCollection getRequiredPermissions(Action action,
                                                   TargetAttribute target)

Specified by:

getRequiredPermissions in interface PermissionFactory

getRequiredPermissions

public PermissionCollection getRequiredPermissions(Action action,
                                                   TargetResource target)

Specified by:

getRequiredPermissions in interface PermissionFactory

getRequiredPermissions

public PermissionCollection getRequiredPermissions(JmxAction action,
                                                   JmxTarget target)

Specified by:

getRequiredPermissions in interface PermissionFactory

scopedRoleAdded

public void scopedRoleAdded(AuthorizerConfiguration.ScopedRole added)

Description copied from interface: AuthorizerConfiguration.ScopedRoleListener

Notification that a scoped role is being added. The notification will be received before the role becomes visible in the roles collections exposed by the AuthorizerConfiguration.

Specified by:

scopedRoleAdded in interface AuthorizerConfiguration.ScopedRoleListener

Parameters:

added - the scoped role

scopedRoleRemoved

public void scopedRoleRemoved(AuthorizerConfiguration.ScopedRole removed)

Description copied from interface: AuthorizerConfiguration.ScopedRoleListener

Notification that a scoped role has been removed. The notification will be received after the role is no longer visible in the roles collections exposed by the AuthorizerConfiguration.

Specified by:

scopedRoleRemoved in interface AuthorizerConfiguration.ScopedRoleListener

Parameters:

removed - the scoped role