Oracle Entitlements Server: Interface EvaluationFunctionSample

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: INNER | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

com.bea.security.providers.authorization.asi
Interface EvaluationFunctionSample

public interface EvaluationFunctionSample

Sample interface for implementing java ATZ evaluation functions. The public method "string_longer_then" may be invoked to perform complex evaluations on attribute, or external data, while certain policy contains evaluation function with name "string_longer_then". One custom evaluation function must follow rules: 1. be public method. 2. have the same signature with the sample method: string_longer_then. 3. method name will be the evaluation function name.

Author:: Copyright © 2004-2008, Oracle and/or its affiliates. All rights reserved.

Method Summary
`boolean`	`string_longer_then(RequestHandle requestHandle, java.lang.Object[] args, javax.security.auth.Subject subject, java.util.Map roles, weblogic.security.spi.Resource resource, weblogic.security.service.ContextHandler contextHandler)` named evaluation function.

Method Detail

string_longer_then

public boolean string_longer_then(RequestHandle requestHandle,
                                  java.lang.Object[] args,
                                  javax.security.auth.Subject subject,
                                  java.util.Map roles,
                                  weblogic.security.spi.Resource resource,
                                  weblogic.security.service.ContextHandler contextHandler)
                           throws com.wles.arme.MissingAttributeException

named evaluation function. Additional authorization request data is made available to allow for more complex attribute evaluation. This method will be registered to ARME, and be invoked while the policy contains a custom evaluation function with name "string_longer_then".

Parameters:: requestHandle - the attributes container associated with the request, through which the function can get required attribute value.; args - an array of function arguments. Each element is either null, or a String; subject - the subject associated with the request; roles - the role membership of the subject key: role name. value: role object null if function is called during role mapping; resource - the resource associated with the request; contextHandler - the context associated with the request, may be null if non-existant
Returns:: true or false as the result of the function
Throws:: com.wles.arme.MissingAttributeException - for can not get required attribute value.