com.sun.identity.liberty.ws.interfaces
Interface Authorizer
- public interface Authorizer
This class Authorizer
is an interface for identity service
to check authorization of a WSC
.
Field Summary |
static java.lang.String |
AUTH_TYPE
Key of a parameter Map which contains information useful for policy
evaluation. |
static java.lang.String |
MESSAGE
Key of a parameter Map which contains information useful for policy
evaluation. |
static java.lang.String |
USER_ID
Key of a parameter Map which contains information useful for policy
evaluation. |
Method Summary |
java.lang.Object |
getAuthorizationDecision(java.lang.Object credential,
java.lang.String action,
java.lang.Object data,
java.util.Map env)
Returns authorization decision for the given action(query or modify)
and to the given select data |
boolean |
isAuthorized(java.lang.Object credential,
java.lang.String action,
java.lang.Object data,
java.util.Map env)
Checks if the WSC is authorized to query or modify the
select data. |
USER_ID
public static final java.lang.String USER_ID
- Key of a parameter Map which contains information useful for policy
evaluation. The value of this key is id of the user whose resource id
being accessed.
AUTH_TYPE
public static final java.lang.String AUTH_TYPE
- Key of a parameter Map which contains information useful for policy
evaluation. The value of this key is the authentication mechanism
web service consumer used.
MESSAGE
public static final java.lang.String MESSAGE
- Key of a parameter Map which contains information useful for policy
evaluation. The value of this key is
com.sun.identity.liberty.ws.soapbinding.Message
.
isAuthorized
public boolean isAuthorized(java.lang.Object credential,
java.lang.String action,
java.lang.Object data,
java.util.Map env)
- Checks if the
WSC
is authorized to query or modify the
select data.
- Parameters:
credential
- credential of a WSC
.action
- request action.data
- Object who is being accessed.env
- A Map contains information useful for policy evaluation.
The following key is defined and its value should be passed in:
Key: USER_ID
Value: id of the user whose resource is being accessed.
Key: AUTH_TYPE
Value: The authentication mechanism WSC
used.
Key: MESSAGE
Value:
com.sun.identity.liberty.ws.soapbinding.Message
.- Returns:
- true if the
WSC
is authorized.
getAuthorizationDecision
public java.lang.Object getAuthorizationDecision(java.lang.Object credential,
java.lang.String action,
java.lang.Object data,
java.util.Map env)
throws java.lang.Exception
- Returns authorization decision for the given action(query or modify)
and to the given select data
- Parameters:
credential
- credential of a WSC
.action
- request action.data
- Object who is being accessed.env
- A Map contains information useful for policy evaluation.
The following key is defined and its value should be passed in:
Key: USER_ID
Value: id of the user whose resource is being accessed.
Key: AUTH_TYPE
Value: The authentication mechanism WSC
used.
Key: MESSAGE
Value:
com.sun.identity.liberty.ws.soapbinding.Message
.- Returns:
AuthorizationDecision
object contains authorization
decision information for the given resource.- Throws:
java.lang.Exception
-
Copyright 2005 Sun Microsystems, Inc. All rights reserved. Use is subject to license terms.