| Modifier and Type | Method and Description |
|---|---|
java.util.List<E> |
SearchResultIterator.getNextPage() |
java.util.List<E> |
SearchResultIterator.getPage(PageRequestInfo pageInfo) |
java.util.List<E> |
SearchResultIterator.getPreviousPage() |
| Modifier and Type | Class and Description |
|---|---|
class |
ApplicationRoleInUseException
This exception is thrown when an application role to be deleted is referenced by other application roles.
|
class |
ExternalPolicyObjectException |
class |
PolicyObjectAlreadyExistsException
This exception is thrown when a specific policy object (grantee, role etc) already exists in the policy store
|
class |
PolicyObjectNotFoundException
This exception is thrown when a policy object (grantee, role etc) does not exist in the policy store.
|
class |
PolicyStoreAuditException |
class |
PolicyStoreConfigException |
class |
PolicyStoreConnectivityException
This exception is thrown when an underlying connectivity issue happens.
|
class |
PolicyStoreContainerNotReadyException |
class |
PolicyStoreOperationNotAllowedException
An exception thrown by the PolicyStore M-APIs that indicate the store operation was not allowed.
|
class |
ResourceFinderException
This is a resource finder related exception that is thrown when a
ResourceFinder cannot be instantiated or invoked by JPS. |
| Modifier and Type | Method and Description |
|---|---|
void |
ApplicationPolicy.addPrincipalToAppRole(PrincipalEntry principalEntry, java.lang.String appRoleName)
Adds this principal as member to this app role
|
void |
ApplicationPolicy.addPrincipalToAppRole(java.security.Principal principal, java.lang.String appRoleName)
Adds this principal as member to this app role
|
void |
ApplicationPolicy.alterAppRole(java.lang.String appRoleName, java.lang.String newDescription, java.lang.String newDisplayName)
Alters an application Role's display Name and description These paramters are not used to compare two application roles for similarity An application Role's name or GUID are unique/ immutable properties NOTE: Supplying "null" to Description or Display Name will replace previous Description/ Display Name with "null"
|
void |
ApplicationPolicy.alterAppRoleCategory(java.lang.String appRoleName, java.lang.String newCategory)
Alters an application Role's category An application Role's name or GUID are unique/ immutable properties NOTE: Supplying "null" to category will replace previous category with "null"
|
java.util.Set<ResourceActionsEntry> |
PolicyStore.checkBulkAuthorization(javax.security.auth.Subject subject, java.util.Set<ResourceActionsEntry> requestedResources)
Determines whether the subject has access one or more Resource Actions.
|
boolean |
ApplicationPolicy.containsAppRole(java.lang.String appRoleName)
checks if this app role exists.
|
boolean |
ApplicationPolicy.containsPrincipalAsMember(java.lang.String appRoleName, java.security.Principal principal)
Checks if this principal is a member of this app role
|
ApplicationPolicy |
PolicyStore.createApplicationPolicy(java.lang.String appId)
Creates an application policy given the application name -
appid. |
ApplicationPolicy |
PolicyStore.createApplicationPolicy(java.lang.String appId, java.lang.String displayName, java.lang.String description, ApplicationPolicy.DATA_SECURITY_TYPE type)
Creates an application policy given the application name -
appid, display name displayName and description description and type type |
void |
ApplicationPolicy.createAppRole(java.lang.String appRoleName, java.lang.String displayName, java.lang.String desc, ExtendedProperty appRoleAttributes)
Creates the requested application role in the policy store with extended attributes.
|
void |
ApplicationPolicy.createAppRole(java.lang.String appRoleName, java.lang.String displayName, java.lang.String desc, java.lang.String guid)
Creates the requested application role in policy store.
|
void |
ApplicationPolicy.createAppRole(java.lang.String appRoleName, java.lang.String displayName, java.lang.String desc, java.lang.String guid, ExtendedProperty appRoleAttributes)
Creates the requested application role in the policy store with extended attributes.
|
void |
PolicyStore.deleteApplicationPolicy(java.lang.String appId)
Delete an application policy given the application name -
appid. |
java.util.List<AppRoleEntry> |
ApplicationPolicy.getAllAppRoleEntries()
Returns all app role entries
|
java.util.List<JpsApplicationRole> |
ApplicationPolicy.getAllAppRoles()
Returns the list of all the application roles in this application context.
|
java.util.List<AppRoleEntry> |
ApplicationPolicy.getAllGrantedAppRoleEntries(java.security.Principal principal)
Returns all the granted app role entries for this principal where the principal is either a direct member or indirect member through other app roles.
|
java.util.List<JpsApplicationRole> |
ApplicationPolicy.getAllGrantedAppRoles(java.security.Principal principal)
Returns all the granted app roles for this principal where the principal is either a direct member or indirect member through other app roles.
|
java.util.Map<java.lang.String,ApplicationPolicy> |
PolicyStore.getApplicationPolicies()
Deprecated.
Use
getApplicationPolicy(String appId) Returns a map of applications and their policies managed by this PolicyStore This may in turn be queried for application roles, and policies provisioned for a given application |
ApplicationPolicy |
PolicyStore.getApplicationPolicy(java.lang.String appId)
Returns a application policy for the given application by this PolicyStore
|
java.util.List<AppRoleEntry> |
PolicyStore.getAppRoles(StoreAppRoleSearchQuery query)
Search ApplicationRoles across one or more Applications based upon user specified criteria (query)
Caller should have PolicyStoreAccessPermission("context=APPLICATION,name=Queried Applicaiton's stripe Id" , "getApplicationPolicy") permission to search for roles.If the caller does not supply an application name (or supplies a partial application name with some MATCHER other than EXACT) then they should have PolicyStoreAccessPermission("context=APPLICATION, name=*" , "getApplicationPolicy") to search for app roles. |
java.util.List<java.security.Principal> |
ApplicationPolicy.getAppRolesMembers(java.lang.String appRoleName)
Returns the list of principals granted to this application role.
|
java.util.List<java.lang.String> |
PolicyStore.getConfiguredApplications()
Deprecated.
|
java.util.List<JpsApplicationRole> |
ApplicationPolicy.getGrantedAppRoles(java.security.Principal principal)
Returns all the granted app roles for this principal where the principal is a direct member of the App Role.
|
java.util.List<GrantEntry> |
PolicyMgmt.getGrantEntries()
Get all the grants defined in this scope (system or application).
|
long |
ApplicationPolicy.getObjectCount(EntryReference.EntryType type)
Returns policy object count with specified entry type
|
JavaPolicy |
PolicyStore.getSystemPolicy()
Returns the "system" or "non-app-specific" or "global" policy
|
void |
PolicyMgmt.grant(java.util.List<PrincipalEntry> principalEntries, CodeSourceEntry csEntry, java.util.List<PermissionEntry> permissionEntries)
Grant a set of permissions to this group of principals and code source, or otherwise collectively known as the grantee.
|
void |
PolicyMgmt.grant(java.security.Principal[] principals, java.security.CodeSource cs, java.security.Permission[] perms)
Grant a set of permissions to this group of principals and code source, or otherwise collectively known as the grantee.
|
void |
PolicyStore.modifyApplicationPolicy(ApplicationPolicy app)
Modify an application policy in the persistence store.
|
void |
PolicyMgmt.modifyGrant(java.util.List<PrincipalEntry> principalEntries, CodeSourceEntry csEntry, PermissionEntry oldpermissionEntry, PermissionEntry newPermissionEntry)
Modifies a grant by replacing the permission in an existing grant with a given permission if not already present.
|
void |
ApplicationPolicy.removeAppRole(java.lang.String appRoleName)
Removes the application role from policy store.
|
void |
ApplicationPolicy.removeAppRole(java.lang.String appRoleName, boolean force)
Removes the application role from policy store.
|
void |
ApplicationPolicy.removePrincipalFromAppRole(PrincipalEntry principalEntry, java.lang.String appRoleName)
Removes this principal from this appRoleName
|
void |
ApplicationPolicy.removePrincipalFromAppRole(java.security.Principal principal, java.lang.String appRoleName)
Removes this principal from this appRoleName
|
void |
PolicyMgmt.revoke(java.util.List<PrincipalEntry> principalEntries, CodeSourceEntry csEntry, java.util.List<PermissionEntry> permissionEntries)
Revoke a grant of permissions from this set of principals and codesource combination
|
void |
PolicyMgmt.revoke(java.security.Principal[] principals, java.security.CodeSource cs, java.security.Permission[] perms)
Revoke a grant of permissions from this set of principals and codesource combination.
|
java.util.List<AppRoleEntry> |
ApplicationPolicy.searchAppRoles(java.lang.String appRoleName)
This method returns a list of application roles by an app role name.
|
java.util.List<AppRoleEntry> |
ApplicationPolicy.searchAppRoles(java.lang.String roleAttrName, java.lang.String roleAttrNameVal, boolean inequality)
This method searches application roles by an attribute and its value.
|
| Modifier and Type | Method and Description |
|---|---|
void |
GrantManager.bulkGrant(java.util.Set<PrincipalEntry> principalEntries, java.lang.String permissionSetName)
Grants the specified named permission set to every one of the principalEntries supplied in the input set.
|
void |
GrantManager.bulkRevoke(java.util.Set<PrincipalEntry> principalEntries, java.lang.String permissionSetName)
Revokes the specified named permission set from every one of the principalEntries supplied in the input set.
|
EntryReference |
PermissionSetManager.createPermissionSet(PermissionSetEntry permSet)
Create a PermissionSet
|
EntryReference |
ResourceManager.createResource(ResourceEntry resrc)
Create a Resource
|
EntryReference |
ResourceTypeManager.createResourceType(ResourceTypeEntry entry)
Validates and creates the given resource type in the backend data store.
|
EntryReference |
RoleCategoryManager.createRoleCategory(RoleCategoryEntry entry)
Validates and creates the given role category in the backend data store.
|
void |
PermissionSetManager.deletePermissionSet(EntryReference ref, boolean cascade)
Delete a PermissionSet
|
void |
ResourceManager.deleteResource(EntryReference res, boolean cascadeDelete)
Deletes a Resource
|
void |
ResourceTypeManager.deleteResourceType(EntryReference rtRef, boolean cascadeDelete)
Deletes the resource type.
|
void |
RoleCategoryManager.deleteRoleCategory(EntryReference rcRef)
Deletes the role category.
|
java.util.List<AppRoleEntry> |
ChangeLogManager.getApplicationRoles(ChangeLogSearchQuery query)
Returns the added AND modified roles in the current application policy after the timestamp specified in the query The timestamp must be obtained from the API:
ChangeLogManager.getLastModifiedTimeStamp(String, ChangeLogEntity)Note that the returned list may contain duplicates of Application Roles returned earlier. |
java.util.List<AppRoleEntry> |
ChangeLogManager.getDeletedAppRoles(ChangeLogSearchQuery query)
Returns all approles deleted from the current application policy after the supplied timestamp
|
java.util.List<PermissionEntry> |
ChangeLogManager.getDeletedPermissions(ChangeLogSearchQuery query)
Returns all permissions deleted from the current application policy after the supplied timestamp.
|
java.util.List<GrantEntry> |
GrantManager.getGrants(GrantSearchQuery query)
Query the store to retrieve Grants based upon a search criteria.
|
java.util.List<GrantEntry> |
GrantManager.getGrantsForApplicationRoles(java.util.List<AppRoleEntry> appRoleNameEntries, boolean order)
Search for Grants based on one or more Application Roles.
|
java.util.List<GrantEntry> |
GrantManager.getGrantsForApplicationRolesAndPermissionSets(java.util.List<AppRoleEntry> appRoleNameEntries, boolean appRoleOrder, java.util.List<PermissionSetEntry> permissionSetEntries, boolean permSetOrder)
Search for Grants based on Application Roles AND Permission Sets.
|
java.util.List<GrantEntry> |
GrantManager.getGrantsForPermissionSets(java.util.List<PermissionSetEntry> permissionSetEntries, boolean order)
Search for Grants based on a PermissionSet.
|
java.lang.String |
ChangeLogManager.getLastModifiedTimeStamp(java.lang.String oldtimeStamp, ChangeLogManager.ChangeLogEntity ent)
Gets the last known time stamp (of change) to the ChangeLogEntity ent after the timeStamp provided.
|
PDPInfoEntry |
PDPInfoViewer.getPDPInfo(java.lang.String pdpAddress)
Gets the PDP instance according to the address of PDP
|
java.util.List |
PDPInfoViewer.getPDPInfos()
Gets all PDP instances
|
PermissionSetEntry |
PermissionSetManager.getPermissionSet(java.lang.String permissionSetName)
Get a PermissionSet by Name.
|
java.util.List<PermissionSetEntry> |
PermissionSetManager.getPermissionSets(PermissionSetSearchQuery query)
Query PermissionSets based upon a search criteria.
|
java.util.List<GrantEntry> |
ChangeLogManager.getPolicies(ChangeLogSearchQuery query)
Returns the added AND modified policies (grant entries) in the current application policy after the timestamp specified in the query The timestamp must be obtained from the API:
ChangeLogManager.getLastModifiedTimeStamp(String, ChangeLogEntity)Note that the returned list may contain duplicates of grantes already returned earlier. |
ResourceEntry |
ResourceFinder.getResource(java.lang.String resourceTypeName, java.lang.String name)
Get the resource given the name and the type of the resource.
|
java.util.List<ResourceEntry> |
ResourceFinder.getResources(java.lang.String resourceTypeName, ResourceSearchQuery query)
Search for resources based on SearchQuery.
|
ResourceTypeEntry |
ResourceTypeManager.getResourceType(java.lang.String name)
Get the resource type entry given name of the resource type.
|
java.util.List<ResourceTypeEntry> |
ResourceTypeManager.getResourceTypes(ResourceTypeSearchQuery query)
Gets all the resource types satisfying the query in the current scope (system/ application).
|
java.util.List<RoleCategoryEntry> |
RoleCategoryManager.getRoleCategories(RoleCategorySearchQuery query)
Gets all the role categories satisfying the query in the current scope (system/ application).
|
RoleCategoryEntry |
RoleCategoryManager.getRoleCategory(java.lang.String name)
Get the role category entry given name of the role category.
|
void |
GrantManager.grant(java.util.Set<PrincipalEntry> principalEntries, CodeSourceEntry csEntry, java.lang.String permissionSetName)
Grant a named PermissionSet to this group of principals and code source, or otherwise collectively known as the grantee.
|
void |
PermissionSetManager.modifyPermissionSet(EntryReference ref, javax.naming.directory.ModificationItem[] modItems)
Modify the PermissionSet.
|
void |
PermissionSetManager.modifyPermissionSet(EntryReference ref, ResourceActionsEntry resourceActionsToAdd, ResourceActionsEntry resourceActionsToDelete)
Modify the PermissionSet
|
void |
ResourceManager.modifyResource(EntryReference res, javax.naming.directory.ModificationItem[] modItems)
Modifies a Resource
|
void |
ResourceTypeManager.modifyResourceType(EntryReference rtRef, javax.naming.directory.ModificationItem[] modItems)
Modifies the resource type referred by rtRef.
|
void |
RoleCategoryManager.modifyRoleCategory(EntryReference rcRef, javax.naming.directory.ModificationItem[] modItems)
Modifies the role category referred by rcRef.
|
<T> T |
EntityManager.resolveReference(EntryReference reference, java.lang.Class<T> klass)
Given a reference to an entity, return a copy from the persistent store.
|
void |
GrantManager.revoke(java.util.Set<PrincipalEntry> principalEntries, CodeSourceEntry csEntry, java.lang.String permissionSetName)
Revoke a grant of a PermissionSet from this set of principals and codesource combination
|
| Modifier and Type | Method and Description |
|---|---|
void |
RASConfigurationBindingManager.bindTargetDatabase(java.lang.String targetDatabaseName, java.lang.String appName)
Create bindings between an application and a target database.
|
RASAttributeCollectionEntry |
RASAttributeCollectionManager.createRASAttributeCollection(java.lang.String name, java.lang.String displayName, java.lang.String description, java.lang.String handlerSchemaName, java.lang.String handlerPackageName, java.lang.String handlerFunctionName, java.util.List<RASAttributeEntry> attrList, java.util.List<java.lang.String> policyRuleRefs)
Creates a new RAS attribute collection with given parameters.
|
RASPolicyEntry |
RASPolicyManager.createRASPolicy(java.lang.String name, java.lang.String displayName, java.lang.String description, java.util.List<RASResourceEntry> target, java.util.List<java.lang.String> referredRules, java.util.Set<RASPolicyEntry.RASParameterValue> parameterValues, RASPolicyEntry.ACLMatchType matchType, boolean isStatic)
Create a RAS Policy
|
RASPolicyRuleEntry |
RASPolicyRuleManager.createRASPolicyRule(java.lang.String name, java.lang.String displayName, java.lang.String description, java.lang.String principalName, RASPolicyRuleEntry.PrincipalType principalType, java.util.Set<java.lang.String> privileges, PolicyRuleEntry.EffectType effect, java.util.Date startDate, java.util.Date endDate, boolean invert)
Creates RAS policy rule.
|
RASPolicySetEntry |
RASPolicySetManager.createRASPolicySet(java.lang.String name, java.lang.String displayName, java.lang.String description, java.util.List<RASPolicyEntry> policies)
Creates RAS policy set
|
RASResourceEntry |
RASResourceManager.createRASResource(java.lang.String name, java.lang.String displayName, java.lang.String description, RASResourceTypeEntry rasResType, java.lang.String sqlPredicate, java.util.Set<RASResourceEntry.RASSqlParameterDefinition> parameterDefinitions)
Create a RAS resource
|
RASResourceTypeEntry |
RASResourceTypeManager.createRASResourceType(java.lang.String name, java.lang.String displayName, java.lang.String description, java.util.Set<RASResourceTypeEntry.DatabaseObject> databaseObjects, java.util.Set<java.lang.String> privileges, java.util.Map<java.lang.String,java.util.Set<java.lang.String>> aggregatePrivileges, java.util.Set<RASResourceTypeEntry.ColumnConstraint> columnConstraints, RASResourceTypeEntry.PolicyInheritanceInfo policyInheritanceInfo, java.util.Set<RASResourceTypeEntry.StatementType> statementTypes, boolean allowOwnerByPass)
Create a RASResourceTypeEntry object whit all parameters specific to RAS ResourceType.
|
RASTargetDatabaseEntry |
RASConfigurationManager.createTargetDatabase(java.lang.String targetDatabaseName, java.lang.String displayName, java.lang.String description, java.lang.String address, java.util.Properties connectionProperties, java.lang.String schema)
Create a configuration for RAS target database.
|
void |
RASAttributeCollectionManager.deleteRASAttributeCollection(java.lang.String name)
Deletes the RAS attribute collection with the given name.
|
void |
RASPolicyManager.deleteRASPolicy(java.lang.String name, boolean cascading)
Deletes a RAS policy with the given name
|
void |
RASPolicyRuleManager.deleteRASPolicyRule(java.lang.String name, boolean cascading)
Deletes the policy rule.
|
void |
RASPolicySetManager.deleteRASPolicySet(java.lang.String name)
Delete RAS policy set.
|
void |
RASResourceManager.deleteRASResource(java.lang.String rasResourceTypeName, java.lang.String name, boolean cascade)
Deletes the resource.
|
void |
RASResourceTypeManager.deleteRASResourceType(java.lang.String name, boolean cascade)
Delete a RASResourceType via its name.
|
void |
RASConfigurationManager.deleteTargetDatabase(java.lang.String targetDatabaseName)
Delete configuration for a given RAS target database.
|
java.util.List<RASApplicationPolicy> |
RASConfigurationBindingManager.getBoundRASApplications(java.lang.String targetDatabaseName)
Retrieve application names bound to a target database.
|
java.util.List<RASTargetDatabaseEntry> |
RASConfigurationBindingManager.getBoundTargetDatabases(java.lang.String appName)
Retrieve target database Entries bound to a given application.
|
RASAttributeCollectionEntry |
RASAttributeCollectionManager.getRASAttributeCollection(java.lang.String name)
Get the RAS attribute collection entry with the given name.
|
java.util.List<RASAttributeCollectionEntry> |
RASAttributeCollectionManager.getRASAttributeCollections(RASAttributeCollectionSearchQuery query)
Gets all the RAS attribute collections satisfying the query in the current scope (system/ application).
|
java.util.List<RASPolicyEntry> |
RASPolicyManager.getRASPolicies(RASPolicySearchQuery rasPolicySearchQuery)
Gets all RAS policies which satisfy the query
|
RASPolicyEntry |
RASPolicyManager.getRASPolicy(java.lang.String name)
Gets RAS policy by its name
|
RASPolicyRuleEntry |
RASPolicyRuleManager.getRASPolicyRule(java.lang.String name)
Returns the RAS policy rule by its name.
|
java.util.List<RASPolicyRuleEntry> |
RASPolicyRuleManager.getRASPolicyRules(RASPolicyRuleSearchQuery rasPolicyRuleSearchQuery)
Queries RAS policy rules.
|
RASPolicySetEntry |
RASPolicySetManager.getRASPolicySet(java.lang.String name)
Gets RAS policy set by its name
|
java.util.List<RASPolicySetEntry> |
RASPolicySetManager.getRASPolicySets(RASPolicySetSearchQuery rasPolicySetSearchQuery)
Queries RAS policy set with the criteria
|
RASResourceEntry |
RASResourceManager.getRASResource(java.lang.String resourceTypeName, java.lang.String name)
Get the ras resource given the name and the type of the resource.
|
java.util.List<RASResourceEntry> |
RASResourceManager.getRASResources(RASResourceSearchQuery query)
Get RAS resource objects satisfying the query.
|
RASResourceTypeEntry |
RASResourceTypeManager.getRASResourceType(java.lang.String name)
Fetch a RAS ResourceType via it's name
|
java.util.List<RASResourceTypeEntry> |
RASResourceTypeManager.getRASResourceTypeEntries(RASResourceTypeSearchQuery rasResourceTypeSearchQuery)
Via a search query <rasResourceTypeSearchQuery> to get a list of RASResourceTypeEntries
|
RASTargetDatabaseEntry |
RASConfigurationManager.getTargetDatabase(java.lang.String targetDatabaseName)
Get Instance of target database Configuration, by target database Name.
|
java.util.List<RASTargetDatabaseEntry> |
RASConfigurationManager.getTargetDatabases(RASTargetDatabaseSearchQuery query)
Get a set of RASTargetDatabase entries base on search pattern
|
void |
RASAttributeCollectionManager.modifyRASAttributeCollection(RASAttributeCollectionEntry item)
Modifies the RAS attribute collection from the given RAS attributeCollection entry.
|
void |
RASPolicyManager.modifyRASPolicy(RASPolicyEntry rasPolicyEntry)
Persists a revised in-memory RASPolicyEntry object.
|
void |
RASPolicyRuleManager.modifyRASPolicyRule(RASPolicyRuleEntry rasPolicyRuleEntry)
Modifies RAS policy rule.
|
void |
RASPolicySetManager.modifyRASPolicySet(RASPolicySetEntry rasPolicySetEntry)
Persists a revised in-memory RASPolicySetEntry object.
|
void |
RASResourceManager.modifyRASResource(RASResourceEntry rasResourceEntry)
Persists the revised RASResourceEntry object.
|
void |
RASResourceTypeManager.modifyRASResourceType(RASResourceTypeEntry rasResourceTypeEntry)
Modify a RAS ResourceType
|
void |
RASConfigurationManager.modifyTargetDatabase(RASTargetDatabaseEntry config)
Update a target database configuration.
|
void |
RASConfigurationBindingManager.unbindTargetDatabase(java.lang.String targetDatabaseName, java.lang.String appName)
Remove binding relationship between an application and a target database.
|
| Modifier and Type | Method and Description |
|---|---|
void |
PermissionSetEntry.addResourceActions(ResourceActionsEntry resAct)
Add a ResourceActions.
|
| Modifier and Type | Class and Description |
|---|---|
class |
InvalidArgumentException |
| Modifier and Type | Method and Description |
|---|---|
java.util.List<RASPolicyEntry> |
RASPolicySetEntry.getRASPolicies()
Return a list of RASPolicyEntries
|
void |
RASPolicyRuleEntry.setEffect(PolicyRuleEntry.EffectType effect)
Set effect of this rule
|
| Modifier and Type | Class and Description |
|---|---|
class |
ResourceWithoutTypeException |
| Modifier and Type | Method and Description |
|---|---|
static java.util.Set<ResourceActionsEntry> |
JpsAuth.checkBulkAuthorization(javax.security.auth.Subject subject, java.util.Set<ResourceActionsEntry> requestedResources)
Determines whether the subject has access one or more Resource Actions.
|
static java.util.Set<JpsApplicationRole> |
JpsAuth.getAllGrantedAppRoles(javax.security.auth.Subject subject, java.util.Set<java.lang.String> applications)
Returns a set of application roles that have been granted to a subject, directly or indirectly, for the specified application stripes.
|