org.apache.directory.server.core.authz.support
Class RestrictedByFilter

java.lang.Object
  extended by org.apache.directory.server.core.authz.support.RestrictedByFilter
All Implemented Interfaces:
ACITupleFilter

public class RestrictedByFilter
extends java.lang.Object
implements ACITupleFilter

An ACITupleFilter that discards all tuples that doesn't satisfy ProtectedItem.RestrictedBy constraint if available. (18.8.3.3, X.501)

Version:
$Rev: 927146 $, $Date: 2010-03-24 19:39:54 +0100 (Wed, 24 Mar 2010) $
Author:
Apache Directory Project

Constructor Summary
RestrictedByFilter()
           
 
Method Summary
 java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> filter(org.apache.directory.shared.ldap.schema.SchemaManager schemaManager, java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> tuples, OperationScope scope, OperationContext opContext, java.util.Collection<org.apache.directory.shared.ldap.name.DN> userGroupNames, org.apache.directory.shared.ldap.name.DN userName, org.apache.directory.shared.ldap.entry.ServerEntry userEntry, org.apache.directory.shared.ldap.constants.AuthenticationLevel authenticationLevel, org.apache.directory.shared.ldap.name.DN entryName, java.lang.String attrId, org.apache.directory.shared.ldap.entry.Value<?> attrValue, org.apache.directory.shared.ldap.entry.ServerEntry entry, java.util.Collection<org.apache.directory.shared.ldap.aci.MicroOperation> microOperations, org.apache.directory.shared.ldap.entry.ServerEntry entryView)
          Returns the collection of the filtered tuples using the specified extra information.
 boolean isRemovable(org.apache.directory.shared.ldap.aci.ACITuple tuple, java.lang.String attrId, org.apache.directory.shared.ldap.entry.Value<?> attrValue, org.apache.directory.shared.ldap.entry.ServerEntry entry)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

RestrictedByFilter

public RestrictedByFilter()
Method Detail

filter

public java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> filter(org.apache.directory.shared.ldap.schema.SchemaManager schemaManager,
                                                                                  java.util.Collection<org.apache.directory.shared.ldap.aci.ACITuple> tuples,
                                                                                  OperationScope scope,
                                                                                  OperationContext opContext,
                                                                                  java.util.Collection<org.apache.directory.shared.ldap.name.DN> userGroupNames,
                                                                                  org.apache.directory.shared.ldap.name.DN userName,
                                                                                  org.apache.directory.shared.ldap.entry.ServerEntry userEntry,
                                                                                  org.apache.directory.shared.ldap.constants.AuthenticationLevel authenticationLevel,
                                                                                  org.apache.directory.shared.ldap.name.DN entryName,
                                                                                  java.lang.String attrId,
                                                                                  org.apache.directory.shared.ldap.entry.Value<?> attrValue,
                                                                                  org.apache.directory.shared.ldap.entry.ServerEntry entry,
                                                                                  java.util.Collection<org.apache.directory.shared.ldap.aci.MicroOperation> microOperations,
                                                                                  org.apache.directory.shared.ldap.entry.ServerEntry entryView)
                                                                           throws javax.naming.NamingException
Description copied from interface: ACITupleFilter
Returns the collection of the filtered tuples using the specified extra information.

Specified by:
filter in interface ACITupleFilter
tuples - the collection of tuples to filter
scope - the scope of the operation to be performed
userGroupNames - the collection of group (DN)s which the current user belongs to
userName - the DN of the current user
userEntry - the ServerEntry of the current user entry in the DIT
authenticationLevel - the level of authentication of the current user
entryName - the DN of the entry the current user accesses
attrId - the attribute ID the current user accesses
attrValue - the value of the attribute the current user accesses
entry - the ServerEntry of the entry the current user accesses
microOperations - the set of MicroOperations the current user will perform
entryView - in case of a Modify operation, view of the entry being modified as if the modification permitted and completed
Returns:
the collection of filtered tuples
Throws:
javax.naming.NamingException - if failed to filter the specific tuples

isRemovable

public boolean isRemovable(org.apache.directory.shared.ldap.aci.ACITuple tuple,
                           java.lang.String attrId,
                           org.apache.directory.shared.ldap.entry.Value<?> attrValue,
                           org.apache.directory.shared.ldap.entry.ServerEntry entry)
                    throws javax.naming.NamingException
Throws:
javax.naming.NamingException


Copyright © 2003-2011 Apache Software Foundation. All Rights Reserved.