Class RBACAuthorization

java.lang.Object

com.tremolosecurity.az.RBACAuthorization

All Implemented Interfaces:

CustomAuthorization

public class RBACAuthorization
extends Object
implements CustomAuthorization

Constructor Summary

Constructors

Constructor	Description
RBACAuthorization()

Method Summary

Modifier and Type	Method	Description
Workflow	getWorkflow()	Return ths current workflow
void	init(Map<String,Attribute> config)	Initializes the custom AZ rule with the configuration
boolean	isAuthorized(AuthInfo subject, String... params)	Determines if the subject in the parameter is authorized by this rule
List<String>	listPossibleApprovers(String... params)	Provides a list of subjects that could be authorized based on this rule.
void	loadConfigManager(ConfigManager cfg)	Sets the config manager for access to Unison resources, run on each de-serialization
void	setWorkflow(Workflow wf)	Sets the workflow this rule will be a part of.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

RBACAuthorization

public RBACAuthorization()

Method Details

init

public void init(Map<String,Attribute> config)
          throws AzException

Description copied from interface: CustomAuthorization

Initializes the custom AZ rule with the configuration

Specified by:

init in interface CustomAuthorization

Parameters:

config - Name/Value pairs

Throws:

AzException

loadConfigManager

public void loadConfigManager(ConfigManager cfg)
                       throws AzException

Description copied from interface: CustomAuthorization

Sets the config manager for access to Unison resources, run on each de-serialization

Specified by:

loadConfigManager in interface CustomAuthorization

Parameters:

cfg -

Throws:

AzException

setWorkflow

public void setWorkflow(Workflow wf)
                 throws AzException

Description copied from interface: CustomAuthorization

Sets the workflow this rule will be a part of. Called after cloning an instance of the rule for a particular workflow

Specified by:

setWorkflow in interface CustomAuthorization

Parameters:

wf -

Throws:

AzException

isAuthorized

public boolean isAuthorized(AuthInfo subject,
 String... params)
                     throws AzException

Description copied from interface: CustomAuthorization

Determines if the subject in the parameter is authorized by this rule

Specified by:

isAuthorized in interface CustomAuthorization

Parameters:

subject - Subject to be tested

params - List of optional values specific to this call

Returns:

True if authorized, False if not

Throws:

AzException

listPossibleApprovers

public List<String> listPossibleApprovers(String... params)
                                   throws AzException

Description copied from interface: CustomAuthorization

Provides a list of subjects that could be authorized based on this rule. The value of each list item should be the distinguished name of the user in Unison

Specified by:

listPossibleApprovers in interface CustomAuthorization

Parameters:

params - List of optional values specific to this call

Returns:

Throws:

AzException

getWorkflow

public Workflow getWorkflow()

Description copied from interface: CustomAuthorization

Return ths current workflow

Specified by:

getWorkflow in interface CustomAuthorization

Returns: