/**
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
 *
 * Copyright (c) 2009 Sun Microsystems Inc. All Rights Reserved
 *
 * The contents of this file are subject to the terms
 * of the Common Development and Distribution License
 * (the License). You may not use this file except in
 * compliance with the License.
 *
 * You can obtain a copy of the License at
 * https://opensso.dev.java.net/public/CDDLv1.0.html or
 * opensso/legal/CDDLv1.0.txt
 * See the License for the specific language governing
 * permission and limitations under the License.
 *
 * When distributing Covered Code, include this CDDL
 * Header Notice in each file and include the License file
 * at opensso/legal/CDDLv1.0.txt.
 * If applicable, add the following below the CDDL Header,
 * with the fields enclosed by brackets [] replaced by
 * your own identifying information:
 * "Portions Copyrighted [year] [name of copyright owner]"
 *
 * $Id: IAuthorization.java,v 1.1 2009/11/12 18:37:35 veiming Exp $
 */

package com.sun.identity.rest.spi;

import com.sun.identity.rest.RestException;
import javax.security.auth.Subject;
import javax.servlet.Filter;
import javax.servlet.http.HttpServletRequest;

/**
 * Implements this interface to do REST permission check.
 */
public interface IAuthorization extends Filter {
    /**
     * Returns the accept authentication method
     *
     * @return the accept authentication method
     */
    String[] accept();

    /**
     * Returns subject.
     *
     * @param req Http Servlet Request
     * @return subject.
     * @throws RestException if subject cannot be created.
     */
    Subject getAuthZSubject(HttpServletRequest req)
        throws RestException;
}