/forgerock/opendj2/src/server/org/opends/server/authorization/dseecompat/ |
H A D | AciHandler.java | 86 * Attribute type corresponding to "aci" attribute. 91 * Attribute type corresponding to global "ds-cfg-global-aci" 130 aciType = getAttributeType("aci"); 322 // "aci" attribute types are being added. 824 * an "aci" attribute type. 916 * Check if the modification type has an "aci" attribute type. 1085 for (Aci aci : candidates) 1087 if (Aci.isApplicable(aci, targetMatchCtx)) 1089 if (aci.hasAccessType(EnumAccessType.DENY)) 1091 denys.add(aci); 1381 testAndSetTargAttrOperationMatches(AciEvalContext evalCtx, Aci aci, boolean isDenyAci) argument [all...] |
H A D | AciContainer.java | 398 public void addTargAttrFiltersMatchAci(Aci aci) { argument 399 this.targAttrFilterAcis.put(aci, aci); 406 public boolean hasTargAttrFiltersMatchAci(Aci aci) { argument 407 return this.targAttrFilterAcis.containsKey(aci);
|
/forgerock/opendj-b2.6/src/server/org/opends/server/authorization/dseecompat/ |
H A D | Aci.java | 450 * @param aci The ACI to test. 456 isApplicable(Aci aci, AciTargetMatchContext matchCtx) { argument 459 return AciTargets.isTargetApplicable(aci, matchCtx) && 460 AciTargets.isExtOpApplicable(aci, matchCtx); 463 return AciTargets.isTargetApplicable(aci, matchCtx) && 464 AciTargets.isTargetControlApplicable(aci, matchCtx); 469 if(aci.getTargets().getExtOp() != null || 470 (aci.getTargets().getTargetControl() != null)) { 475 if(!aci.hasRights(ctxRights)) { 476 if(!(aci 525 evaluate(AciEvalContext evalCtx, Aci aci) argument 617 compareTo(Aci aci) argument [all...] |
H A D | AciContainer.java | 410 public void addTargAttrFiltersMatchAci(Aci aci) { argument 411 this.targAttrFilterAcis.put(aci, aci); 417 public boolean hasTargAttrFiltersMatchAci(Aci aci) { argument 418 return this.targAttrFilterAcis.containsKey(aci); 474 public void setDecidingAci(Aci aci) { argument 475 this.decidingAci=aci;
|
/forgerock/opendj2.6.2/src/server/org/opends/server/authorization/dseecompat/ |
H A D | Aci.java | 450 * @param aci The ACI to test. 456 isApplicable(Aci aci, AciTargetMatchContext matchCtx) { argument 459 return AciTargets.isTargetApplicable(aci, matchCtx) && 460 AciTargets.isExtOpApplicable(aci, matchCtx); 463 return AciTargets.isTargetApplicable(aci, matchCtx) && 464 AciTargets.isTargetControlApplicable(aci, matchCtx); 469 if(aci.getTargets().getExtOp() != null || 470 (aci.getTargets().getTargetControl() != null)) { 475 if(!aci.hasRights(ctxRights)) { 476 if(!(aci 525 evaluate(AciEvalContext evalCtx, Aci aci) argument 617 compareTo(Aci aci) argument [all...] |
H A D | AciContainer.java | 410 public void addTargAttrFiltersMatchAci(Aci aci) { argument 411 this.targAttrFilterAcis.put(aci, aci); 417 public boolean hasTargAttrFiltersMatchAci(Aci aci) { argument 418 return this.targAttrFilterAcis.containsKey(aci); 474 public void setDecidingAci(Aci aci) { argument 475 this.decidingAci=aci;
|
/forgerock/opendj2-hg/src/server/org/opends/server/authorization/dseecompat/ |
H A D | Aci.java | 449 * @param aci The ACI to test. 455 isApplicable(Aci aci, AciTargetMatchContext matchCtx) { argument 458 return AciTargets.isTargetApplicable(aci, matchCtx) && 459 AciTargets.isExtOpApplicable(aci, matchCtx); 462 return AciTargets.isTargetApplicable(aci, matchCtx) && 463 AciTargets.isTargetControlApplicable(aci, matchCtx); 468 if(aci.getTargets().getExtOp() != null 469 || aci.getTargets().getTargetControl() != null) { 472 return haveSimilarRights(aci, matchCtx) && 473 AciTargets.isTargetApplicable(aci, matchCt 480 haveSimilarRights(Aci aci, AciTargetMatchContext matchCtx) argument 525 evaluate(AciEvalContext evalCtx, Aci aci) argument 617 compareTo(Aci aci) argument [all...] |
H A D | AciHandler.java | 86 * Attribute type corresponding to "aci" attribute. 91 * Attribute type corresponding to global "ds-cfg-global-aci" 130 aciType = getAttributeType("aci"); 322 // "aci" attribute types are being added. 824 * an "aci" attribute type. 916 * Check if the modification type has an "aci" attribute type. 1085 for (Aci aci : candidates) 1087 if (Aci.isApplicable(aci, targetMatchCtx)) 1089 if (aci.hasAccessType(EnumAccessType.DENY)) 1091 denys.add(aci); 1381 testAndSetTargAttrOperationMatches(AciEvalContext evalCtx, Aci aci, boolean isDenyAci) argument [all...] |
H A D | AciContainer.java | 398 public void addTargAttrFiltersMatchAci(Aci aci) { argument 399 this.targAttrFilterAcis.put(aci, aci); 406 public boolean hasTargAttrFiltersMatchAci(Aci aci) { argument 407 return this.targAttrFilterAcis.containsKey(aci);
|
/forgerock/opendj2-jel-hg/src/server/org/opends/server/authorization/dseecompat/ |
H A D | Aci.java | 450 * @param aci The ACI to test. 456 isApplicable(Aci aci, AciTargetMatchContext matchCtx) { argument 459 return AciTargets.isTargetApplicable(aci, matchCtx) && 460 AciTargets.isExtOpApplicable(aci, matchCtx); 463 return AciTargets.isTargetApplicable(aci, matchCtx) && 464 AciTargets.isTargetControlApplicable(aci, matchCtx); 469 if(aci.getTargets().getExtOp() != null || 470 (aci.getTargets().getTargetControl() != null)) { 475 if(!aci.hasRights(ctxRights)) { 476 if(!(aci 525 evaluate(AciEvalContext evalCtx, Aci aci) argument 617 compareTo(Aci aci) argument [all...] |
H A D | AciContainer.java | 410 public void addTargAttrFiltersMatchAci(Aci aci) { argument 411 this.targAttrFilterAcis.put(aci, aci); 417 public boolean hasTargAttrFiltersMatchAci(Aci aci) { argument 418 return this.targAttrFilterAcis.containsKey(aci); 474 public void setDecidingAci(Aci aci) { argument 475 this.decidingAci=aci;
|
/forgerock/opendj-v3/opendj-server-legacy/src/main/java/org/opends/server/authorization/dseecompat/ |
H A D | Aci.java | 449 * @param aci The ACI to test. 454 public static boolean isApplicable(Aci aci, AciTargetMatchContext matchCtx) { argument 457 return AciTargets.isTargetApplicable(aci, matchCtx) && 458 AciTargets.isExtOpApplicable(aci, matchCtx); 461 return AciTargets.isTargetApplicable(aci, matchCtx) && 462 AciTargets.isTargetControlApplicable(aci, matchCtx); 467 return hasNoExtOpOrTargetControl(aci.getTargets()) 468 && haveSimilarRights(aci, matchCtx) 469 && AciTargets.isTargetApplicable(aci, matchCtx) 470 && AciTargets.isTargetFilterApplicable(aci, matchCt 482 haveSimilarRights(Aci aci, AciTargetMatchContext matchCtx) argument 527 evaluate(AciEvalContext evalCtx, Aci aci) argument 622 compareTo(Aci aci) argument [all...] |
H A D | AciHandler.java | 94 /** Attribute type corresponding to "aci" attribute. */ 97 /** Attribute type corresponding to global "ds-cfg-global-aci" attribute. */ 126 aciType = getAttributeTypeOrDefault("aci"); 269 // "aci" attribute types are being added. 698 * an "aci" attribute type. 785 * Check if the modification type has an "aci" attribute type. 938 for (Aci aci : candidates) 940 if (Aci.isApplicable(aci, targetMatchCtx)) 942 if (aci.hasAccessType(EnumAccessType.DENY)) 944 denys.add(aci); 1216 testAndSetTargAttrOperationMatches(AciEvalContext evalCtx, Aci aci, boolean isDenyAci) argument [all...] |
H A D | AciContainer.java | 384 public void addTargAttrFiltersMatchAci(Aci aci) { argument 385 this.targAttrFilterAcis.put(aci, aci); 390 public boolean hasTargAttrFiltersMatchAci(Aci aci) { argument 391 return this.targAttrFilterAcis.containsKey(aci);
|
/forgerock/openam-v13/openam-core/src/main/java/com/iplanet/ums/ |
H A D | PersistentObject.java | 36 import com.iplanet.services.ldap.aci.ACI; 37 import com.iplanet.services.ldap.aci.ACIParseException; 1415 ACI aci = ACI.valueOf(aciTexts[i]); 1416 if (aci.getName().equals(name)) { 1417 acis.add(aci); 1427 * @param aci ACI added to be added to this object. 1433 public void addACI(ACI aci) throws AccessRightsException, UMSException { argument 1434 Attr attr = new Attr(ACI.ACI, aci.toString()); 1442 * @param aci ACI to be deleted. 1448 public void deleteACI(ACI aci) throw argument [all...] |
/forgerock/openam/openam-core/src/main/java/com/iplanet/ums/ |
H A D | PersistentObject.java | 36 import com.iplanet.services.ldap.aci.ACI; 37 import com.iplanet.services.ldap.aci.ACIParseException; 1415 ACI aci = ACI.valueOf(aciTexts[i]); 1416 if (aci.getName().equals(name)) { 1417 acis.add(aci); 1427 * @param aci ACI added to be added to this object. 1433 public void addACI(ACI aci) throws AccessRightsException, UMSException { argument 1434 Attr attr = new Attr(ACI.ACI, aci.toString()); 1442 * @param aci ACI to be deleted. 1448 public void deleteACI(ACI aci) throw argument [all...] |
/forgerock/openam-v13/openam-core/src/main/java/com/iplanet/am/sdk/ |
H A D | AMObjectImpl.java | 1081 + "Unable to set aci or org admin role. ", ex); 1109 + " to set aci or org help desk admin role. ", 1137 debug.message("AMObject.create: Unable to set aci " 1179 + "Unable to set aci based on " 1520 + "admin role aci." + e); 1540 "iplanet-am-role-aci-list")); 1767 if (stringValueModMap.containsKey("iplanet-am-role-aci-list")) { 1770 "iplanet-am-role-aci-list")); 1774 + "to get old iplanet-am-role-aci-list"); 1796 if (stringValueModMap.containsKey("iplanet-am-role-aci 2324 replaceAciMacro(String aci, String macro, String str) argument 2347 replaceAciMacros(String aci, String roleDN, String orgDN, String groupDN, String pcDN) argument [all...] |
/forgerock/openam/openam-core/src/main/java/com/iplanet/am/sdk/ |
H A D | AMObjectImpl.java | 1082 + "Unable to set aci or org admin role. ", ex); 1110 + " to set aci or org help desk admin role. ", 1138 debug.message("AMObject.create: Unable to set aci " 1180 + "Unable to set aci based on " 1521 + "admin role aci." + e); 1541 "iplanet-am-role-aci-list")); 1768 if (stringValueModMap.containsKey("iplanet-am-role-aci-list")) { 1771 "iplanet-am-role-aci-list")); 1775 + "to get old iplanet-am-role-aci-list"); 1797 if (stringValueModMap.containsKey("iplanet-am-role-aci 2325 replaceAciMacro(String aci, String macro, String str) argument 2348 replaceAciMacros(String aci, String roleDN, String orgDN, String groupDN, String pcDN) argument [all...] |
/forgerock/openam-v13/openam-core/src/main/java/com/iplanet/services/ldap/aci/ |
H A D | ACI.java | 32 package com.iplanet.services.ldap.aci; 40 * Class that encapsulates directory entry aci Provides a simple programmatic 46 public static final String ACI = "aci"; 636 StringBuilder aci = new StringBuilder(); 643 aci.append(SPACE).append(OPENPARENTH).append(TARGET).append(SPACE) 657 aci.append(SPACE).append(OPENPARENTH).append(TARGETATTR).append( 662 aci.append(QUOTE).append(value); 666 aci.append(OR_PIPE).append(value); 668 aci.append(QUOTE).append(CLOSEPARENTH).append(NEWLINE); 673 aci [all...] |
/forgerock/openam/openam-core/src/main/java/com/iplanet/services/ldap/aci/ |
H A D | ACI.java | 32 package com.iplanet.services.ldap.aci; 40 * Class that encapsulates directory entry aci Provides a simple programmatic 46 public static final String ACI = "aci"; 636 StringBuilder aci = new StringBuilder(); 643 aci.append(SPACE).append(OPENPARENTH).append(TARGET).append(SPACE) 657 aci.append(SPACE).append(OPENPARENTH).append(TARGETATTR).append( 662 aci.append(QUOTE).append(value); 666 aci.append(OR_PIPE).append(value); 668 aci.append(QUOTE).append(CLOSEPARENTH).append(NEWLINE); 673 aci [all...] |
/forgerock/opendj-b2.6/tests/unit-tests-testng/src/server/org/opends/server/authorization/dseecompat/ |
H A D | AciTests.java | 101 // TODO: test aci's with funky spacing 128 private static final String ADMIN_DN = "cn=aci admin,dc=example,dc=com"; 306 private static final String SELF_MODIFY_ACI = "aci: (targetattr=\"*\")(version 3.0; acl \"self modify\";allow(all) userdn=\"userdn=\"ldap:///self\";)"; 579 "cn: aci admin", 584 // By default aci admin can do anything! 589 "aci: (targetattr=\"*\")(version 3.0; acl \"test\";allow(all) userdn=\"" + ADMIN_DN_LDAP_URL + "\";)" 719 "aci: ", 760 // the aci that is valid but becomes invalid if any single character is removed. 762 // it takes for an aci to be minimally valid, and hence we end up doing a lot of 765 // But since the aci ha 858 getAciMissingCharCombos(String aci, String mask) argument [all...] |
/forgerock/opendj2/tests/unit-tests-testng/src/server/org/opends/server/authorization/dseecompat/ |
H A D | AciTests.java | 91 // TODO: test aci's with funky spacing 118 private static final String ADMIN_DN = "cn=aci admin,dc=example,dc=com"; 296 private static final String SELF_MODIFY_ACI = "aci: (targetattr=\"*\")(version 3.0; acl \"self modify\";allow(all) userdn=\"userdn=\"ldap:///self\";)"; 569 "cn: aci admin", 574 // By default aci admin can do anything! 579 "aci: (targetattr=\"*\")(version 3.0; acl \"test\";allow(all) userdn=\"" + ADMIN_DN_LDAP_URL + "\";)" 709 "aci: ", 750 // the aci that is valid but becomes invalid if any single character is removed. 752 // it takes for an aci to be minimally valid, and hence we end up doing a lot of 755 // But since the aci ha 848 getAciMissingCharCombos(String aci, String mask) argument [all...] |
/forgerock/opendj2.6.2/tests/unit-tests-testng/src/server/org/opends/server/authorization/dseecompat/ |
H A D | AciTests.java | 101 // TODO: test aci's with funky spacing 128 private static final String ADMIN_DN = "cn=aci admin,dc=example,dc=com"; 306 private static final String SELF_MODIFY_ACI = "aci: (targetattr=\"*\")(version 3.0; acl \"self modify\";allow(all) userdn=\"userdn=\"ldap:///self\";)"; 579 "cn: aci admin", 584 // By default aci admin can do anything! 589 "aci: (targetattr=\"*\")(version 3.0; acl \"test\";allow(all) userdn=\"" + ADMIN_DN_LDAP_URL + "\";)" 719 "aci: ", 760 // the aci that is valid but becomes invalid if any single character is removed. 762 // it takes for an aci to be minimally valid, and hence we end up doing a lot of 765 // But since the aci ha 858 getAciMissingCharCombos(String aci, String mask) argument [all...] |
/forgerock/opendj2-hg/tests/unit-tests-testng/src/server/org/opends/server/authorization/dseecompat/ |
H A D | AciTests.java | 91 // TODO: test aci's with funky spacing 118 private static final String ADMIN_DN = "cn=aci admin,dc=example,dc=com"; 296 private static final String SELF_MODIFY_ACI = "aci: (targetattr=\"*\")(version 3.0; acl \"self modify\";allow(all) userdn=\"userdn=\"ldap:///self\";)"; 569 "cn: aci admin", 574 // By default aci admin can do anything! 579 "aci: (targetattr=\"*\")(version 3.0; acl \"test\";allow(all) userdn=\"" + ADMIN_DN_LDAP_URL + "\";)" 709 "aci: ", 750 // the aci that is valid but becomes invalid if any single character is removed. 752 // it takes for an aci to be minimally valid, and hence we end up doing a lot of 755 // But since the aci ha 848 getAciMissingCharCombos(String aci, String mask) argument [all...] |
/forgerock/opendj2-jel-hg/tests/unit-tests-testng/src/server/org/opends/server/authorization/dseecompat/ |
H A D | AciTests.java | 101 // TODO: test aci's with funky spacing 128 private static final String ADMIN_DN = "cn=aci admin,dc=example,dc=com"; 306 private static final String SELF_MODIFY_ACI = "aci: (targetattr=\"*\")(version 3.0; acl \"self modify\";allow(all) userdn=\"userdn=\"ldap:///self\";)"; 579 "cn: aci admin", 584 // By default aci admin can do anything! 589 "aci: (targetattr=\"*\")(version 3.0; acl \"test\";allow(all) userdn=\"" + ADMIN_DN_LDAP_URL + "\";)" 719 "aci: ", 760 // the aci that is valid but becomes invalid if any single character is removed. 762 // it takes for an aci to be minimally valid, and hence we end up doing a lot of 765 // But since the aci ha 858 getAciMissingCharCombos(String aci, String mask) argument [all...] |