AMRoleImpl.java revision bee2440354b4bc8796e1de0b6cbd60e1f68deba0
/*
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
*
* Copyright (c) 2005 Sun Microsystems Inc. All Rights Reserved
*
* The contents of this file are subject to the terms
* of the Common Development and Distribution License
* (the License). You may not use this file except in
* compliance with the License.
*
* You can obtain a copy of the License at
* See the License for the specific language governing
* permission and limitations under the License.
*
* When distributing Covered Code, include this CDDL
* Header Notice in each file and include the License file
* at opensso/legal/CDDLv1.0.txt.
* If applicable, add the following below the CDDL Header,
* with the fields enclosed by brackets [] replaced by
* your own identifying information:
* "Portions Copyrighted [year] [name of copyright owner]"
*
* $Id: AMRoleImpl.java,v 1.6 2009/01/28 05:34:47 ww203982 Exp $
*
* Portions Copyrighted 2011-2015 ForgeRock AS.
*/
/**
* The <code>AMRole</code> interface provides methods to manage role
*
** @deprecated As of Sun Java System Access Manager 7.1.
*/
// define a Integer object for getPolicyTemplate
}
}
/**
* Gets the type of the role.
*
* @return The type of the role.
*/
return getIntegerAttribute(roleTypeAN);
}
/**
* Sets the type of the role.
*
* @param roleType
* The type of the role.
*/
store();
}
/**
* Adds users to the role.
*
* @param users
* The set of user DN's to be added to the role.
*/
}
/**
* Removes users from the role.
*
* @param users
* The set of user DN's to be removed from the role.
*/
}
/**
* Gets number of users in the role.
*
* @return Number of users in the role.
*/
return getUserDNs().size();
}
/**
* Gets the names of users in the role.
*
* @return The names of users in the role.
*/
}
/**
* Searches for users in this role using wildcards and attribute values.
* Wildcards can be specified such as a*, *, *a.
*
* @param wildcard
* wildcard pattern to be used in the search
* @param level
* the search level that needs to be used (AMConstants.SCOPE_ONE
* or AMConstansts.SCOPE_SUB)
*
* @return Set DNs of Users matching the search
*
* @throws AMException
* if there is an internal error in the AM Store
* @throws SSOException
* if the sign on is no longer valid
*
*/
}
/**
* Searches for users in this role using wildcards and attribute values.
* Wildcards can be specified such as a*, *, *a.
*
* @param wildcard
* wildcard pattern to be used in the search
* @param searchControl
* specifies the search scope to be used, VLV ranges etc.,
*
* @return AMSearchResults which contains a Set DNs of Users matching the
* search
*
* @throws AMException
* if there is an internal error in the AM Store
* @throws SSOException
* if the sign on is no longer valid
*
*/
}
/**
* Searches for users in this role using wildcards and attribute values.
* Wildcards can be specified such as a*, *, *a. To further refine the
* search, attribute-value pairs can be specifed so that DNs of users with
* matching attribute-value pairs will be returned.
*
* @param wildcard
* wildcard pattern to be used in the search
* @param avPairs
* attribute-value pairs to match when searching users
* @param level
* the search level that needs to be used (AMConstants.SCOPE_ONE
* or AMConstansts.SCOPE_SUB)
*
* @return Set DNs of Users matching the search
*
* @throws AMException
* if there is an internal error in the AM Store
* @throws SSOException
* if the sign on is no longer valid
*/
throws AMException, SSOException {
"123");
"122");
filter = userFilter;
} else {
filter = userFilter;
} else {
.iterator();
}
}
}
}
level);
}
/**
* Searches for users in this role using wildcards and attribute values.
* Wildcards can be specified such as a*, *, *a. To further refine the
* search, attribute-value pairs can be specifed so that DNs of users with
* matching attribute-value pairs will be returned.
*
* @param wildcard
* wildcard pattern to be used in the search
* @param avPairs
* attribute-value pairs to match when searching users
* @param searchControl
* specifies the search scope to be used, VLV ranges etc.,
*
* @return AMSearchResults which contains a Set DNs of Users matching the
* search
*
* @throws AMException
* if there is an internal error in the AM Store
* @throws SSOException
* if the sign on is no longer valid
*/
"123");
"122");
filter = userFilter;
} else {
filter = userFilter;
} else {
.iterator();
}
}
}
}
}
/**
* Searches for users in this role using wildcards and attribute values.
* Wildcards can be specified such as a*, *, *a. To further refine the
* search, attribute-value pairs can be specifed so that DNs of users with
* matching attribute-value pairs will be returned.
*
* @param wildcard
* wildcard pattern to be used in the search
* @param avPairs
* attribute-value pairs to match when searching users
* @param searchControl
* specifies the search scope to be used, VLV ranges etc.,
*
* @return AMSearchResults which contains a Set DNs of Users matching the
* search
*
* @throws AMException
* if there is an internal error in the AM Store
* @throws SSOException
* if the sign on is no longer valid
*/
"123");
if (debug.messageEnabled()) {
}
}
/**
* Get requested templates defined for this role
*
* @param templateReqs
* a Map of services names and template types. The key in the Map
* entry is the service name as a String, and the value of the
* Map entry is a java.lang.Integer whose int value is one of
* AMTemplate.DYNAMIC_TEMPLATE AMTemplate.POLICY_TEMPLATE
* AMTemplate.ALL_TEMPLATES
* @return Set a Set of AMTemplate objects representing the templates
* requested. If the <code>templateReqs</code> argument is null or
* empty, the returned set will contain the AMTemplates for each
* registered service which has a template defined. If there is no
* template defined for any registered services for this role, an
* empty Set will be returned.
* @throws AMException
* if there is an internal problem with AM Store
* @throws SSOException
* if the sign-on is no longer valid.
*/
return getTemplates(templateReqs, false);
}
/**
* this method will retrieved required templates from DS,
*
* @param policyOnly
* get policy templates only, this will apply only if
* templateReqs is null or empty
*/
throws AMException, SSOException {
if (debug.messageEnabled()) {
+ "] DN=" + super.entryDN);
}
// issue search to find out all templates for this role
// base for search is role's parent which is an Org
// return empty set if there is no templates found at all
return Collections.EMPTY_SET;
}
// check if we need to get all templates
boolean getAll = false;
getAll = true;
}
// get the DN of the template entry
if (debug.messageEnabled()) {
}
// get the parent name of the template, which is a COS deinfition
// check template type & service name
if (getAll) {
// get all templates, need to check if we want to get policy
// templates only
if (!policyOnly) {
}
} else {
// get specified type of templates
continue;
}
}
}
}
return retSet;
}
/**
* Get requested policy templates defined for this role.
*
* @param serviceNames
* a Set of services names, each specified as a java.lang.String.
* @return Set a Set of AMTemplate objects representing the policy templates
* requested. If the <code>serviceNames</code> argument is null or
* empty, the returned set will contain the AMTemplates for each
* registered service which has a policy template defined. If there
* is no policy template defined for any registered services for
* this role, an empty Set will be returned.
* @throws AMException
* if there is an internal problem with AM Store
* @throws SSOException
* if the sign-on is no longer valid.
*/
// check if serviceName is null or empty
// get all policy template only
return getTemplates(null, true);
}
// construct a map from the set
}
return getTemplates(map, false);
}
/**
* Gets all the assigned policies for this role
*
* @return Set a set of assigned policy DNs
* @throws AMException
* if there is an internal problem with AM Store.
* @throws SSOException
* if the sign-on is no longer valid.
*/
throw new UnsupportedOperationException();
}
}