Class DirAclAuthz

java.lang.Object
com.netscape.cms.authorization.AAclAuthz
com.netscape.cms.authorization.DirAclAuthz
All Implemented Interfaces:
IExtendedPluginInfo, IAuthzManager

public class DirAclAuthz extends AAclAuthz implements IExtendedPluginInfo
A class for ldap acls based authorization manager The ldap server used for acls is the cms internal ldap db.
Version:
$Revision$, $Date$
  • Field Details

    • logger

      public static org.slf4j.Logger logger
    • PROP_SEARCHBASE

      protected static final String PROP_SEARCHBASE
      See Also:
  • Constructor Details

    • DirAclAuthz

      public DirAclAuthz()
      Default constructor
  • Method Details

    • init

      public void init(String name, String implName, AuthzManagerConfig config) throws EBaseException
      Description copied from class: AAclAuthz
      Initializes
      Specified by:
      init in interface IAuthzManager
      Overrides:
      init in class AAclAuthz
      Parameters:
      name - The name of this authorization manager instance.
      implName - The name of the authorization manager plugin.
      config - The configuration store for this authorization manager.
      Throws:
      EBaseException - If an initialization error occurred.
    • updateACLs

      public void updateACLs(String id, String rights, String strACLs, String desc) throws EACLsException
      update acls. when memory update is done, flush to ldap.

      Currently, it is possible that when the memory is updated successfully, and the ldap isn't, the memory upates lingers. The result is that the changes will only be done on ldap at the next update, or when the system shuts down, another flush will be attempted.

      Specified by:
      updateACLs in interface IAuthzManager
      Overrides:
      updateACLs in class AAclAuthz
      Parameters:
      id - is the resource id
      rights - The allowable rights for this resource
      strACLs - has the same format as a resourceACLs entry acis on the ldap server
      desc - The description for this resource
      Throws:
      EACLsException - when update fails.
    • flushResourceACLs

      protected void flushResourceACLs() throws EACLsException
      updates resourceACLs to ldap.
      Throws:
      EACLsException
    • getConn

      protected netscape.ldap.LDAPConnection getConn() throws ELdapException
      Throws:
      ELdapException
    • returnConn

      protected void returnConn(netscape.ldap.LDAPConnection conn) throws ELdapException
      Throws:
      ELdapException
    • shutdown

      public void shutdown()
      graceful shutdown
      Specified by:
      shutdown in interface IAuthzManager