public interface PolicyBasedAccessControlHandlerCfgClient extends AccessControlHandlerCfgClient
A policy based access control handler implements a coarse grained access control model suitable for use in proxies.
Modifier and Type | Method and Description |
---|---|
<C extends GlobalAccessControlPolicyCfgClient> |
createGlobalAccessControlPolicy(ManagedObjectDefinition<C,? extends GlobalAccessControlPolicyCfg> d,
String name,
Collection<PropertyException> exceptions)
Creates a new Global Access Control Policy.
|
ManagedObjectDefinition<? extends PolicyBasedAccessControlHandlerCfgClient,? extends PolicyBasedAccessControlHandlerCfg> |
definition()
Get the configuration definition associated with this Policy Based Access Control Handler.
|
GlobalAccessControlPolicyCfgClient |
getGlobalAccessControlPolicy(String name)
Gets the named Global Access Control Policy.
|
ValueOrExpression<String> |
getJavaClass()
Gets the "java-class" property.
|
String[] |
listGlobalAccessControlPolicies()
Lists the Global Access Control Policies.
|
void |
removeGlobalAccessControlPolicy(String name)
Removes the named Global Access Control Policy.
|
void |
setJavaClass(ValueOrExpression<String> value)
Sets the "java-class" property.
|
isEnabled, setEnabled
commit, properties
ManagedObjectDefinition<? extends PolicyBasedAccessControlHandlerCfgClient,? extends PolicyBasedAccessControlHandlerCfg> definition()
definition
in interface AccessControlHandlerCfgClient
definition
in interface ConfigurationClient
ValueOrExpression<String> getJavaClass()
Specifies the fully-qualified name of the Java class that provides the Policy Based Access Control Handler implementation.
getJavaClass
in interface AccessControlHandlerCfgClient
void setJavaClass(ValueOrExpression<String> value) throws PropertyException
Specifies the fully-qualified name of the Java class that provides the Policy Based Access Control Handler implementation.
setJavaClass
in interface AccessControlHandlerCfgClient
value
- The value of the "java-class" property.PropertyException
- If the new value is invalid.String[] listGlobalAccessControlPolicies() throws ConcurrentModificationException, LdapException
ConcurrentModificationException
- If this Policy Based Access Control Handler has been
removed from the server by another client.LdapException
- If any other error occurs.GlobalAccessControlPolicyCfgClient getGlobalAccessControlPolicy(String name) throws DefinitionDecodingException, ManagedObjectDecodingException, ManagedObjectNotFoundException, ConcurrentModificationException, LdapException
name
- The name of the Global Access Control Policy to
retrieve.DefinitionDecodingException
- If the named Global Access Control Policy was found but
its type could not be determined.ManagedObjectDecodingException
- If the named Global Access Control Policy was found but
one or more of its properties could not be decoded.ManagedObjectNotFoundException
- If the named Global Access Control Policy was not found
on the server.ConcurrentModificationException
- If this Policy Based Access Control Handler has been
removed from the server by another client.LdapException
- If any other error occurs.<C extends GlobalAccessControlPolicyCfgClient> C createGlobalAccessControlPolicy(ManagedObjectDefinition<C,? extends GlobalAccessControlPolicyCfg> d, String name, Collection<PropertyException> exceptions) throws IllegalManagedObjectNameException
ConfigurationClient.commit()
method.C
- The type of the Global Access Control Policy being
created.d
- The definition of the Global Access Control Policy to be
created.name
- The name of the new Global Access Control Policy.exceptions
- An optional collection in which to place any PropertyException
s that occurred whilst attempting to
determine the default values of the Global Access Control
Policy. This argument can be null
.IllegalManagedObjectNameException
- If the name of the new Global Access Control Policy is
invalid.void removeGlobalAccessControlPolicy(String name) throws ManagedObjectNotFoundException, OperationRejectedException, ConcurrentModificationException, LdapException
name
- The name of the Global Access Control Policy to remove.ManagedObjectNotFoundException
- If the Global Access Control Policy does not exist.OperationRejectedException
- If the server refuses to remove the Global Access
Control Policy due to some server-side constraint which
cannot be satisfied (for example, if it is referenced by
another managed object).ConcurrentModificationException
- If this Policy Based Access Control Handler has been
removed from the server by another client.LdapException
- If any other error occurs.Copyright 2010-2018 ForgeRock AS.