|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
public interface IAuthorizer
Primary Cassandra authorization interface.
| Method Summary | |
|---|---|
java.util.Set<Permission> |
authorize(AuthenticatedUser user,
IResource resource)
The primary IAuthorizer method. |
void |
grant(AuthenticatedUser performer,
java.util.Set<Permission> permissions,
IResource resource,
java.lang.String to)
Grants a set of permissions on a resource to a user. |
java.util.Set<PermissionDetails> |
list(AuthenticatedUser performer,
java.util.Set<Permission> permissions,
IResource resource,
java.lang.String of)
Returns a list of permissions on a resource of a user. |
java.util.Set<? extends IResource> |
protectedResources()
Set of resources that should be made inaccessible to users and only accessible internally. |
void |
revoke(AuthenticatedUser performer,
java.util.Set<Permission> permissions,
IResource resource,
java.lang.String from)
Revokes a set of permissions on a resource from a user. |
void |
revokeAll(IResource droppedResource)
This method is called after a resource is removed (i.e. |
void |
revokeAll(java.lang.String droppedUser)
This method is called before deleting a user with DROP USER query so that a new user with the same name wouldn't inherit permissions of the deleted user in the future. |
void |
setup()
Setup is called once upon system startup to initialize the IAuthorizer. |
void |
validateConfiguration()
Validates configuration of IAuthorizer implementation (if configurable). |
| Method Detail |
|---|
java.util.Set<Permission> authorize(AuthenticatedUser user,
IResource resource)
user - Authenticated user requesting authorization.resource - Resource for which the authorization is being requested. @see DataResource.
void grant(AuthenticatedUser performer,
java.util.Set<Permission> permissions,
IResource resource,
java.lang.String to)
throws UnauthorizedException,
InvalidRequestException
performer - User who grants the permissions.permissions - Set of permissions to grant.to - Grantee of the permissions.resource - Resource on which to grant the permissions.
UnauthorizedException - if the granting user isn't allowed to grant (and revoke) the permissions on the resource.
InvalidRequestException - upon parameter misconfiguration or internal error.
void revoke(AuthenticatedUser performer,
java.util.Set<Permission> permissions,
IResource resource,
java.lang.String from)
throws UnauthorizedException,
InvalidRequestException
performer - User who revokes the permissions.permissions - Set of permissions to revoke.from - Revokee of the permissions.resource - Resource on which to revoke the permissions.
UnauthorizedException - if the revoking user isn't allowed to revoke the permissions on the resource.
InvalidRequestException - upon parameter misconfiguration or internal error.
java.util.Set<PermissionDetails> list(AuthenticatedUser performer,
java.util.Set<Permission> permissions,
IResource resource,
java.lang.String of)
throws UnauthorizedException,
InvalidRequestException
performer - User who wants to see the permissions.permissions - Set of Permission values the user is interested in. The result should only include the matching ones.resource - The resource on which permissions are requested. Can be null, in which case permissions on all resources
should be returned.of - The user whose permissions are requested. Can be null, in which case permissions of every user should be returned.
UnauthorizedException - if the user isn't allowed to view the requested permissions.
InvalidRequestException - upon parameter misconfiguration or internal error.void revokeAll(java.lang.String droppedUser)
droppedUser - The user to revoke all permissions from.void revokeAll(IResource droppedResource)
droppedResource - The resource to revoke all permissions on.java.util.Set<? extends IResource> protectedResources()
void validateConfiguration()
throws ConfigurationException
ConfigurationException - when there is a configuration error.void setup()
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||