// AclRealm.java
// $Id: AclRealm.java,v 1.3 1999/04/23 14:06:46 bmahe Exp $
// (c) COPYRIGHT MIT, INRIA and Keio, 1999.
// Please first read the full copyright statement in file COPYRIGHT.html
package org.w3c.jigsaw.acl;
import java.security.Principal;
import java.security.acl.AclEntry;
import java.security.acl.LastOwnerException;
import java.security.acl.NotOwnerException;
import java.security.acl.Permission;
import java.util.Enumeration;
import java.util.Vector;
import org.w3c.jigsaw.auth.AuthRealm;
import org.w3c.jigsaw.auth.AuthUser;
import org.w3c.jigsaw.auth.IPMatcher;
import org.w3c.jigsaw.auth.RealmsCatalog;
import org.w3c.jigsaw.http.httpd;
import org.w3c.tools.resources.FramedResource;
import org.w3c.tools.resources.InvalidResourceException;
import org.w3c.tools.resources.ResourceReference;
import org.w3c.tools.resources.Attribute;
import org.w3c.tools.resources.AttributeRegistry;
import org.w3c.tools.resources.StringAttribute;
import org.w3c.tools.resources.StringArrayAttribute;
/**
* @version $Revision: 1.3 $
* @author Benoît Mahé (bmahe@w3.org)
*/
public class AclRealm extends JAcl {
/**
* Attribute index - The methods protected by the filter.
*/
protected static int ATTR_METHODS = -1 ;
/**
* Attribute index - The realm name for this ACL.
*/
protected static int ATTR_REALM = -1;
static {
Attribute a = null ;
Class c = null ;
try {
c = Class.forName("org.w3c.jigsaw.acl.AclRealm");
} catch (Exception ex) {
ex.printStackTrace() ;
System.exit(1) ;
}
// The protected methods
a = new StringArrayAttribute("methods"
, null
, Attribute.EDITABLE) ;
ATTR_METHODS = AttributeRegistry.registerAttribute(c, a) ;
// The realm name (to be resolved by the RealmFactory).
a = new StringAttribute("realm"
, null
, Attribute.EDITABLE|Attribute.MANDATORY);
ATTR_REALM = AttributeRegistry.registerAttribute(c, a) ;
}
/**
* The IPMatcher to match IP templates to user records.
*/
protected IPMatcher ipmatcher = null ;
/**
* The catalog of realms that make our scope.
*/
protected RealmsCatalog catalog = null ;
/**
* Our associated realm.
*/
protected ResourceReference rr_realm = null ;
/**
* The nam of the realm we cache in <code>realm</code>.
*/
protected String loaded_realm = null ;
protected Vector positiveEntrySet = null;
protected Vector negativeEntrySet = null;
/**
* Get the list of methods that this filter protect
* @return An array of String giving the name of the protected methods,
* or <strong>null</strong>, in wich case <em>all</em> methods are
* to be protected.
*/
public String[] getMethods() {
return (String[]) getValue(ATTR_METHODS, null) ;
}
/**
* Get the realm of this filter.
*/
public String getRealm() {
return (String) getValue(ATTR_REALM, null) ;
}
/**
* Get a pointer to our realm, and initialize our ipmatcher.
*/
protected synchronized void buildPermissions() {
// Get our catalog:
if ( catalog == null ) {
httpd server = (httpd)
((FramedResource) getTargetResource()).getServer() ;
catalog = server.getRealmsCatalog() ;
}
// Check that our realm name is valid:
String name = getRealm() ;
if ( name == null )
return ;
if ((rr_realm != null) && name.equals(loaded_realm))
return ;
// Load the realm and create the ipmtacher object
rr_realm = catalog.loadRealm(name) ;
if (rr_realm != null) {
try {
AuthRealm realm = (AuthRealm) rr_realm.lock();
Enumeration enum = realm.enumerateUserNames() ;
while (enum.hasMoreElements()) {
String uname = (String) enum.nextElement() ;
ResourceReference rr_user = realm.loadUser(uname) ;
try {
AuthUser user = (AuthUser) rr_user.lock();
createEntries(user);
} catch (InvalidResourceException ex) {
System.out.println("Invalid user reference : "+uname);
} finally {
rr_user.unlock();
}
}
} catch (InvalidResourceException ex) {
} finally {
rr_realm.unlock();
}
}
}
protected void createEntries(AuthUser user) {
AclPrincipal aclp = new AclPrincipal(user);
//@@@ FIXME @@@
}
public boolean addOwner(Principal caller, Principal owner)
throws NotOwnerException
{
return false;
}
public boolean deleteOwner(Principal caller, Principal owner)
throws NotOwnerException, LastOwnerException
{
return false;
}
public boolean isOwner(Principal owner) {
return false;
}
public void setName(Principal caller, String name)
throws NotOwnerException
{
throw new NotOwnerException();
}
public String getName() {
return getRealm();
}
public boolean addEntry(Principal caller, AclEntry entry)
throws NotOwnerException
{
return false;
}
public boolean removeEntry(Principal caller, AclEntry entry)
throws NotOwnerException
{
return false;
}
public Enumeration getPermissions(Principal user) {
return null;
}
public Enumeration entries() {
return null;
}
public boolean checkPermission(Principal principal, Permission permission)
{
String methods[] = getMethods();
boolean methodprotected = false;
if (methods != null) {
for (int i = 0 ; i < methods.length ; i++) {
if (permission.equals(methods[i]))
methodprotected = true;
}
} else {
methodprotected = true;
}
if (! methodprotected)
return true;
return userAllowed(principal);
}
protected boolean userAllowed(Principal principal) {
return false;
}
public String toString() {
return getName();
}
/**
* Initialize the Acl.
*/
public void initialize(Object values[]) {
super.initialize(values) ;
positiveEntrySet = new Vector(10);
negativeEntrySet = new Vector(10);
buildPermissions();
}
}
Webmaster
![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to AclRealm.java CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [Public] / java / classes / org / w3c / jigsaw / acl