|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object | +--com.novell.service.nds.NdsObjectACL
Provides access to attribute values of the ObjectACL syntax. It is used for attributes whose values represent ACL entries. An object ACL value can protect either an object or an attribute. The protected object is always the one that contains the ACL attribute. If an ACL entry is to apply to the object as a whole, the protected attribute name should be left empty (NULL). If a specific attribute is to be protected, it should be named in the ACL entry.
You can match an ACL value against either a subject (trustee) or a privilege set, or both. If the subject name is not to be considered in the comparison, specify it as NULL. If the privilege set is not to be considered in the comparison, specify an Approximate Match with a privilege set value of zero.
The Object ACL syntax supports both matching for equality and approximate matching. The difference between matching for equality and approximate matching concerns the privileges field of the comparison value. When matching for equality, the privilege set must match exactly for the comparison to succeed. When approximate matching has been selected, any bits in the privilege field in the filter that are set must also be set in the target. Any other bits in the target are ignored.
Matching Rules: Equality and Approximate Matching
NdsSyntaxId
Field Summary | |
static java.lang.String |
DS_ALL_ATTRS_NAME
All Attributes Rights ACL to be stored as a String value. |
static java.lang.String |
DS_CREATOR_NAME
String constant for [Creator] special entry name. |
static java.lang.String |
DS_ENTRY_RIGHTS_NAME
Entry Rights ACL to be stored as a String value. |
static java.lang.String |
DS_MASK_NAME
String constant for [Inheritance Mask] special entry name. |
static java.lang.String |
DS_PUBLIC_NAME
String constant for the [Public] object. |
static java.lang.String |
DS_ROOT_NAME
String constant for the [Root] object. |
static java.lang.String |
DS_SELF_NAME
String constant for [Self] special entry name. |
Constructor Summary | |
NdsObjectACL(java.lang.String protectedAttrName,
java.lang.String subjectName,
long privileges)
Constructs an NdsObjectACL object based on the specified protectedAttrName, subjectName, and privileges parameters. |
Method Summary | |
boolean |
approximate(java.lang.Object anObject)
Compares two Objects using the approximate equals matching rule. |
java.lang.Object |
clone()
Creates a new object of the same class as this object. |
int |
compareTo(java.lang.Object anObject)
Compares two objects for ordering, or compares two strings lexicographically. |
int |
count()
Returns the number of elements in this sequence. |
boolean |
equals(java.lang.Object anObject)
Compares two Objects for equality. |
int |
getNdsSyntaxId()
Returns the int that represents this NDS syntax ID. |
long |
getPrivileges()
Returns the stored privileges variable as a long value stored in the object data member. |
java.lang.String |
getProtectedAttrName()
Returns the stored protectedAttrName variable as a String value stored in the object data member. |
java.lang.String |
getSubjectName()
Returns the stored subjectName variable as a String value stored in the object data member. |
|
getValue(java.lang.String compositeId)
Returns a SchemaValue object based on the given passed-in string containing the element value. |
java.util.Enumeration |
getValueIds()
Returns an enumeration of composite IDs. |
java.util.Enumeration |
getValues()
Returns an enumeration of the elements in this composite. |
boolean |
supportsMatchingRules(int matchingRules)
Checks to see if this object supports the specified matching rules. |
java.lang.String |
toString()
Generates a string representation of the object. |
Methods inherited from class java.lang.Object |
getClass,
hashCode,
notify,
notifyAll,
wait,
wait,
wait |
Field Detail |
public static final java.lang.String DS_ALL_ATTRS_NAME
(DS_ALL_ATTRS_NAME = "[All Attributes Rights]")
public static final java.lang.String DS_ENTRY_RIGHTS_NAME
(DS_ENTRY_RIGHTS_NAME = "[Entry Rights]")
public static final java.lang.String DS_ROOT_NAME
(DS_ROOT_NAME = "[Root]")
public static final java.lang.String DS_PUBLIC_NAME
(DS_PUBLIC_NAME = "[Public]")
public static final java.lang.String DS_MASK_NAME
(DS_MASK_NAME = "[Inheritance Mask]")
public static final java.lang.String DS_CREATOR_NAME
(DS_CREATOR_NAME = "[Creator]")
public static final java.lang.String DS_SELF_NAME
(DS_SELF_NAME = "[Self]")
Constructor Detail |
public NdsObjectACL(java.lang.String protectedAttrName, java.lang.String subjectName, long privileges)
protectedAttrName
- The name of the attribute to be
protected stored as a String value.subjectName
- The subject (trustee) name stored as a
String value.privileges
- The privileges containing a bit mask
identifying specific rights stored as
a long value.Method Detail |
public int compareTo(java.lang.Object anObject) throws java.lang.Exception
public boolean equals(java.lang.Object anObject)
The equals method implements the most discriminating possible equivalence relation on objects; that is, for any reference values X and Y, this method returns TRUE if and only if X and Y refer to the same object (X==Y has the value TRUE).
anObject
- The reference object with which to compare.public int count()
public getValue(java.lang.String compositeId)
compositeId
- The passed-in string containing the element
value.public java.util.Enumeration getValueIds()
public java.util.Enumeration getValues()
public boolean approximate(java.lang.Object anObject) throws java.lang.Exception
An Object ACL value can protect either an object or an attribute. The protected object is always the one that contains the ACL attribute. If an ACL entry is to apply to the object as a whole, leave the protected attribute name empty (NULL). If a specific attribute is to be protected, name it in the ACL entry.
You can match an ACL value against either a subject (trustee) or a privilege set, or both, If the subject name is not to be considered in the compariosn, specify it as NULL. If the privilege set is not to be considered in the comparison, specify an approximate equals match with a privilege set value of zero.
When the approximate equals matching is used, set any bits in the target that are set in the filter's privilege field. Any other bits in the target are ignored. Values with the same protectedAttrName and subjectName are considered to be duplicate and thus are not permitted. The Protected Attribute Name conveys the attribute that the ACL is protecting.
anObject
- The reference object with which to compare.public int getNdsSyntaxId()
public boolean supportsMatchingRules(int matchingRules)
matchingRules
- The set of matching rules to check.public java.lang.Object clone()
public java.lang.String toString()
public java.lang.String getProtectedAttrName()
public java.lang.String getSubjectName()
public long getPrivileges()
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |