|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objecteu.xtreemos.xati.API.XVOPS
public class XVOPS
Field Summary | |
---|---|
static java.lang.String |
servicename
|
Constructor Summary | |
---|---|
XVOPS()
|
Method Summary | |
---|---|
static java.lang.Boolean |
addPolicy(java.lang.String __xacmlPolicy,
java.security.cert.X509Certificate __userCtx)
Adds XACML policy into policy storage. |
static java.lang.String |
addRule(java.lang.String __ruleXML,
java.lang.String __policyId)
Adds rule which is passed as XML string to the policy identified by policyId. |
static java.lang.String |
addXACMLRule(java.lang.String __ruleXACML,
java.lang.String __policyId,
java.security.cert.X509Certificate __userCtx)
Adds rule which is passed as XML string in XACML format to the policy identified by policyId.Returns rule created as String object. |
static java.lang.String |
createPolicy(java.lang.String __policyID,
java.lang.String __description)
Deprecated. |
static java.lang.String |
createPolicyWithTarget(java.lang.String __policyID,
java.lang.String __description,
java.lang.String __target)
Creates an empty policy containing target as provided. |
static java.lang.String |
evaluateRequest(java.lang.String __xacmlRequest)
Method constructs XACML request from XML passed as request and applies xacml request against policies stored in policy storage @see PolicyFactory. |
static java.lang.String |
generateRequest(java.security.cert.X509Certificate __targetSubjectCertificate)
|
static java.util.ArrayList<java.lang.String> |
getActionAttributes()
These attributes can be used in XACML policies, requests and rules. |
static java.util.ArrayList<CommunicationAddress> |
getFilteredResources()
Deprecated. |
static java.util.ArrayList<java.lang.String> |
getResourceAttributes()
These attributes can be used in XACML policies, requests and rules. |
static java.util.ArrayList<java.lang.String> |
getSubjectAttributes()
These attributes can be used in XACML policies, requests and rules. |
static java.lang.String |
listFilteredPolicy(java.lang.String __xacmlRequest)
Returns a policy comprising rules which comply with the request passed as an argument. |
static java.lang.String |
listFilteredPolicyCert(java.security.cert.X509Certificate __targetSubjectCertificate)
Lists policies which apply to certificate provided. |
static java.util.ArrayList<java.lang.String> |
listPolicies(java.security.cert.X509Certificate __userCtx)
Note that list of all policies can be very large. |
static java.lang.String |
listPolicy(java.lang.String __policyId,
java.security.cert.X509Certificate __userCtx)
Lists specific policy with policyId. |
static java.lang.String |
listVoAdmins()
Lists registered VO administrators. |
static java.lang.String |
obtainFilterPolicyAEM(java.lang.Object __xosUserCert,
java.lang.String __jsdlContent,
java.lang.String __action)
|
static java.lang.Boolean |
registerVoAdmin(java.security.cert.X509Certificate __voAdminsCert)
Adds certificate passed as an argument into a list of trusted certificates (VO admins list). |
static java.lang.Boolean |
registerVOPSToGlobalVOPS(CommunicationAddress __address,
java.security.cert.X509Certificate __certificate)
This registers VOPS to global VOPS service where decisions are made. |
static java.lang.Boolean |
reloadVOPS(java.security.cert.X509Certificate __userCtx)
Reloads all policies stored in policy storage. |
static java.lang.Boolean |
removePolicy(java.lang.String __policyId,
java.security.cert.X509Certificate __userCtx)
Policy with policyId will be removed from policy storage. |
static java.lang.Boolean |
removeRuleFromPolicy(java.lang.String __ruleId,
java.lang.String __policyId,
java.security.cert.X509Certificate __userCtx)
Removes rule from policy with specified policyId. |
static java.lang.Boolean |
unregisterVoAdmin(java.lang.Integer __index)
Removes certificate with specified index from a list of trusted certificates. |
static ResourceMatching |
verifyPolicyAEM(java.lang.Object __xos_cert,
ResourceMatching __resources,
java.lang.String __action)
Used by AEM framework to check if resources listed in comply with policies stored in VO policy storage PolicyFactory#listPolicies() . |
static ResourceMatching |
verifyPolicyCertRes(java.security.cert.X509Certificate __xos_cert,
ResourceMatching __resources)
This method is called by consequence of the VOPS#verifyPolicyAEM(Object, ResourceMatching, String) method. |
static java.lang.Boolean |
writeBack(java.security.cert.X509Certificate __userCtx)
Writes back policies from policy storage in PolicyFactory on to local disk. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static java.lang.String servicename
Constructor Detail |
---|
public XVOPS()
Method Detail |
---|
public static java.lang.Boolean registerVoAdmin(java.security.cert.X509Certificate __voAdminsCert) throws java.lang.Exception
voAdminsCert
- certificate to add into a list of trusted certificates.
See also X509Certificate
.
java.lang.Exception
public static java.lang.Boolean unregisterVoAdmin(java.lang.Integer __index) throws java.lang.Exception
voAdminsCert
-
java.lang.Exception
public static java.lang.String listVoAdmins() throws java.lang.Exception
java.lang.Exception
public static java.lang.String obtainFilterPolicyAEM(java.lang.Object __xosUserCert, java.lang.String __jsdlContent, java.lang.String __action) throws java.lang.Exception
java.lang.Exception
public static ResourceMatching verifyPolicyAEM(java.lang.Object __xos_cert, ResourceMatching __resources, java.lang.String __action) throws java.lang.Exception
PolicyFactory#listPolicies()
.
xos_cert
- instance of X509Certificate
.resources
- list of potential compliant resource, see also
ResourceMathching class.action
- String used to denote the action taken by the user over
resources. Use constants declared inside XACMLConstants#Action
.
ResourceMatching.setSignature(byte[])
and
ResourceMatching.getSignature()
.
java.lang.Exception
public static ResourceMatching verifyPolicyCertRes(java.security.cert.X509Certificate __xos_cert, ResourceMatching __resources) throws java.lang.Exception
VOPS#verifyPolicyAEM(Object, ResourceMatching, String)
method.
Enforces policies - generates XACML request for each of the resource
and checks it against policies residing in policy storage, see
PolicyFactory#listPolicies()
.
xos_cert
- User certificate which has been stored in VOPSStorageresources
- are collection from process of resource mathcing, see
ResourceMatching
.
java.lang.Exception
public static java.lang.String createPolicy(java.lang.String __policyID, java.lang.String __description) throws java.lang.Exception
policyID
- Id of new policy createddescription
- of new policy
java.lang.Exception
public static java.lang.String createPolicyWithTarget(java.lang.String __policyID, java.lang.String __description, java.lang.String __target) throws java.lang.Exception
policyID
- policy's iddescription
- description of the policytarget
- target upon whom this policy apply
java.lang.Exception
public static java.lang.Boolean removePolicy(java.lang.String __policyId, java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
policyId
- userCtx
- certificate of the subject executing this call.
instance
- of Exception, error from PolicyFactory#removePolicy(String)
.
java.lang.Exception
public static java.util.ArrayList<java.lang.String> listPolicies(java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
VOPS#listFilteredPolicy(String)
and VOPS#listPolicy(String)
.
userCtx
- certificate of the subject executing this call.
java.lang.Exception
public static java.lang.String listPolicy(java.lang.String __policyId, java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
policy
- id.userCtx
- certificate of the subject executing this call.
java.lang.Exception
public static java.lang.Boolean addPolicy(java.lang.String __xacmlPolicy, java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
Policy
- in XML passed as string (XACML format).userCtx
- certificate of the subject executing this call.
java.lang.Exception
public static java.lang.String addRule(java.lang.String __ruleXML, java.lang.String __policyId) throws java.lang.Exception
VOPS#addXACMLRule(String, String)
, where rule is passed in a
XACML format.
ruleXML
- description of the rule.policyId
- defines destination policy.
java.lang.Exception
public static java.lang.String addXACMLRule(java.lang.String __ruleXACML, java.lang.String __policyId, java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
ruleXACML
- XACML string presenting rule to be added to policypolicyId
- identifies to which type of policies are we this rule.userCtx
- certificate of the subject executing this call.
java.lang.Exception
public static java.lang.String listFilteredPolicy(java.lang.String __xacmlRequest) throws java.lang.Exception
xacmlRequest
- XACML request which is applied to policies residing in
PolicyFactory.
java.lang.Exception
public static java.lang.String listFilteredPolicyCert(java.security.cert.X509Certificate __targetSubjectCertificate) throws java.lang.Exception
targetSubject
-
java.lang.Exception
public static java.lang.String generateRequest(java.security.cert.X509Certificate __targetSubjectCertificate) throws java.lang.Exception
java.lang.Exception
public static java.lang.String evaluateRequest(java.lang.String __xacmlRequest) throws java.lang.Exception
request
- String presenting XACMl request
java.lang.Exception
public static java.lang.Boolean removeRuleFromPolicy(java.lang.String __ruleId, java.lang.String __policyId, java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
ruleId
- Rule which will be removed from policy.policyId
- policy from which this rule is removed.userCtx
- certificate of the subject executing this call.
java.lang.Exception
public static java.lang.Boolean writeBack(java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
userCtx
- certificate of the subject executing this call.
java.lang.Exception
public static java.lang.Boolean reloadVOPS(java.security.cert.X509Certificate __userCtx) throws java.lang.Exception
userCtx
- certificate of the subject executing this call.
java.lang.Exception
public static java.util.ArrayList<CommunicationAddress> getFilteredResources() throws java.lang.Exception
java.lang.Exception
public static java.lang.Boolean registerVOPSToGlobalVOPS(CommunicationAddress __address, java.security.cert.X509Certificate __certificate) throws java.lang.Exception
address
- VOPS address to registercertificate
- of the VOPS
java.lang.Exception
public static java.util.ArrayList<java.lang.String> getSubjectAttributes() throws java.lang.Exception
java.lang.Exception
public static java.util.ArrayList<java.lang.String> getResourceAttributes() throws java.lang.Exception
java.lang.Exception
public static java.util.ArrayList<java.lang.String> getActionAttributes() throws java.lang.Exception
java.lang.Exception
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |