Interface Subject
-
- All Superinterfaces:
Cloneable
@SupportedAll @Deprecated public interface Subject extends Cloneable
Deprecated.The classSubject
defines a collection of users (or subject) to whom the specifiedPolicy
is applied. A complete implementation of this interface can have complex boolean operations to determine if the given user identified by theSSOToken
belongs to this collection.The interfaces are separated into administrative interfaces and evaluation interfaces. The administrative interfaces will be used by web interface/command line interface component to create a
Subject
object and the evaluation interfaces will be used by thePolicyEvaluator
.
-
-
Method Summary
All Methods Instance Methods Abstract Methods Deprecated Methods Modifier and Type Method Description Object
clone()
Deprecated.Creates and returns a copy of this object.String
getDisplayNameForValue(String value, Locale locale)
Deprecated.Returns the display name for the value for the given locale.ValidValues
getValidValues(SSOToken token)
Deprecated.Returns a list of possible values for theSubject
.ValidValues
getValidValues(SSOToken token, String pattern)
Deprecated.Returns a list of possible values for theSubject
that satisfy the givenpattern
.Set
getValues()
Deprecated.Returns the values that was set using the methodsetValues
.Syntax
getValueSyntax(SSOToken token)
Deprecated.Returns the syntax of the values theSubject
implementation can have.void
initialize(Map configParams)
Deprecated.Initialize (or configure) theSubject
object.boolean
isMember(SSOToken token)
Deprecated.Determines if the user belongs to this instance of theSubject
object.void
setValues(Set names)
Deprecated.Sets the names for the instance of theSubject
object.
-
-
-
Method Detail
-
getValueSyntax
Syntax getValueSyntax(SSOToken token) throws SSOException, PolicyException
Deprecated.Returns the syntax of the values theSubject
implementation can have.- Parameters:
token
- theSSOToken
that will be used to determine the syntax- Returns:
Set
of valid names for the user collection.- Throws:
SSOException
- ifSSOToken
is not validPolicyException
- if unable to get the list of valid names.- See Also:
Syntax
-
getValidValues
ValidValues getValidValues(SSOToken token) throws SSOException, PolicyException
Deprecated.Returns a list of possible values for theSubject
. The implementation must use theSSOToken
token provided to determine the possible values. For example, in a Role implementation this method will return all the roles defined in the organization.- Parameters:
token
- theSSOToken
that will be used to determine the possible values- Returns:
ValidValues
object- Throws:
SSOException
- ifSSOToken
is not validPolicyException
- if unable to get the list of valid names.
-
getValidValues
ValidValues getValidValues(SSOToken token, String pattern) throws SSOException, PolicyException
Deprecated.Returns a list of possible values for theSubject
that satisfy the givenpattern
. The implementation must use theSSOToken
token provided to determine the possible values. For example, in a Role implementation with the search filter*admin
this method will return all the roles defined in the organization that end withadmin
- Parameters:
token
- theSSOToken
that will be used to determine the possible valuespattern
- search pattern that will be used to narrow the list of valid names.- Returns:
ValidValues
object- Throws:
SSOException
- ifSSOToken
is not validPolicyException
- if unable to get the list of valid names.
-
getDisplayNameForValue
String getDisplayNameForValue(String value, Locale locale) throws NameNotFoundException
Deprecated.Returns the display name for the value for the given locale. For all the valid values obtained through the methodsgetValidValues
this method must be called by web and command line interface to get the corresponding display name. Thelocale
variable could be used by the plugin to customize the display name for the given locale. Thelocale
variable could benull
, in which case the plugin must use the default locale (most probablyen_US
). This method returns only the display name and should not be used for the methodsetValues
. Alternatively, if the plugin does not have to localize the value, it can just return thevalue
as is.- Parameters:
value
- one of the valid value for the pluginlocale
- locale for which the display name must be customized- Returns:
- the display name for the value for the given locale.
- Throws:
NameNotFoundException
- if the givenvalue
is not one of the valid values for the plugin
-
getValues
Set getValues()
Deprecated.Returns the values that was set using the methodsetValues
.- Returns:
Set
of values that have been set for the user collection.
-
initialize
void initialize(Map configParams) throws PolicyException
Deprecated.Initialize (or configure) theSubject
object. Usually it will be initialized with the environment parameters set by the system administrator via admin console. For example in a Role implementation, the configuration parameters could specify the directory server name, port, etc.- Parameters:
configParams
- configuration parameters as aMap
. The values in the map isjava.util.Set
, which contains one or more configuration parameters.- Throws:
PolicyException
- if an error occurred during initialization ofSubject
instance
-
setValues
void setValues(Set names) throws InvalidNameException
Deprecated.Sets the names for the instance of theSubject
object. The names are obtained from thePolicy
object, usually configured when a policy is created. For example in a Role implementation, this would be name of the role.- Parameters:
names
- names selected for the instance of the user collection object.- Throws:
InvalidNameException
- if the given names are not valid
-
isMember
boolean isMember(SSOToken token) throws SSOException, PolicyException
Deprecated.Determines if the user belongs to this instance of theSubject
object. For example, a Role implementation would returntrue
if the user belongs the specified role;false
otherwise.- Parameters:
token
- single-sign-on token of the user- Returns:
true
if the user is member of the given subject;false
otherwise.- Throws:
SSOException
- if SSO token is not validPolicyException
- if an error occurred while checking if the user is a member of this subject
-
clone
Object clone()
Deprecated.Creates and returns a copy of this object.- Returns:
- a copy of this object
-
-