SAMLBlacklistPDP (GridShib for GT Java API)

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

org.globus.gridshib
Class SAMLBlacklistPDP

java.lang.Object
  org.globus.gridshib.BasePDP
      org.globus.gridshib.SAMLBlacklistPDP

All Implemented Interfaces:: Serializable, Interceptor, PDP

public class SAMLBlacklistPDP
extends BasePDP
extends BasePDP

This PDP makes an access control decision based on information from the user's security context. If an IP address or principal name identifier from the security context is on a preconfigured blacklist, the request is denied.

See Also:: BasePDP, SAMLBlacklistPDPImpl, Serialized Form

Field Summary
`protected SAMLBlacklistPDPImpl`	`impl` The instance of `SAMLBlacklistPDPImpl` that backs this `SAMLBlacklistPDP` instance.

Fields inherited from class org.globus.gridshib.BasePDP
`scope, serviceId`

Constructor Summary
`SAMLBlacklistPDP()`

Method Summary
`boolean`	`isPermitted(Subject peer, javax.xml.rpc.handler.MessageContext context, javax.xml.namespace.QName op)` Overrides the corresponding method in the superclass.
`protected PDP`	`pdpImpl()` Gets the instance of `SAMLBlacklistPDPImpl` that backs this `SAMLBlacklistPDP` instance.

Methods inherited from class org.globus.gridshib.BasePDP
`close, getPolicy, getPolicyNames, initialize, setPolicy`

Methods inherited from class java.lang.Object
`clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait`

Field Detail

impl

protected SAMLBlacklistPDPImpl impl

The instance of SAMLBlacklistPDPImpl that backs this SAMLBlacklistPDP instance.

Constructor Detail

SAMLBlacklistPDP

public SAMLBlacklistPDP()

Method Detail

pdpImpl

protected PDP pdpImpl()

Gets the instance of SAMLBlacklistPDPImpl that backs this SAMLBlacklistPDP instance. If no such instance exists (presumably because this is the first time the method has been called), this method creates a new instance of SAMLBlacklistPDPImpl.

Specified by:: pdpImpl in class BasePDP

Returns:: an instance of SAMLBlacklistPDPImpl

isPermitted

public boolean isPermitted(Subject peer,
                           javax.xml.rpc.handler.MessageContext context,
                           javax.xml.namespace.QName op)
                    throws org.globus.wsrf.impl.security.authorization.exceptions.AuthorizationException

Overrides the corresponding method in the superclass.

Specified by:: isPermitted in interface PDP
Overrides:: isPermitted in class BasePDP

Parameters:: peer - the authenticated subject; context - the message context; op - the requested operation
Returns:: false if and only if the implementation returns PDPDecision.DENY
Throws:: org.globus.wsrf.impl.security.authorization.exceptions.AuthorizationException - If the underlying implementation (SAMLBlacklistPDPImpl) throws an exception of any kind