PolicyManagement (GRIA master 5.2 API)

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

uk.ac.soton.itinnovation.grid.types
Interface PolicyManagement

All Known Subinterfaces:: AccountConversation, AccountResource, CltMgtRegistryResource, CltMgtRegistryResourceConversation, DataConversation, DataResource, DataResourceRole, DataResourceSubscription, DataServiceSOAP, DataStagerResource, JobConversation, JobResource, JobServiceSOAP, LocalDataService, MembershipGroupConversation, MembershipGroupResource, OgsaDaiDBI, OgsaDaiDBRoleI, OgsaDaiDBSubscriptionI, OgsaDaiResource, OgsaDaiResourceConversation, OgsaDaiRole, OgsaDaiRoleConversation, OgsaDaiServiceSOAP, OgsaDaiSubscription, OgsaDaiSubscriptionConversation, PrivateAccountConversation, PrivateAccountResource, PrivateAccountServiceSOAP, SampleConversation, SampleResource, SLAConversation, SLAResource, SLAServiceSOAP, SLATemplateConversation, SLATemplateResource, TradeAccountConversation, TradeAccountResource, TradeAccountServiceSOAP

All Known Implementing Classes:: AccountConversationImpl, AccountServiceImpl, CltMgtRegistryResourceImpl, CltMgtRegistryServiceImpl, DataConversationImpl, DataServiceModule, GridServiceLite, JobConversationImpl, JobServiceModule, ManagedDataResource, MembershipGroupResourceImpl, MembershipServiceImpl, OgsaDaiServiceI2Impl, OgsaDaiServiceImpl, PolicyManagementWSDL, PrivateAccountConversationImpl, PrivateAccountServiceImpl, SampleResourceImpl, SampleServiceImpl, SLAConversationImpl, SLAServiceImpl, TradeAccountConversationImpl, TradeAccountServiceImpl

@WebServiceWSDL(targetNamespace="http://nextgrid.org/2007/security", bindingName="PolicyManagementSoapBinding", resourcePath="nextgrid-policymanagement.wsdl", portTypeName="PolicyManagement") public interface PolicyManagement

A resource whose access control rules can be managed. Each resource has set of rules which determine the set of roles a particular subject has on that resource. This interface is used for managing these rules. The rules are enforced by a PEP (Policy Enforcement Point), such as the PEP Axis provider.

Method Summary
`void`	`addPolicyRule(PolicyRule rule)` Add an access control rule to this resource's dynamic access control policy.
`PolicyRule[]`	`getPolicyRules()` Get the access control rules in this resource's dynamic access control policy.
`String[]`	`getValidRoles()` List the roles the caller is permitted to see.
`void`	`removePolicyRule(PolicyRule rule)` Remove an access control rule from this resource's dynamic access control policy.

Method Detail

addPolicyRule

@WebMethod
void addPolicyRule(PolicyRule rule)
                   throws RemoteException

Add an access control rule to this resource's dynamic access control policy.

Throws:: RemoteException
See Also:: PDP.addAccessControlRule(java.lang.String, uk.ac.soton.itinnovation.grid.types.MatchRule)

removePolicyRule

@WebMethod
void removePolicyRule(PolicyRule rule)
                      throws RemoteException

Remove an access control rule from this resource's dynamic access control policy.

Throws:: RemoteException
See Also:: PDP.removeAccessControlRule(java.lang.String, uk.ac.soton.itinnovation.grid.types.MatchRule)

getPolicyRules

@WebMethod
PolicyRule[] getPolicyRules()
                            throws RemoteException

Get the access control rules in this resource's dynamic access control policy. Rules are only returned for the roles the caller is permitted to see. Note: The rules are filtered to only include those for roles listed by getValidRoles().

Throws:: RemoteException
See Also:: PDP.getAccessControlRules(java.lang.String, java.lang.String)

getValidRoles

@WebMethod
String[] getValidRoles()
                       throws RemoteException

List the roles the caller is permitted to see. This is the list of roles whose rules are returned by getPolicyRules().

Throws:: RemoteException
See Also:: PDP.getValidProcessRoles(java.lang.String)