OrgUnit |
DelAdminMgrImpl.add(OrgUnit entity) |
Commands adds a new OrgUnit entity to OrgUnit dataset.
|
Group |
GroupMgrImpl.add(Group group) |
Create a new group node.,
|
Group |
GroupMgrImpl.add(Group group,
String key,
String value) |
Add a property to an existing group node.
|
void |
PwPolicyMgrImpl.add(PwPolicy policy) |
This method will add a new policy entry to the POLICIES data set.
|
void |
AdminMgrImpl.addAscendant(Role childRole,
Role parentRole) |
This command creates a new role parentRole, and inserts it in the role hierarchy as an immediate ascendant of
the existing role childRole.
|
void |
DelAdminMgrImpl.addAscendant(AdminRole childRole,
AdminRole parentRole) |
This command creates a new role parentRole, and inserts it in the role hierarchy as an immediate ascendant of
the existing role childRole.
|
void |
DelAdminMgrImpl.addAscendant(OrgUnit child,
OrgUnit parent) |
This command creates a new orgunit parent, and inserts it in the orgunit hierarchy as an immediate ascendant of
the existing child orgunit.
|
void |
AdminMgrImpl.addDescendant(Role parentRole,
Role childRole) |
This command creates a new role childRole, and inserts it in the role hierarchy as an immediate descendant of
the existing role parentRole.
|
void |
DelAdminMgrImpl.addDescendant(AdminRole parentRole,
AdminRole childRole) |
This command creates a new role childRole, and inserts it in the role hierarchy as an immediate descendant of
the existing role parentRole.
|
void |
DelAdminMgrImpl.addDescendant(OrgUnit parent,
OrgUnit child) |
This command creates a new orgunit child, and inserts it in the orgunit hierarchy as an immediate descendant of
the existing orgunit parent.
|
SDSet |
AdminMgrImpl.addDsdRoleMember(SDSet dsdSet,
Role role) |
This command adds a role to a named DSD set of roles.
|
void |
AdminMgrImpl.addInheritance(Role parentRole,
Role childRole) |
This command establishes a new immediate inheritance relationship parentRole <<-- childRole between existing
roles parentRole, childRole.
|
void |
DelAdminMgrImpl.addInheritance(AdminRole parentRole,
AdminRole childRole) |
This command establishes a new immediate inheritance relationship parentRole <<-- childRole between existing
roles parentRole, childRole.
|
void |
DelAdminMgrImpl.addInheritance(OrgUnit parent,
OrgUnit child) |
This command establishes a new immediate inheritance relationship with parent orgunit <<-- child orgunit
|
Permission |
AdminMgrImpl.addPermission(Permission perm) |
This method will add permission operation to an existing permission object which resides under
ou=Permissions,ou=RBAC,dc=yourHostName,dc=com container in directory information tree.
|
PermissionAttributeSet |
AdminMgrImpl.addPermissionAttributeSet(PermissionAttributeSet permAttributeSet) |
This method will create a new permission attribute set object with resides under the
ou=Constraints,ou=RBAC,dc=yourHostName,dc=com container in directory information tree.
|
PermissionAttribute |
AdminMgrImpl.addPermissionAttributeToSet(PermissionAttribute permAttribute,
String attributeSetName) |
This method adds a permission attribute (ftPA) to a permission attribute set.
|
PermObj |
AdminMgrImpl.addPermObj(PermObj pObj) |
This method will add permission object to perms container in directory.
|
Role |
AdminMgrImpl.addRole(Role role) |
This command creates a new role.
|
AdminRole |
DelAdminMgrImpl.addRole(AdminRole role) |
This command creates a new admin role.
|
RoleConstraint |
AdminMgrImpl.addRoleConstraint(UserRole uRole,
RoleConstraint roleConstraint) |
This method adds a roleConstraint (ftRC) to the user ldap entry.
|
SDSet |
AdminMgrImpl.addSsdRoleMember(SDSet ssdSet,
Role role) |
This command adds a role to a named SSD set of roles.
|
User |
AdminMgrImpl.addUser(User user) |
This command creates a new RBAC user.
|
Group |
GroupMgrImpl.assign(Group group,
String member) |
Assign a user to an existing group node.
|
List<UserAdminRole> |
DelReviewMgrImpl.assignedRoles(User user) |
This function returns the set of admin roles assigned to a given user.
|
List<String> |
ReviewMgrImpl.assignedRoles(String userId) |
This function returns the set of roles assigned to a given user.
|
List<UserRole> |
ReviewMgrImpl.assignedRoles(User user) |
This function returns the set of roles assigned to a given user.
|
List<User> |
DelReviewMgrImpl.assignedUsers(AdminRole role) |
This method returns the data set of all users who are assigned the given admin role.
|
List<User> |
ReviewMgrImpl.assignedUsers(Role role) |
This method returns the data set of all users who are assigned the given role.
|
List<String> |
ReviewMgrImpl.assignedUsers(Role role,
int limit) |
This function returns the set of users assigned to a given role.
|
List<User> |
ReviewMgrImpl.assignedUsers(Role role,
RoleConstraint roleConstraint) |
This method returns the data set of all users who are assigned the given role.
|
List<UserRole> |
ReviewMgrImpl.assignedUsers(Role role,
RoleConstraint.RCType rcType,
String keyName) |
This method returns the user roles for all users who have the given role, with a specified constraint type
and permission attribute set name.
|
void |
AdminMgrImpl.assignUser(UserRole uRole) |
This command assigns a user to a role.
|
void |
DelAdminMgrImpl.assignUser(UserAdminRole uAdminRole) |
This command assigns a user to an admin role.
|
Set<String> |
DelAccessMgrImpl.authorizedAdminRoles(Session session) |
This function returns the authorized admin roles associated with a session based on hierarchical relationships.
|
Set<String> |
ReviewMgrImpl.authorizedPermissionRoles(Permission perm) |
Return all role names that have been authorized for a given permission.
|
Set<String> |
ReviewMgrImpl.authorizedPermissionUsers(Permission perm) |
Return all userIds that have been authorized for a given permission.
|
Set<String> |
AccessMgrImpl.authorizedRoles(Session session) |
This function returns the authorized roles associated with a session based on hierarchical relationships.
|
Set<String> |
ReviewMgrImpl.authorizedRoles(User user) |
This function returns the set of roles authorized for a given user.
|
List<User> |
ReviewMgrImpl.authorizedUsers(Role role) |
This function returns the set of users authorized to a given role, i.e., the users that are assigned to a role that
inherits the given role.
|
void |
AdminMgrImpl.changePassword(User user,
String newPassword) |
Method will change user's password.
|
boolean |
AccessMgrImpl.checkAccess(Session session,
Permission perm) |
Perform user RBAC authorization.
|
boolean |
AccessMgrImpl.checkAccess(User user,
Permission perm,
boolean isTrusted) |
Combine createSession and checkAccess into a single method.
|
SDSet |
AdminMgrImpl.createDsdSet(SDSet dsdSet) |
This command creates a named DSD set of roles and sets an associated cardinality n.
|
SDSet |
AdminMgrImpl.createSsdSet(SDSet ssdSet) |
This command creates a named SSD set of roles and sets the cardinality n of its subsets
that cannot have common users.
|
Group |
GroupMgrImpl.deassign(Group group,
String member) |
Deassign a member from an existing group node.
|
void |
AdminMgrImpl.deassignUser(UserRole uRole) |
This command deletes the assignment of the User from the Role entities.
|
void |
DelAdminMgrImpl.deassignUser(UserAdminRole uAdminRole) |
This method removes assigned admin role from user entity.
|
OrgUnit |
DelAdminMgrImpl.delete(OrgUnit entity) |
Commands deletes existing OrgUnit entity to OrgUnit dataset.
|
Group |
GroupMgrImpl.delete(Group group) |
Delete existing group node.
|
Group |
GroupMgrImpl.delete(Group group,
String key,
String value) |
Delete existing group node.
|
void |
PwPolicyMgrImpl.delete(PwPolicy policy) |
This method will delete exiting policy entry from the POLICIES data set.
|
SDSet |
AdminMgrImpl.deleteDsdRoleMember(SDSet dsdSet,
Role role) |
This command removes a role from a named DSD set of roles.
|
SDSet |
AdminMgrImpl.deleteDsdSet(SDSet dsdSet) |
This command deletes a DSD role set completely.
|
void |
AdminMgrImpl.deleteInheritance(Role parentRole,
Role childRole) |
This command deletes an existing immediate inheritance relationship parentRole <<-- childRole.
|
void |
DelAdminMgrImpl.deleteInheritance(AdminRole parentRole,
AdminRole childRole) |
This command deletes an existing immediate inheritance relationship parentRole <<-- childRole.
|
void |
DelAdminMgrImpl.deleteInheritance(OrgUnit parent,
OrgUnit child) |
This command deletes an existing immediate inheritance relationship parent <<-- child.
|
void |
AdminMgrImpl.deletePasswordPolicy(User user) |
Method will delete user's password policy designation.
|
void |
PwPolicyMgrImpl.deletePasswordPolicy(String userId) |
This method will remove the pw policy assignment from a user entity.
|
void |
AdminMgrImpl.deletePermission(Permission perm) |
This method will remove permission operation entity from permission object.
|
void |
AdminMgrImpl.deletePermissionAttributeSet(PermissionAttributeSet permAttributeSet) |
This method will delete a permission attribute set object.
|
void |
AdminMgrImpl.deletePermObj(PermObj pObj) |
This method will remove permission object to perms container in directory.
|
void |
AdminMgrImpl.deleteRole(Role role) |
This command deletes an existing role from the RBAC database.
|
void |
DelAdminMgrImpl.deleteRole(AdminRole role) |
This command deletes an existing admin role from the ARBAC database.
|
SDSet |
AdminMgrImpl.deleteSsdRoleMember(SDSet ssdSet,
Role role) |
This command removes a role from a named SSD set of roles.
|
SDSet |
AdminMgrImpl.deleteSsdSet(SDSet ssdSet) |
This command deletes a SSD role set completely.
|
void |
AdminMgrImpl.deleteUser(User user) |
This command deletes an existing user from the RBAC database.
|
void |
AdminMgrImpl.disableRoleConstraint(Role role,
RoleConstraint roleConstraint) |
This method disables a role to be constrainted by attributes.
|
void |
AdminMgrImpl.disableUser(User user) |
This command deletes an existing user from the RBAC database.
|
SDSet |
ReviewMgrImpl.dsdRoleSet(SDSet set) |
This function returns the DSD data set that matches a particular set name.
|
int |
ReviewMgrImpl.dsdRoleSetCardinality(SDSet dsd) |
This function returns the cardinality associated with a DSD role set.
|
Set<String> |
ReviewMgrImpl.dsdRoleSetRoles(SDSet dsd) |
This function returns the set of roles of a DSD role set.
|
List<SDSet> |
ReviewMgrImpl.dsdRoleSets(Role role) |
This function returns the list of all dSD role sets that have a particular Role as member or Role's
parent as a member.
|
List<SDSet> |
ReviewMgrImpl.dsdSets(SDSet ssd) |
This function returns the list of DSDs that match a given dsd name value.
|
void |
AdminMgrImpl.enableRoleConstraint(Role role,
RoleConstraint roleConstraint) |
This method enables a role to be constrainted by attributes.
|
List<Group> |
GroupMgrImpl.find(Group group) |
Search using a full or partial group node.
|
List<Group> |
GroupMgrImpl.find(User user) |
Search for groups by userId.
|
List<Permission> |
ReviewMgrImpl.findAnyPermissions(Permission permission) |
Method returns a list of Permissions that match any part of the permission object or operation.
|
List<Permission> |
ReviewMgrImpl.findPermissions(Permission permission) |
Method returns a list of type Permission that match the perm object search string.
|
List<PermObj> |
ReviewMgrImpl.findPermObjs(OrgUnit ou) |
Method returns a list of type Permission that match the perm object search string.
|
List<PermObj> |
ReviewMgrImpl.findPermObjs(PermObj permObj) |
Method returns a list of type PermObj that match the perm object search string.
|
List<Permission> |
ReviewMgrImpl.findPermsByObj(PermObj permObj) |
Method returns Permission operations for the provided permission object
|
List<RoleConstraint> |
ReviewMgrImpl.findRoleConstraints(User user,
Permission permission,
RoleConstraint.RCType rcType) |
Find all of the role constraints for the given user and permission attribute set.
|
List<AdminRole> |
DelReviewMgrImpl.findRoles(String searchVal) |
Method will return a list of type Admin Role.
|
List<Role> |
ReviewMgrImpl.findRoles(String searchVal) |
Method will return a list of type Role matching all or part of Role name, Role#name}.
|
List<String> |
ReviewMgrImpl.findRoles(String searchVal,
int limit) |
Method returns a list of roles of type String.
|
List<User> |
ReviewMgrImpl.findUsers(OrgUnit ou) |
Return a list of type User of all users in the people container that match the name field passed in OrgUnit entity.
|
List<User> |
ReviewMgrImpl.findUsers(User user) |
Return a list of type User of all users in the people container that match all or part of the User#userId
field passed in User entity.
|
List<String> |
ReviewMgrImpl.findUsers(User user,
int limit) |
Return a list of type String of all users in the people container that match the userId field passed in User entity.
|
List<AuthZ> |
AuditMgrImpl.getUserAuthZs(UserAudit uAudit) |
|
void |
AdminMgrImpl.grantPermission(Permission perm,
Role role) |
This command grants a role the permission to perform an operation on an object to a role.
|
void |
AdminMgrImpl.grantPermission(Permission perm,
User user) |
This command grants a user the permission to perform an operation on an object to a role.
|
List<UserRole> |
GroupMgrImpl.groupRoles(Group group) |
Read an existing group node's roles.
|
void |
AdminMgrImpl.lockUserAccount(User user) |
Method will lock user's password which will prevent the user from authenticating with directory.
|
List<String> |
ReviewMgrImpl.permissionRoles(Permission perm) |
Return a list of type String of all roles that have granted a particular permission.
|
List<String> |
ReviewMgrImpl.permissionUsers(Permission perm) |
Return all userIds that have been granted (directly) a particular permission.
|
OrgUnit |
DelReviewMgrImpl.read(OrgUnit entity) |
Commands reads existing OrgUnit entity from OrgUnit dataset.
|
Group |
GroupMgrImpl.read(Group group) |
Read an existing group node.
|
PwPolicy |
PwPolicyMgrImpl.read(String name) |
This method will return the password policy entity to the caller.
|
PermissionAttributeSet |
ReviewMgrImpl.readPermAttributeSet(PermissionAttributeSet permAttributeSet) |
Method read permission attribute set in directory
|
Permission |
ReviewMgrImpl.readPermission(Permission permission) |
This method returns a matching permission entity to caller.
|
PermObj |
ReviewMgrImpl.readPermObj(PermObj permObj) |
Method reads permission object from perm container in directory.
|
AdminRole |
DelReviewMgrImpl.readRole(AdminRole role) |
Method reads Admin Role entity from the admin role container in directory.
|
Role |
ReviewMgrImpl.readRole(Role role) |
Method reads Role entity from the role container in directory.
|
User |
ReviewMgrImpl.readUser(User user) |
Method returns matching User entity that is contained within the people container in the directory.
|
void |
AdminMgrImpl.removePermissionAttributeFromSet(PermissionAttribute permAttribute,
String attributeSetName) |
This method removed a permission attribute (ftPA) from an existing permission attribute set.
|
void |
AdminMgrImpl.removeRoleConstraint(UserRole uRole,
String roleConstraintId) |
Thie method removes a roleConstraint (ftRC) from the user ldap entry.
|
void |
AdminMgrImpl.removeRoleConstraint(UserRole uRole,
RoleConstraint roleConstraint) |
Thie method removes a roleConstraint (ftRC) from the user ldap entry.
|
void |
AdminMgrImpl.resetPassword(User user,
String newPassword) |
Method will reset user's password which will require user to change password before successful authentication with
directory.
|
void |
AdminMgrImpl.revokePermission(Permission perm,
Role role) |
This command revokes the permission to perform an operation on an object from the set
of permissions assigned to a role.
|
void |
AdminMgrImpl.revokePermission(Permission perm,
User user) |
This command revokes the permission to perform an operation on an object from the set
of permissions assigned to a user.
|
List<Group> |
GroupMgrImpl.roleGroups(Role role) |
Search for groups by role name.
|
List<Permission> |
DelReviewMgrImpl.rolePermissions(AdminRole role,
boolean noInheritance) |
This function returns the set of all ARBAC permissions (op, obj), granted to or inherited by a
given ARBAC role.
|
List<Permission> |
ReviewMgrImpl.rolePermissions(Role role,
boolean noInheritance) |
This function returns the set of all permissions (op, obj), granted to or inherited by a
given role.
|
List<OrgUnit> |
DelReviewMgrImpl.search(OrgUnit.Type type,
String searchVal) |
Commands searches existing OrgUnit entities from OrgUnit dataset.
|
List<PwPolicy> |
PwPolicyMgrImpl.search(String searchVal) |
This method will return a list of all password policy entities that match a particular search string.
|
List<Mod> |
AuditMgrImpl.searchAdminMods(UserAudit uAudit) |
|
List<AuthZ> |
AuditMgrImpl.searchAuthZs(UserAudit uAudit) |
|
List<Bind> |
AuditMgrImpl.searchBinds(UserAudit uAudit) |
|
List<AuthZ> |
AuditMgrImpl.searchInvalidUsers(UserAudit uAudit) |
|
List<Mod> |
AuditMgrImpl.searchUserSessions(UserAudit uAudit) |
|
List<UserAdminRole> |
DelAccessMgrImpl.sessionAdminRoles(Session session) |
This function returns the active admin roles associated with a session.
|
List<Permission> |
AccessMgrImpl.sessionPermissions(Session session) |
This function returns the permissions of the session, i.e., the permissions assigned
to its authorized roles.
|
List<Permission> |
DelAccessMgrImpl.sessionPermissions(Session session) |
This function returns the permissions of the session, i.e., the permissions assigned
to its authorized roles.
|
List<UserRole> |
AccessMgrImpl.sessionRoles(Session session) |
This function returns the active roles associated with a session.
|
SDSet |
AdminMgrImpl.setDsdSetCardinality(SDSet dsdSet,
int cardinality) |
This command sets the cardinality associated with a given DSD role set.
|
SDSet |
AdminMgrImpl.setSsdSetCardinality(SDSet ssdSet,
int cardinality) |
This command sets the cardinality associated with a given SSD role set.
|
SDSet |
ReviewMgrImpl.ssdRoleSet(SDSet set) |
This function returns the SSD data set that matches a particular set name.
|
int |
ReviewMgrImpl.ssdRoleSetCardinality(SDSet ssd) |
This function returns the cardinality associated with a SSD role set.
|
Set<String> |
ReviewMgrImpl.ssdRoleSetRoles(SDSet ssd) |
This function returns the set of roles of a SSD role set.
|
List<SDSet> |
ReviewMgrImpl.ssdRoleSets(Role role) |
This function returns the list of all SSD role sets that have a particular Role as member or Role's
parent as a member.
|
List<SDSet> |
ReviewMgrImpl.ssdSets(SDSet ssd) |
This function returns the list of SSDs that match a given ssd name value.
|
void |
AdminMgrImpl.unlockUserAccount(User user) |
Method will unlock user's password which will enable user to authenticate with directory.
|
OrgUnit |
DelAdminMgrImpl.update(OrgUnit entity) |
Commands updates existing OrgUnit entity to OrgUnit dataset.
|
Group |
GroupMgrImpl.update(Group group) |
Modify existing group node.
|
void |
PwPolicyMgrImpl.update(PwPolicy policy) |
This method will update an exiting policy entry to the POLICIES data set.
|
SDSet |
AdminMgrImpl.updateDsdSet(SDSet dsdSet) |
This command updates existing DSD set of roles and sets the cardinality n of its subsets
that cannot have common users.
|
Permission |
AdminMgrImpl.updatePermission(Permission perm) |
This method will update permission operation pre-existing in target directory under
ou=Permissions,ou=RBAC,dc=yourHostName,dc=com container in directory information tree.
|
void |
AdminMgrImpl.updatePermissionAttributeInSet(PermissionAttribute permAttribute,
String attributeSetName,
boolean replaceValidValues) |
This method updates a permission attribute (ftPA) on a permission attribute set.
|
PermObj |
AdminMgrImpl.updatePermObj(PermObj pObj) |
This method will update permission object in perms container in directory.
|
Role |
AdminMgrImpl.updateRole(Role role) |
Method will update a Role entity in the directory.
|
AdminRole |
DelAdminMgrImpl.updateRole(AdminRole role) |
Method will update an AdminRole entity in the directory.
|
SDSet |
AdminMgrImpl.updateSsdSet(SDSet ssdSet) |
This command updates existing SSD set of roles and sets the cardinality n of its subsets
that cannot have common users.
|
User |
AdminMgrImpl.updateUser(User user) |
This method performs an update on User entity in directory.
|
void |
PwPolicyMgrImpl.updateUserPolicy(String userId,
String policyName) |
This method will associate a user entity with a password policy entity.
|
List<Permission> |
ReviewMgrImpl.userPermissions(User user) |
This function returns the set of permissions a given user gets through his/her authorized
roles.
|