Package | Description |
---|---|
org.jboss.security.xacml.bridge | |
org.jboss.security.xacml.locators.attrib | |
org.jboss.security.xacml.sunxacml |
This is the root package, which contains the PDP class where most
people will want to start.
|
org.jboss.security.xacml.sunxacml.attr |
Contains many of the classes related to attributes and attribute
retrieval.
|
org.jboss.security.xacml.sunxacml.combine |
All of the combining algorithm support is in this package.
|
org.jboss.security.xacml.sunxacml.cond |
Support for Conditions is in this package.
|
org.jboss.security.xacml.sunxacml.finder |
The
finder package supports all of the pieces of the
XACML specification that require custom implementation. |
org.jboss.security.xacml.sunxacml.finder.impl |
The few included finder modules are provided in this package.
|
org.jboss.security.xacml.sunxacml.support.finder |
Modifier and Type | Method and Description |
---|---|
PolicyFinderResult |
WrapperPolicyFinderModule.findPolicy(EvaluationCtx evaluationCtx) |
PolicyFinderResult |
RPSPolicySetFinderModule.findPolicy(EvaluationCtx context) |
PolicyFinderResult |
PPSPolicySetFinderModule.findPolicy(EvaluationCtx context) |
PolicyFinderResult |
PolicySetFinderModule.findPolicy(EvaluationCtx context)
Finds the applicable policy (if there is one) for the given context.
|
Modifier and Type | Method and Description |
---|---|
EvaluationResult |
DatabaseAttributeLocator.findAttribute(URI attributeType,
URI attributeId,
URI issuer,
URI subjectCategory,
EvaluationCtx context,
int designatorType) |
EvaluationResult |
FileSystemAttributeLocator.findAttribute(URI attributeType,
URI attributeId,
URI issuer,
URI subjectCategory,
EvaluationCtx context,
int designatorType) |
EvaluationResult |
LDAPAttributeLocator.findAttribute(URI attributeType,
URI attributeId,
URI issuer,
URI subjectCategory,
EvaluationCtx context,
int designatorType) |
protected Object |
DatabaseAttributeLocator.getColumnValue(URI attributeType,
EvaluationCtx context)
Get the value of the attribute we are interested in
|
protected Object |
LDAPActionAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected Object |
FileSystemAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected Object |
LDAPResourceAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected Object |
DatabaseResourceAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected Object |
DatabaseActionAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected Object |
LDAPSubjectAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected abstract Object |
StorageAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context)
For locators based on DB or LDAP, we may need one value that needs to be substituted in the DB prepared
statement or ldap DIT query.
|
protected Object |
DatabaseSubjectAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected Object |
LDAPEnvAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
protected Object |
DatabaseEnvAttributeLocator.getSubstituteValue(URI attributeType,
EvaluationCtx context) |
Modifier and Type | Class and Description |
---|---|
class |
BasicEvaluationCtx
A basic implementation of
EvaluationCtx that is created from
an XACML Request and falls back on an AttributeFinder if a requested
value isn't available in the Request. |
Modifier and Type | Method and Description |
---|---|
ResponseCtx |
PDP.evaluate(EvaluationCtx context)
Uses the given
EvaluationCtx against the available
policies to determine a response. |
Result |
PolicyReference.evaluate(EvaluationCtx context)
Tries to evaluate the policy by calling the combining algorithm on
the given policies or rules.
|
Result |
AbstractPolicy.evaluate(EvaluationCtx context)
Tries to evaluate the policy by calling the combining algorithm on
the given policies or rules.
|
Result |
Rule.evaluate(EvaluationCtx context)
Evaluates the rule against the supplied context.
|
Result |
PolicyTreeElement.evaluate(EvaluationCtx context)
Evaluates this element in the policy tree, and therefore all elements
underneath this element.
|
MatchResult |
PolicyReference.match(EvaluationCtx context)
Given the input context sees whether or not the request matches this
policy.
|
MatchResult |
AbstractPolicy.match(EvaluationCtx context)
Given the input context sees whether or not the request matches this
policy.
|
MatchResult |
TargetMatch.match(EvaluationCtx context)
Determines whether this
TargetMatch matches
the input request (whether it is applicable) |
MatchResult |
Target.match(EvaluationCtx context)
Determines whether this
Target matches
the input request (whether it is applicable). |
MatchResult |
TargetMatchGroup.match(EvaluationCtx context)
Determines whether this
TargetMatchGroup matches
the input request (whether it is applicable). |
MatchResult |
Rule.match(EvaluationCtx context)
Given the input context sees whether or not the request matches this
Rule 's Target . |
MatchResult |
TargetSection.match(EvaluationCtx context)
Determines whether this
TargetSection matches
the input request (whether it is applicable). |
MatchResult |
PolicyTreeElement.match(EvaluationCtx context)
Given the input context sees whether or not the request matches this
element's target.
|
Modifier and Type | Method and Description |
---|---|
EvaluationResult |
AttributeValue.evaluate(EvaluationCtx context)
Implements the required interface from
Evaluatable . |
EvaluationResult |
AttributeDesignator.evaluate(EvaluationCtx context)
Evaluates the pre-assigned meta-data against the given context,
trying to find some matching values.
|
EvaluationResult |
AttributeSelector.evaluate(EvaluationCtx context)
Invokes the
AttributeFinder used by the given
EvaluationCtx to try to resolve an attribute value. |
Modifier and Type | Method and Description |
---|---|
Result |
FirstApplicablePolicyAlg.combine(EvaluationCtx context,
List parameters,
List policyElements)
Applies the combining rule to the set of policies based on the
evaluation context.
|
Result |
PermitOverridesPolicyAlg.combine(EvaluationCtx context,
List parameters,
List policyElements)
Applies the combining rule to the set of policies based on the
evaluation context.
|
Result |
PermitOverridesRuleAlg.combine(EvaluationCtx context,
List parameters,
List ruleElements)
Applies the combining rule to the set of rules based on the
evaluation context.
|
abstract Result |
PolicyCombiningAlgorithm.combine(EvaluationCtx context,
List parameters,
List policyElements)
Combines the policies based on the context to produce some unified
result.
|
abstract Result |
CombiningAlgorithm.combine(EvaluationCtx context,
List parameters,
List inputs)
Combines the results of the inputs based on the context to produce
some unified result.
|
Result |
DenyOverridesRuleAlg.combine(EvaluationCtx context,
List parameters,
List ruleElements)
Applies the combining rule to the set of rules based on the
evaluation context.
|
Result |
OnlyOneApplicablePolicyAlg.combine(EvaluationCtx context,
List parameters,
List policyElements)
Applies the combining rule to the set of policies based on the
evaluation context.
|
abstract Result |
RuleCombiningAlgorithm.combine(EvaluationCtx context,
List parameters,
List ruleElements)
Combines the rules based on the context to produce some unified
result.
|
Result |
DenyOverridesPolicyAlg.combine(EvaluationCtx context,
List parameters,
List policyElements)
Applies the combining rule to the set of policies based on the
evaluation context.
|
Result |
FirstApplicableRuleAlg.combine(EvaluationCtx context,
List parameters,
List ruleElements)
Applies the combining rule to the set of rules based on the
evaluation context.
|
Modifier and Type | Method and Description |
---|---|
protected EvaluationResult |
FunctionBase.evalArgs(List params,
EvaluationCtx context,
AttributeValue[] args)
Evaluates each of the parameters, in order, filling in the argument
array with the resulting values.
|
EvaluationResult |
Apply.evaluate(EvaluationCtx context)
Evaluates the apply object using the given function.
|
EvaluationResult |
Condition.evaluate(EvaluationCtx context)
Evaluates the
Condition by evaluating its child
Expression . |
EvaluationResult |
VariableReference.evaluate(EvaluationCtx context)
Evaluates the referenced expression using the given context, and either
returns an error or a resulting value.
|
EvaluationResult |
Evaluatable.evaluate(EvaluationCtx context)
Evaluates the object using the given context, and either returns an
error or a resulting value.
|
EvaluationResult |
DateMathFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
GeneralSetFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluates the function, using the specified parameters.
|
EvaluationResult |
AbsFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
HigherOrderFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluates the function, using the specified parameters.
|
EvaluationResult |
ComparisonFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
ConditionSetFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluates the function, using the specified parameters.
|
EvaluationResult |
NOfFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
EqualFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
GeneralBagFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
NumericConvertFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
DivideFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
StringFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
NotFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
MatchFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
URLStringCatFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluates the function given the input data.
|
EvaluationResult |
ConditionBagFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
ModFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
FloorFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
MultiplyFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
AddFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
StringNormalizeFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
RoundFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
Function.evaluate(List inputs,
EvaluationCtx context)
Evaluates the
Function using the given inputs. |
EvaluationResult |
TimeInRangeFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluates the time-in-range function, which takes three
TimeAttribute values. |
EvaluationResult |
LogicalFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
EvaluationResult |
SubtractFunction.evaluate(List inputs,
EvaluationCtx context)
Evaluate the function, using the specified parameters.
|
Modifier and Type | Method and Description |
---|---|
EvaluationResult |
AttributeFinder.findAttribute(String contextPath,
Node namespaceNode,
URI attributeType,
EvaluationCtx context,
String xpathVersion)
Tries to find attribute values based on the given selector data.
|
EvaluationResult |
AttributeFinderModule.findAttribute(String contextPath,
Node namespaceNode,
URI attributeType,
EvaluationCtx context,
String xpathVersion)
Tries to find attribute values based on the given selector data.
|
EvaluationResult |
AttributeFinder.findAttribute(URI attributeType,
URI attributeId,
URI issuer,
URI subjectCategory,
EvaluationCtx context,
int designatorType)
Tries to find attribute values based on the given designator data.
|
EvaluationResult |
AttributeFinderModule.findAttribute(URI attributeType,
URI attributeId,
URI issuer,
URI subjectCategory,
EvaluationCtx context,
int designatorType)
Tries to find attribute values based on the given designator data.
|
ResourceFinderResult |
ResourceFinderModule.findChildResources(AttributeValue parentResourceId,
EvaluationCtx context)
Tries to find the child Resource Ids associated with the parent.
|
ResourceFinderResult |
ResourceFinder.findChildResources(AttributeValue parentResourceId,
EvaluationCtx context)
Finds Resource Ids using the Children scope, and returns all resolved
identifiers as well as any errors that occurred.
|
ResourceFinderResult |
ResourceFinderModule.findDescendantResources(AttributeValue parentResourceId,
EvaluationCtx context)
Tries to find the descendant Resource Ids associated with the parent.
|
ResourceFinderResult |
ResourceFinder.findDescendantResources(AttributeValue parentResourceId,
EvaluationCtx context)
Finds Resource Ids using the Descendants scope, and returns all resolved
identifiers as well as any errors that occurred.
|
PolicyFinderResult |
PolicyFinderModule.findPolicy(EvaluationCtx context)
Tries to find one and only one matching policy given the request
represented by the context data.
|
PolicyFinderResult |
PolicyFinder.findPolicy(EvaluationCtx context)
Finds a policy based on a request's context.
|
Modifier and Type | Method and Description |
---|---|
EvaluationResult |
SelectorModule.findAttribute(String path,
Node namespaceNode,
URI type,
EvaluationCtx context,
String xpathVersion)
Tries to find attribute values based on the given selector data.
|
EvaluationResult |
CurrentEnvModule.findAttribute(URI attributeType,
URI attributeId,
URI issuer,
URI subjectCategory,
EvaluationCtx context,
int designatorType)
Used to get the current time, date, or dateTime.
|
PolicyFinderResult |
FilePolicyModule.findPolicy(EvaluationCtx context)
Finds a policy based on a request's context.
|
Modifier and Type | Method and Description |
---|---|
PolicyFinderResult |
BasicPolicyFinderModule.findPolicy(EvaluationCtx context)
Finds a policy based on a request's context.
|
PolicyFinderResult |
StaticPolicyFinderModule.findPolicy(EvaluationCtx context)
Finds a policy based on a request's context.
|
PolicyFinderResult |
FilePolicyModule.findPolicy(EvaluationCtx context)
Finds a policy based on a request's context.
|
AbstractPolicy |
PolicyCollection.getPolicy(EvaluationCtx context)
Attempts to retrieve a policy based on the given context.
|
Copyright © 2023 JBoss by Red Hat. All rights reserved.