|
|||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.globus.ogsa.impl.security.SecurityManager
Common security API exposed to the service developers.
Constructor Summary | |
SecurityManager()
|
Method Summary | |
void |
addAuthorizedUser(ServiceProperties props,
org.ietf.jgss.GSSCredential cred)
Internal API - subject to change: Adds the identity that the credential represents as an authorized user to access the service. |
void |
addAuthorizedUser(ServiceProperties props,
java.lang.String userId)
Internal API - subject to change: Adds the specified user identity as an authorized user to access the service. |
java.lang.String |
getCaller()
Returns the identity of the current caller. |
java.security.Principal |
getCallerPrincipal()
Returns the identity of the current caller. |
static SecurityManager |
getManager()
Returns an instance of the security manager. |
javax.security.auth.Subject |
getServiceSubject(ServiceProperties props)
Returns service subject. |
javax.security.auth.Subject |
getSubject(ServiceProperties props)
Returns service subject if set. |
javax.security.auth.Subject |
getSystemSubject()
Returns the system subject (containing the container credentials). |
javax.security.auth.Subject |
setServiceOwnerFromContext(ServiceProperties props)
Sets the service object with the current invocation subject. |
javax.security.auth.Subject |
setServiceOwnerFromContext(ServiceProperties props,
GridContext context)
Sets the service object with the current invocation subject. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
public SecurityManager()
Method Detail |
public static SecurityManager getManager()
public javax.security.auth.Subject getSystemSubject() throws SecurityException
SecurityException
- if failed to obtain container credentials.public javax.security.auth.Subject getServiceSubject(ServiceProperties props)
props
- the service to get the subject of.
public javax.security.auth.Subject getSubject(ServiceProperties props) throws SecurityException
props
- the service to get the subject of.
SecurityException
- if failed to obtain credentials.public java.lang.String getCaller()
public java.security.Principal getCallerPrincipal()
public javax.security.auth.Subject setServiceOwnerFromContext(ServiceProperties props) throws SecurityException
GlobusPrincipals
in invocation subject
are added as authorized users to access the service.
props
- the service to set the subject on.
SecurityException
- if the operation fails.public javax.security.auth.Subject setServiceOwnerFromContext(ServiceProperties props, GridContext context) throws SecurityException
GlobusPrincipals
in invocation subject
are added as authorized users to access the service.
props
- the service to set the subject on.context
- the grid context.
SecurityException
- if the operation fails.public void addAuthorizedUser(ServiceProperties props, org.ietf.jgss.GSSCredential cred) throws SecurityException
props
- the service to update the authorization
list for.cred
- the credential to get the identity from.
SecurityException
public void addAuthorizedUser(ServiceProperties props, java.lang.String userId) throws SecurityException
props
- the service to update the authorization
list for.userId
- the user identity to add to the
authorization list of the service.
SecurityException
|
|||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |