Package org.apache.directory.shared.ldap.aci

ACI (Access Control Information) data model adopted from X.501 specification.

See:
          Description

Interface Summary
AntlrACIItemParserTokenTypes  
 

Class Summary
ACIItem An abstract class that provides common properties and operations for ItemFirstACIItem and UserFirstACIItem as specified X.501 specification.
ACIItemParser A reusable wrapper around the antlr generated parser for an ACIItem as defined by X.501.
ACITuple A flatten entity which is converted from an ACIItem.
AntlrACIItemLexer The parser's primary lexer.
AntlrACIItemParser The antlr generated ACIItem parser.
AuthenticationLevel An enumeration that represents the level of authentication.
GrantAndDenial An enumeration that represents grants or denials of MicroOperations.
ItemFirstACIItem An ACIItem which specifies ProtectedItems first and then UserClasses each ProtectedItem will have.
ItemPermission Represents permissions to be applied to all ProtectedItems in ItemFirstACIItem.
MicroOperation An enumeration that represents all micro-operations that makes up LDAP operations.
Permission An abstract base class for ItemPermission and UserPermission.
ProtectedItem Defines the items to which the access controls apply.
ProtectedItem.AllAttributeValues All attribute value information pertaining to specific attributes.
ProtectedItem.AllUserAttributeTypes All user attribute type information associated with the entry, but not values associated with those attributes.
ProtectedItem.AllUserAttributeTypesAndValues All user attribute information associated with the entry, including all values of all user attributes.
ProtectedItem.AttributeType Attribute type information pertaining to specific attributes but not values associated with the type.
ProtectedItem.AttributeValue A specific value of specific attributes.
ProtectedItem.Classes The contents of entries (possibly a family member) which are restricted to those that have object class values that satisfy the predicate defined by Refinement (see 12.3.5), together (in the case of an ancestor or other family member) with the entry contents as a whole of each subordinate family member entry; it does not necessarily include the information in these entries.
ProtectedItem.Entry The entry contents as a whole.
ProtectedItem.MaxImmSub Restricts the maximum number of immediate subordinates of the superior entry to an entry being added or imported.
ProtectedItem.MaxValueCount Restricts the maximum number of attribute values allowed for a specified attribute type.
ProtectedItem.MaxValueCountItem An element of MaxValueCount.
ProtectedItem.RangeOfValues Any attribute value which matches the specified filter, i.e.
ProtectedItem.RestrictedBy Restricts values added to the attribute type to being values that are already present in the same entry as values of the attribute valuesIn.
ProtectedItem.RestrictedByItem An element of RestrictedBy.
ProtectedItem.SelfValue The attribute value assertion corresponding to the current requestor.
UserClass Defines a set of zero or more users the permissions apply to.
UserClass.AllUsers Every directory user (with possible requirements for authenticationLevel).
UserClass.Name The user with the specified distinguished name.
UserClass.Subtree The set of users whose distinguished names fall within the definition of the (unrefined) subtree.
UserClass.ThisEntry The user with the same distinguished name as the entry being accessed, or if the entry is a member of a family, then additionally the user with the distinguished name of the ancestor.
UserClass.UserGroup The set of users who are members of the groupOfUniqueNames entry, identified by the specified distinguished name.
UserFirstACIItem An ACIItem which specifies UserClasses first and then ProtectedItems each UserClass will have.
UserPermission Represents permissions to be applied to all UserClasses in UserFirstACIItem.
 

Package org.apache.directory.shared.ldap.aci Description

ACI (Access Control Information) data model adopted from X.501 specification.



Copyright © 2003-2006 . All Rights Reserved.