public class AuthZ extends FortEntity implements Serializable
The auditCompare Structural object class is used by the slapo-accesslog overlay to store record of fortress authorization events.
These events can later be pulled as audit trail using ldap protocol. The data pertaining to authZ events are stored in this entity record.
------------------------------------------ objectclass ( 1.3.6.1.4.1.4203.666.11.5.2.7 NAME 'auditCompare' DESC 'Compare operation' SUP auditObject STRUCTURAL MUST reqAssertion ) ------------------------------------------For the Compare operation the reqAssertion attribute carries the Attribute Value Assertion used in the compare request
Note this class uses descriptions pulled from man pages on slapo-accesslog.
adminSession, contextId, modCode, modId
Constructor and Description |
---|
AuthZ() |
Modifier and Type | Method and Description |
---|---|
String |
getCreateTimestamp()
Get the attribute that maps to 'reqStart' which provides the start time of the operation which is also the rDn for the node.
|
String |
getCreatorsName()
Return the user dn containing the identity of log user who added the audit record.
|
String |
getEntryCSN()
Return the Change Sequence Number (CSN) containing sequence number that is used for OpenLDAP synch replication functionality.
|
String |
getEntryDN()
Get the entry dn for bind object stored in directory.
|
String |
getEntryUUID()
Get the attribute that contains the Universally Unique ID (UUID) of the corresponding 'auditSearch' record.
|
String |
getHasSubordinates()
Get the attribute that corresponds to the boolean value hasSubordinates.
|
String |
getModifiersName()
Return the user dn containing the identity of log user who last modified the audit record.
|
String |
getModifyTimestamp()
Get the attribute that maps to 'modifyTimestamp' which provides the last time audit record was changed.
|
String |
getObjectClass()
Get the object class name of the audit record.
|
String |
getReqAssertion()
Get the Compare operation the reqAssertion attribute carries the Attribute Value Assertion used in the compare request.
|
String |
getReqAttr()
The reqAttr attribute lists the requested attributes if specific attributes were requested.
|
String |
getReqAttrsOnly()
The reqAttrsOnly attribute is a Boolean value showing TRUE if only attribute names
were requested, or FALSE if attributes and their values were requested.
|
String |
getReqAuthzID()
The reqAuthzID attribute is the distinguishedName of the user that
performed the operation.
|
String |
getReqControls()
The reqControls and reqRespControls attributes carry any controls sent
by the client on the request and returned by the server in the
response, respectively.
|
String |
getReqDerefAliases()
The reqDerefAliases attribute is on of never, finding, searching, or always, denoting how aliases
will be processed during the search.
|
String |
getReqDN()
The reqDN attribute is the distinguishedName of the target of the
operation.
|
String |
getReqEnd()
reqEnd provide the end time of the operation.
|
String |
getReqEntries()
The reqEntries attribute is the integer count of how many entries were returned by this search request.
|
String |
getReqFilter()
The reqFilter attribute carries the filter used in the search request.
|
String |
getReqResult()
The reqResult attribute is the numeric LDAP result code of the
operation, indicating either success or a particular LDAP error code.
|
String |
getReqScope()
The reqScope attribute contains the scope of the original search request, using
the values specified for the LDAP URL format.
|
String |
getReqSession()
The reqSession attribute is an implementation-specific identifier that
is common to all the operations associated with the same LDAP session.
|
String |
getReqSizeLimit()
The reqSizeLimit attribute indicate what limits were requested on the search operation.
|
String |
getReqStart()
reqStart provide the start of the operation, They use generalizedTime syntax.
|
String |
getReqTimeLimit()
The reqTimeLimit attribute indicate what limits were requested on the search operation.
|
String |
getReqType()
The reqType attribute is a simple string containing the type of
operation being logged, e.g.
|
long |
getSequenceId()
Sequence id is used internal to Fortress.
|
String |
getStructuralObjectClass()
Returns the name of the structural object class that is used to log the event.
|
String |
getSubschemaSubentry()
Return the subschemaSubentry attribute from the audit entry.
|
void |
setCreateTimestamp(String createTimestamp)
Set the attribute that maps to 'reqStart' which provides the start time of the operation which is also the rDn for the node.
|
void |
setCreatorsName(String creatorsName)
Set the user dn containing the identity of log user who added the audit record.
|
void |
setEntryCSN(String entryCSN)
Set the Change Sequence Number (CSN) containing sequence number that is used for OpenLDAP synch replication functionality.
|
void |
setEntryDN(String entryDN)
Set the entry dn for bind object stored in directory.
|
void |
setEntryUUID(String entryUUID)
Set the attribute that contains the Universally Unique ID (UUID) of the corresponding 'auditSearch' record.
|
void |
setHasSubordinates(String hasSubordinates)
Set the attribute that corresponds to the boolean value hasSubordinates.
|
void |
setModifiersName(String modifiersName)
Set the user dn containing the identity of log user who modified the audit record.
|
void |
setModifyTimestamp(String modifyTimestamp)
Set the attribute that maps to 'modifyTimestamp' which provides the last time audit record was changed.
|
void |
setObjectClass(String objectClass)
Set the object class name of the audit record.
|
void |
setReqAssertion(String reqAssertion)
Set the Compare operation the reqAssertion attribute carries the Attribute Value Assertion used in the compare request.
|
void |
setReqAttr(String reqAttr)
The reqAttr attribute lists the requested attributes if specific attributes were requested.
|
void |
setReqAttrsOnly(String reqAttrsOnly)
The reqAttrsOnly attribute is a Boolean value showing TRUE if only attribute names
were requested, or FALSE if attributes and their values were requested.
|
void |
setReqAuthzID(String reqAuthzID)
The reqAuthzID attribute is the distinguishedName of the user that
performed the operation.
|
void |
setReqControls(String reqControls)
The reqControls and reqRespControls attributes carry any controls sent
by the client on the request and returned by the server in the
response, respectively.
|
void |
setReqDerefAliases(String reqDerefAliases)
The reqDerefAliases attribute is on of never, finding, searching, or always, denoting how aliases
will be processed during the search.
|
void |
setReqDN(String reqDN)
The reqDN attribute is the distinguishedName of the target of the
operation.
|
void |
setReqEnd(String reqEnd)
reqEnd provide the end time of the operation.
|
void |
setReqEntries(String reqEntries)
The reqEntries attribute is the integer count of how many entries were returned by this search request.
|
void |
setReqFilter(String reqFilter)
The reqFilter attribute carries the filter used in the search request.
|
void |
setReqResult(String reqResult)
The reqResult attribute is the numeric LDAP result code of the
operation, indicating either success or a particular LDAP error code.
|
void |
setReqScope(String reqScope)
The reqScope attribute contains the scope of the original search request, using
the values specified for the LDAP URL format.
|
void |
setReqSession(String reqSession)
The reqSession attribute is an implementation-specific identifier that
is common to all the operations associated with the same LDAP session.
|
void |
setReqSizeLimit(String reqSizeLimit)
The reqSizeLimit attribute indicate what limits were requested on the search operation.
|
void |
setReqStart(String reqStart)
reqStart provide the start of the operation, They use generalizedTime syntax.
|
void |
setReqTimeLimit(String reqTimeLimit)
The reqTimeLimit attribute indicate what limits were requested on the search operation.
|
void |
setReqType(String reqType)
The reqType attribute is a simple string containing the type of
operation being logged, e.g.
|
void |
setSequenceId(long sequenceId)
Sequence id is used internal to Fortress
|
void |
setStructuralObjectClass(String structuralObjectClass)
Returns the name of the structural object class that is used to log the event.
|
void |
setSubschemaSubentry(String subschemaSubentry)
Set the subschemaSubentry attribute from the audit entry.
|
getAdminSession, getContextId, getModCode, getModId, setAdminSession, setContextId, setModCode
public String getCreateTimestamp()
public void setCreateTimestamp(String createTimestamp)
createTimestamp
- attribute that maps to 'reqStart' in 'auditSearch' object class.public String getCreatorsName()
org.apache.directory.fortress.core.ldap.LdapDataProvider#LDAP_LOG_POOL_UID
contains the audit log system user id.public void setCreatorsName(String creatorsName)
org.apache.directory.fortress.core.ldap.LdapDataProvider#LDAP_LOG_POOL_UID
contains the audit log system user id.creatorsName
- maps to 'creatorsName' attribute on 'auditSearch' object class.public String getEntryCSN()
public void setEntryCSN(String entryCSN)
entryCSN
- maps to 'entryCSN' attribute on 'auditSearch' object class.public String getEntryDN()
public void setEntryDN(String entryDN)
entryDN
- attribute that maps to 'entryDN' on 'auditSearch' object class.public String getEntryUUID()
public void setEntryUUID(String entryUUID)
entryUUID
- that maps to 'entryUUID' attribute on 'auditSearch' object class.public String getHasSubordinates()
public void setHasSubordinates(String hasSubordinates)
hasSubordinates
- maps to same name on 'auditSearch' object class.public String getModifiersName()
org.apache.directory.fortress.core.ldap.LdapDataProvider#LDAP_LOG_POOL_UID
contains the audit log system user id.public void setModifiersName(String modifiersName)
org.apache.directory.fortress.core.ldap.LdapDataProvider#LDAP_LOG_POOL_UID
contains the audit log system user id.modifiersName
- maps to 'modifiersName' attribute on 'auditSearch' object class.public String getModifyTimestamp()
public void setModifyTimestamp(String modifyTimestamp)
modifyTimestamp
- attribute that maps to same name in 'auditSearch' object class.public String getObjectClass()
public void setObjectClass(String objectClass)
objectClass
- value that maps to same name on 'auditSearch' obejct class.public String getReqAuthzID()
User.userId
public void setReqAuthzID(String reqAuthzID)
User.userId
public String getReqControls()
public void setReqControls(String reqControls)
reqControls
- maps to same name attribute on 'auditSearch' object class.public String getReqDN()
public void setReqDN(String reqDN)
reqDN
- maps to 'reqDN' attribute on 'auditSearch' object class.public String getReqEnd()
public void setReqEnd(String reqEnd)
reqEnd
- value that maps to same name on 'auditSearch' object class.public String getReqResult()
public void setReqResult(String reqResult)
reqResult
- maps to same name on 'auditSearch' object class.public String getReqSession()
public void setReqSession(String reqSession)
reqSession
- maps to same name on 'auditSearch' object class.public String getReqStart()
public void setReqStart(String reqStart)
reqStart
- maps to same name on 'auditSearch' object class.public String getReqType()
public void setReqType(String reqType)
reqType
- maps to same name on 'auditSearch' object class.public String getReqAssertion()
public void setReqAssertion(String reqAssertion)
reqAssertion
- value maps to 'reqAssertion' attribute contained in the 'auditCompare' object class.public String getStructuralObjectClass()
public void setStructuralObjectClass(String structuralObjectClass)
structuralObjectClass
- maps to same name on 'auditSearch' object class.public String getReqEntries()
public void setReqEntries(String reqEntries)
reqEntries
- maps to same name on 'auditSearch' object classpublic String getReqAttr()
public void setReqAttr(String reqAttr)
reqAttr
- maps to same name on 'auditSearch' object class.public String getReqAttrsOnly()
public void setReqAttrsOnly(String reqAttrsOnly)
reqAttrsOnly
- maps to same name on 'auditSearch' object class.public String getReqFilter()
For Fortress authorization events this will contain the following:
User.userId
UserRole.name
Permission.objName
Permission.opName
public void setReqFilter(String reqFilter)
For Fortress authorization events this will contain the following:
User.userId
UserRole.name
Permission.objName
Permission.opName
reqFilter
- maps to same name on 'auditSearch' object class.public String getReqScope()
public void setReqScope(String reqScope)
reqScope
- maps to same name on 'auditSearch' object class.public String getReqSizeLimit()
public void setReqSizeLimit(String reqSizeLimit)
reqSizeLimit
- maps to same name on 'auditSearch' object class.public String getReqTimeLimit()
public void setReqTimeLimit(String reqTimeLimit)
reqTimeLimit
- maps to same name on 'auditSearch' object class.public String getSubschemaSubentry()
public void setSubschemaSubentry(String subschemaSubentry)
subschemaSubentry
- maps to same name on 'auditSearch' object class.public String getReqDerefAliases()
public void setReqDerefAliases(String reqDerefAliases)
reqDerefAliases
- maps to same name on 'auditSearch' object class.public long getSequenceId()
getSequenceId
in class FortEntity
public void setSequenceId(long sequenceId)
setSequenceId
in class FortEntity
sequenceId
- contains sequence to use.Copyright © 2003-2016, The Apache Software Foundation. All Rights Reserved. Generated 20160718-1621