Uses of Class
org.apache.directory.fortress.core.model.Role
-
Packages that use Role Package Description org.apache.directory.fortress.core This package contains public APIs that are used by Java programs to provide Access Management functionality.org.apache.directory.fortress.core.ant This package use Apache Ant to provide utility to provision fortress entities and policies using XML files.org.apache.directory.fortress.core.cli Click here for Reference Manual which shows how the Command Line Interpreter drives the Fortress APIs from a command prompt.org.apache.directory.fortress.core.impl This package contains the fortress implementation classes for data persistence with the LDAP server.org.apache.directory.fortress.core.model The data entities in this package comprise the fortress data model.org.apache.directory.fortress.core.rest This package uses Commons HTTP to provide HTTP functionality that is reused across several components in this package. -
-
Uses of Role in org.apache.directory.fortress.core
Methods in org.apache.directory.fortress.core that return Role Modifier and Type Method Description Role
AdminMgr. addRole(Role role)
This command creates a new role.Role
ReviewMgr. readRole(Role role)
Method reads Role entity from the role container in directory.Role
AdminMgr. updateRole(Role role)
Method will update a Role entity in the directory.Methods in org.apache.directory.fortress.core that return types with arguments of type Role Modifier and Type Method Description List<Role>
ReviewMgr. findRoles(String searchVal)
Method will return a list of type Role matching all or part of Role name, Role#name}.Methods in org.apache.directory.fortress.core with parameters of type Role Modifier and Type Method Description void
AdminMgr. addAscendant(Role childRole, Role parentRole)
This command creates a new role parentRole, and inserts it in the role hierarchy as an immediate ascendant of the existing role childRole.void
AdminMgr. addDescendant(Role parentRole, Role childRole)
This command creates a new role childRole, and inserts it in the role hierarchy as an immediate descendant of the existing role parentRole.SDSet
AdminMgr. addDsdRoleMember(SDSet dsdSet, Role role)
This command adds a role to a named DSD set of roles.void
AdminMgr. addInheritance(Role parentRole, Role childRole)
This command establishes a new immediate inheritance relationship parentRole <<-- childRole between existing roles parentRole, childRole.Role
AdminMgr. addRole(Role role)
This command creates a new role.SDSet
AdminMgr. addSsdRoleMember(SDSet ssdSet, Role role)
This command adds a role to a named SSD set of roles.List<User>
ReviewMgr. assignedUsers(Role role)
This method returns the data set of all users who are assigned the given role.List<String>
ReviewMgr. assignedUsers(Role role, int limit)
This function returns the set of users assigned to a given role.List<User>
ReviewMgr. assignedUsers(Role role, RoleConstraint roleConstraint)
This method returns the data set of all users who are assigned the given role.List<UserRole>
ReviewMgr. assignedUsers(Role role, RoleConstraint.RCType rcType, String paSetName)
This method returns the user roles for all users who have the given role, with a specified constraint type and permission attribute set name.List<User>
ReviewMgr. authorizedUsers(Role role)
This function returns the set of users authorized to a given role, i.e., the users that are assigned to a role that inherits the given role.boolean
DelAccessMgr. canAssign(Session session, User user, Role role)
This function will determine if the user contains an AdminRole that is authorized assignment control over User-Role Assignment (URA).boolean
DelAccessMgr. canDeassign(Session session, User user, Role role)
This function will determine if the user contains an AdminRole that is authorized revoke control over User-Role Assignment (URA).boolean
DelAccessMgr. canGrant(Session session, Role role, Permission perm)
This function will determine if the user contains an AdminRole that is authorized assignment control over Permission-Role Assignment (PRA).boolean
DelAccessMgr. canRevoke(Session session, Role role, Permission perm)
This function will determine if the user contains an AdminRole that is authorized revoke control over Permission-Role Assignment (PRA).SDSet
AdminMgr. deleteDsdRoleMember(SDSet dsdSet, Role role)
This command removes a role from a named DSD set of roles.void
AdminMgr. deleteInheritance(Role parentRole, Role childRole)
This command deletes an existing immediate inheritance relationship parentRole <<-- childRole.void
AdminMgr. deleteRole(Role role)
This command deletes an existing role from the RBAC database.SDSet
AdminMgr. deleteSsdRoleMember(SDSet ssdSet, Role role)
This command removes a role from a named SSD set of roles.void
AdminMgr. disableRoleConstraint(Role role, RoleConstraint roleConstraint)
This method disables a role to be constrainted by attributes.List<SDSet>
ReviewMgr. dsdRoleSets(Role role)
This function returns the list of all dSD role sets that have a particular Role as member or Role's parent as a member.void
AdminMgr. enableRoleConstraint(Role role, RoleConstraint roleConstraint)
This method enables a role to be constrainted by attributes.void
AdminMgr. grantPermission(Permission perm, Role role)
This command grants a role the permission to perform an operation on an object to a role.boolean
AccessMgr. isUserInRole(User user, Role role, boolean isTrusted)
Combine createSession and a role check into a single method.Role
ReviewMgr. readRole(Role role)
Method reads Role entity from the role container in directory.void
AdminMgr. revokePermission(Permission perm, Role role)
This command revokes the permission to perform an operation on an object from the set of permissions assigned to a role.List<Group>
GroupMgr. roleGroups(Role role)
Search for groups by role name.List<PermissionAttributeSet>
ReviewMgr. rolePermissionAttributeSets(Role role, boolean noInheritance)
This function returns all the permission attribute set (which contain 0 to many permission attributes) for a given role.List<Permission>
ReviewMgr. rolePermissions(Role role)
This function returns the set of all permissions (op, obj), granted to or inherited by a given role.List<Permission>
ReviewMgr. rolePermissions(Role role, boolean noInheritance)
This function returns the set of all permissions (op, obj), granted to or inherited by a given role.List<SDSet>
ReviewMgr. ssdRoleSets(Role role)
This function returns the list of all SSD role sets that have a particular Role as member or Role's parent as a member.Role
AdminMgr. updateRole(Role role)
Method will update a Role entity in the directory. -
Uses of Role in org.apache.directory.fortress.core.ant
Subclasses of Role in org.apache.directory.fortress.core.ant Modifier and Type Class Description class
AdminRoleAnt
Entity is used by custom Apache Ant task for special handling of collections.Methods in org.apache.directory.fortress.core.ant that return types with arguments of type Role Modifier and Type Method Description List<Role>
Addrole. getRoles()
Used byFortressAntTask.addRoles()
to retrieve list of Roles as defined in input xml file.List<Role>
Delrole. getRoles()
Used byFortressAntTask.deleteRoles()
to retrieve list of Roles as defined in input xml file.Methods in org.apache.directory.fortress.core.ant with parameters of type Role Modifier and Type Method Description void
Addrole. addRole(Role role)
This method name, 'addRole', is used for derived xml tag 'role' in the load script.void
Delrole. addRole(Role role)
This method name, 'addRole', is used for derived xml tag 'role' in the load script. -
Uses of Role in org.apache.directory.fortress.core.cli
Methods in org.apache.directory.fortress.core.cli that return Role Modifier and Type Method Description Role
Options. getRole()
-
Uses of Role in org.apache.directory.fortress.core.impl
Methods in org.apache.directory.fortress.core.impl that return Role Modifier and Type Method Description Role
AdminMgrImpl. addRole(Role role)
This command creates a new role.Role
ReviewMgrImpl. readRole(Role role)
Method reads Role entity from the role container in directory.Role
AdminMgrImpl. updateRole(Role role)
Method will update a Role entity in the directory.Methods in org.apache.directory.fortress.core.impl that return types with arguments of type Role Modifier and Type Method Description List<Role>
ReviewMgrImpl. findRoles(String searchVal)
Method will return a list of type Role matching all or part of Role name, Role#name}.Methods in org.apache.directory.fortress.core.impl with parameters of type Role Modifier and Type Method Description void
AdminMgrImpl. addAscendant(Role childRole, Role parentRole)
This command creates a new role parentRole, and inserts it in the role hierarchy as an immediate ascendant of the existing role childRole.void
AdminMgrImpl. addDescendant(Role parentRole, Role childRole)
This command creates a new role childRole, and inserts it in the role hierarchy as an immediate descendant of the existing role parentRole.SDSet
AdminMgrImpl. addDsdRoleMember(SDSet dsdSet, Role role)
This command adds a role to a named DSD set of roles.void
AdminMgrImpl. addInheritance(Role parentRole, Role childRole)
This command establishes a new immediate inheritance relationship parentRole <<-- childRole between existing roles parentRole, childRole.Role
AdminMgrImpl. addRole(Role role)
This command creates a new role.SDSet
AdminMgrImpl. addSsdRoleMember(SDSet ssdSet, Role role)
This command adds a role to a named SSD set of roles.List<User>
ReviewMgrImpl. assignedUsers(Role role)
This method returns the data set of all users who are assigned the given role.List<String>
ReviewMgrImpl. assignedUsers(Role role, int limit)
This function returns the set of users assigned to a given role.List<User>
ReviewMgrImpl. assignedUsers(Role role, RoleConstraint roleConstraint)
This method returns the data set of all users who are assigned the given role.List<UserRole>
ReviewMgrImpl. assignedUsers(Role role, RoleConstraint.RCType rcType, String keyName)
This method returns the user roles for all users who have the given role, with a specified constraint type and permission attribute set name.List<User>
ReviewMgrImpl. authorizedUsers(Role role)
This function returns the set of users authorized to a given role, i.e., the users that are assigned to a role that inherits the given role.boolean
DelAccessMgrImpl. canAssign(Session session, User user, Role role)
This function will determine if the user contains an AdminRole that is authorized assignment control over User-Role Assignment (URA).boolean
DelAccessMgrImpl. canDeassign(Session session, User user, Role role)
This function will determine if the user contains an AdminRole that is authorized revoke control over User-Role Assignment (URA).boolean
DelAccessMgrImpl. canGrant(Session session, Role role, Permission perm)
This function will determine if the user contains an AdminRole that is authorized assignment control over Permission-Role Assignment (PRA).boolean
DelAccessMgrImpl. canRevoke(Session session, Role role, Permission perm)
This function will determine if the user contains an AdminRole that is authorized revoke control over Permission-Role Assignment (PRA).SDSet
AdminMgrImpl. deleteDsdRoleMember(SDSet dsdSet, Role role)
This command removes a role from a named DSD set of roles.void
AdminMgrImpl. deleteInheritance(Role parentRole, Role childRole)
This command deletes an existing immediate inheritance relationship parentRole <<-- childRole.void
AdminMgrImpl. deleteRole(Role role)
This command deletes an existing role from the RBAC database.SDSet
AdminMgrImpl. deleteSsdRoleMember(SDSet ssdSet, Role role)
This command removes a role from a named SSD set of roles.void
AdminMgrImpl. disableRoleConstraint(Role role, RoleConstraint roleConstraint)
This method disables a role to be constrainted by attributes.List<SDSet>
ReviewMgrImpl. dsdRoleSets(Role role)
This function returns the list of all dSD role sets that have a particular Role as member or Role's parent as a member.void
AdminMgrImpl. enableRoleConstraint(Role role, RoleConstraint roleConstraint)
This method enables a role to be constrainted by attributes.void
AdminMgrImpl. grantPermission(Permission perm, Role role)
This command grants a role the permission to perform an operation on an object to a role.boolean
AccessMgrImpl. isUserInRole(User user, Role role, boolean isTrusted)
Combine createSession and a role check into a single method.Role
ReviewMgrImpl. readRole(Role role)
Method reads Role entity from the role container in directory.void
AdminMgrImpl. revokePermission(Permission perm, Role role)
This command revokes the permission to perform an operation on an object from the set of permissions assigned to a role.List<Group>
GroupMgrImpl. roleGroups(Role role)
Search for groups by role name.List<PermissionAttributeSet>
ReviewMgrImpl. rolePermissionAttributeSets(Role role, boolean noInhertiance)
This function returns all the permission attribute set (which contain 0 to many permission attributes) for a given role.List<Permission>
ReviewMgrImpl. rolePermissions(Role role)
This function returns the set of all permissions (op, obj), granted to or inherited by a given role.List<Permission>
ReviewMgrImpl. rolePermissions(Role role, boolean noInheritance)
This function returns the set of all permissions (op, obj), granted to or inherited by a given role.List<SDSet>
ReviewMgrImpl. ssdRoleSets(Role role)
This function returns the list of all SSD role sets that have a particular Role as member or Role's parent as a member.Role
AdminMgrImpl. updateRole(Role role)
Method will update a Role entity in the directory. -
Uses of Role in org.apache.directory.fortress.core.model
Subclasses of Role in org.apache.directory.fortress.core.model Modifier and Type Class Description class
AdminRole
Methods in org.apache.directory.fortress.core.model that return Role Modifier and Type Method Description Role
ObjectFactory. createRole()
Create an instance ofRole
Role
RoleRelationship. getChild()
Role
RoleRelationship. getParent()
Role
RolePerm. getRole()
Methods in org.apache.directory.fortress.core.model that return types with arguments of type Role Modifier and Type Method Description JAXBElement<Role>
ObjectFactory. createFortRole(Role value)
Methods in org.apache.directory.fortress.core.model with parameters of type Role Modifier and Type Method Description JAXBElement<Role>
ObjectFactory. createFortRole(Role value)
void
RoleRelationship. setChild(Role child)
void
RoleRelationship. setParent(Role parent)
void
RolePerm. setRole(Role role)
-
Uses of Role in org.apache.directory.fortress.core.rest
Methods in org.apache.directory.fortress.core.rest that return Role Modifier and Type Method Description Role
AdminMgrRestImpl. addRole(Role role)
This command creates a new role.Role
ReviewMgrRestImpl. readRole(Role role)
Method reads Role entity from the role container in directory.Role
AdminMgrRestImpl. updateRole(Role role)
Method will update a Role entity in the directory.Methods in org.apache.directory.fortress.core.rest that return types with arguments of type Role Modifier and Type Method Description List<Role>
ReviewMgrRestImpl. findRoles(String searchVal)
Method will return a list of type Role matching all or part of Role name, Role#name}.Methods in org.apache.directory.fortress.core.rest with parameters of type Role Modifier and Type Method Description void
AdminMgrRestImpl. addAscendant(Role childRole, Role parentRole)
This command creates a new role parentRole, and inserts it in the role hierarchy as an immediate ascendant of the existing role childRole.void
AdminMgrRestImpl. addDescendant(Role parentRole, Role childRole)
This command creates a new role childRole, and inserts it in the role hierarchy as an immediate descendant of the existing role parentRole.SDSet
AdminMgrRestImpl. addDsdRoleMember(SDSet dsdSet, Role role)
This command adds a role to a named DSD set of roles.void
AdminMgrRestImpl. addInheritance(Role parentRole, Role childRole)
This command establishes a new immediate inheritance relationship parentRole <<-- childRole between existing roles parentRole, childRole.Role
AdminMgrRestImpl. addRole(Role role)
This command creates a new role.SDSet
AdminMgrRestImpl. addSsdRoleMember(SDSet ssdSet, Role role)
This command adds a role to a named SSD set of roles.List<User>
ReviewMgrRestImpl. assignedUsers(Role role)
This method returns the data set of all users who are assigned the given role.List<String>
ReviewMgrRestImpl. assignedUsers(Role role, int limit)
This function returns the set of users assigned to a given role.List<User>
ReviewMgrRestImpl. assignedUsers(Role role, RoleConstraint roleConstraint)
List<UserRole>
ReviewMgrRestImpl. assignedUsers(Role role, RoleConstraint.RCType rcType, String key)
List<User>
ReviewMgrRestImpl. authorizedUsers(Role role)
This function returns the set of users authorized to a given role, i.e., the users that are assigned to a role that inherits the given role.boolean
DelAccessMgrRestImpl. canAssign(Session session, User user, Role role)
This function will determine if the user contains an AdminRole that is authorized assignment control over User-Role Assignment (URA).boolean
DelAccessMgrRestImpl. canDeassign(Session session, User user, Role role)
This function will determine if the user contains an AdminRole that is authorized revoke control over User-Role Assignment (URA).boolean
DelAccessMgrRestImpl. canGrant(Session session, Role role, Permission perm)
This function will determine if the user contains an AdminRole that is authorized assignment control over Permission-Role Assignment (PRA).boolean
DelAccessMgrRestImpl. canRevoke(Session session, Role role, Permission perm)
This function will determine if the user contains an AdminRole that is authorized revoke control over Permission-Role Assignment (PRA).SDSet
AdminMgrRestImpl. deleteDsdRoleMember(SDSet dsdSet, Role role)
This command removes a role from a named DSD set of roles.void
AdminMgrRestImpl. deleteInheritance(Role parentRole, Role childRole)
This command deletes an existing immediate inheritance relationship parentRole <<-- childRole.void
AdminMgrRestImpl. deleteRole(Role role)
This command deletes an existing role from the RBAC database.SDSet
AdminMgrRestImpl. deleteSsdRoleMember(SDSet ssdSet, Role role)
This command removes a role from a named SSD set of roles.void
AdminMgrRestImpl. disableRoleConstraint(Role role, RoleConstraint roleConstraint)
This method disables a role to be constrainted by attributes.List<SDSet>
ReviewMgrRestImpl. dsdRoleSets(Role role)
This function returns the list of all dSD role sets that have a particular Role as member or Role's parent as a member.void
AdminMgrRestImpl. enableRoleConstraint(Role role, RoleConstraint roleConstraint)
This method enables a role to be constrainted by attributes.void
AdminMgrRestImpl. grantPermission(Permission perm, Role role)
This command grants a role the permission to perform an operation on an object to a role.boolean
AccessMgrRestImpl. isUserInRole(User user, Role role, boolean isTrusted)
Combine createSession and a role check into a single method.Role
ReviewMgrRestImpl. readRole(Role role)
Method reads Role entity from the role container in directory.void
AdminMgrRestImpl. revokePermission(Permission perm, Role role)
This command revokes the permission to perform an operation on an object from the set of permissions assigned to a role.List<Group>
GroupMgrRestImpl. roleGroups(Role role)
Search for groups by role name.List<PermissionAttributeSet>
ReviewMgrRestImpl. rolePermissionAttributeSets(Role role, boolean noInhertiance)
This function returns all the permission attribute set (which contain 0 to many permission attributes) for a given role.List<Permission>
ReviewMgrRestImpl. rolePermissions(Role role)
This function returns the set of all permissions (op, obj), granted to or inherited by a given role.List<Permission>
ReviewMgrRestImpl. rolePermissions(Role role, boolean noInheritance)
This function returns the set of all permissions (op, obj), granted to or inherited by a given role.List<SDSet>
ReviewMgrRestImpl. ssdRoleSets(Role role)
This function returns the list of all SSD role sets that have a particular Role as member or Role's parent as a member.Role
AdminMgrRestImpl. updateRole(Role role)
Method will update a Role entity in the directory.
-