Package org.apache.directory.fortress.core.impl
This package contains the fortress implementation classes for data persistence with the LDAP server. This package contain the classes that are the three layers of processing of fortress: (1) Manager layer - e.g. AdminMgrImpl, AccessMgrImpl, ReviewMgrImpl (2) Process layer - e.g. UserP, RoleP, PermP (3) DAO layer - e.g. UserDAO, RoleDAO, PermDAO
- This package provides apis that adhere to standards like RBAC
- This package provides apis that adhere to ARBAC02 model to provide delegated administration capabilities.
- This package provides apis to interrogate OpenLDAP's slapd access log to obtain fortress audit trail and historical events.
- This package provides CRUD apis for storing config data on the ldap server.
- This package contains apis to perform create and teardown the ldap group node.
- This package uses JGraphT to provide hierarchical functionality that is reused within several other packages in the fortress system.
The org.apache.directory.fortress.core.impl package data entities may be manipulated by outside
programs but the apis contained within this package are for internal use only.
The entities include User
,Role
, PermObj
, Permission
, and more.
See the corresponding javadoc contained with this package for more info.
Fortress Manager APIs implemented in this package
- AccessMgrImpl - This implements using LDAP the runtime access control operations on objects that are provisioned RBAC entities that reside in LDAP directory.
- AdminMgrImpl - This implements using LDAP the administrative functions to provision Fortress RBAC entities into the LDAP directory.
- ReviewMgrImpl - This implements using LDAP the administrative review functions on already provisioned Fortress RBAC entities that reside in LDAP directory.
- DelegatedAccessMgrImpl - This implements using LDAP the APIs for performing runtime delegated access control operations on objects that are provisioned Fortress ARBAC02 entities that reside in LDAP directory.
- DelegatedAdminMgrImpl - This implements using LDAP the ARBAC02 DelegatedAdminMgr interface for performing policy administration of Fortress ARBAC entities that reside in LDAP directory.
- DelegatedReviewMgrImpl - This implements using LDAP the ARBAC02 DelegatedReviewMgr interface for performing policy interrogation of provisioned Fortress ARBAC02 entities that reside in LDAP directory.
- PwPolicyMgrImpl - Performs CRUD on password policies stored in directory.
- AuditMgrImpl - Interrogates Fortress audit data stored in OpenLDAP.
- ConfigMgrImpl - CRUD for Fortress config parameters.
- GroupMgrImpl - CRUD for LDAP group objects.
-
Interface Summary Interface Description PwPolicyControl Interface is used to allow pluggable password policy interrogation. -
Class Summary Class Description AccelMgrImpl Implementation class that performs runtime access control operations on data objects of type Fortress entities This class performs runtime access control operations on objects that are provisioned RBAC entities that reside in LDAP directory.AccessMgrImpl Implementation class that performs runtime access control operations on data objects of type Fortress entities This class performs runtime access control operations on objects that are provisioned RBAC entities that reside in LDAP directory.AdminMgrImpl This class performs administrative functions to provision Fortress RBAC entities into the LDAP directory.AuditMgrImpl This object performs searches across OpenLDAP's slapd access log.ConfigMgrImpl This Manager impl supplies CRUD methods used to manage properties stored within the ldap directory.DelAccessMgrImpl This class implements the ARBAC02 DelAccessMgr interface for performing runtime delegated access control operations on objects that are provisioned Fortress ARBAC entities that reside in LDAP directory.DelAdminMgrImpl This class implements the ARBAC02 DelAdminMgr interface for performing policy administration of Fortress ARBAC entities that reside in LDAP directory.DelReviewMgrImpl This class implements the ARBAC02 DelReviewMgr interface for performing policy interrogation of provisioned Fortress ARBAC entities that reside in LDAP directory.DSDChecker This class performs Dynamic Separation of Duty checking on a collection of roles targeted for activation within a particular user's session.GlobalPwMsgIds This class contains constants that contain status for Fortress password policy checking.GroupMgrImpl This Manager impl supplies CRUD methods used to manage groups stored within the ldap directory.Manageable Abstract class allows outside clients to manage security and multi-tenant concerns within the Fortress runtime.OrganizationalUnitP Process module for the container node used for grouping related nodes within Fortress directory structure.PropertyMgrImpl PwPolicyMgrImpl This class is used to perform administrative and review functions on the PWPOLICIES and USERS data sets.ReviewMgrImpl This class performs administrative review functions on already provisioned Fortress RBAC entities that reside in LDAP directory.SuffixP Process module for the suffix or root node of Fortress directory structure.