Package org.opencastproject.authorization.xacml

Class XACMLUtils

java.lang.Object

org.opencastproject.authorization.xacml.XACMLUtils

public final class XACMLUtils
extends Object

Utility implementation for dealing with XACML data.

Field Summary

Fields

Modifier and Type	Field	Description
static final String	ACTION_IDENTIFIER	XACML urn for actions
static final String	ISSUER	The policy assertion issuer
protected static javax.xml.bind.JAXBContext	jBossXacmlJaxbContext	The JAXB Context to use for marshaling XACML security policy documents
static final String	RESOURCE_IDENTIFIER	XACML urn for resources
static final String	RULE_COMBINING_ALG	XACML rule for combining policies
static final String	SUBJECT_IDENTIFIER	XACML urn for subject
static final String	SUBJECT_ROLE_IDENTIFIER	XACML urn for roles
static final String	W3C_STRING	W3C String data type
static final String	XACML_STRING_EQUAL	XACML urn for string equality
static final String	XACML_STRING_IS_IN	XACML urn for string equality

Method Summary

Modifier and Type	Method	Description
static String	getXacml(org.opencastproject.mediapackage.MediaPackage mediapackage, org.opencastproject.security.api.AccessControlList accessControlList)	Builds an xml string containing the xacml for the mediapackage.
static org.opencastproject.security.api.AccessControlList	parseXacml(InputStream xacml)	Parses a XACML into an AccessControlList.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

RULE_COMBINING_ALG

public static final String RULE_COMBINING_ALG

XACML rule for combining policies

See Also:

• Constant Field Values

ACTION_IDENTIFIER

public static final String ACTION_IDENTIFIER

XACML urn for actions

See Also:

• Constant Field Values

RESOURCE_IDENTIFIER

public static final String RESOURCE_IDENTIFIER

XACML urn for resources

See Also:

• Constant Field Values

SUBJECT_IDENTIFIER

public static final String SUBJECT_IDENTIFIER

XACML urn for subject

See Also:

• Constant Field Values

SUBJECT_ROLE_IDENTIFIER

public static final String SUBJECT_ROLE_IDENTIFIER

XACML urn for roles

See Also:

• Constant Field Values

XACML_STRING_EQUAL

public static final String XACML_STRING_EQUAL

XACML urn for string equality

See Also:

• Constant Field Values

XACML_STRING_IS_IN

public static final String XACML_STRING_IS_IN

XACML urn for string equality

See Also:

• Constant Field Values

W3C_STRING

public static final String W3C_STRING

W3C String data type

See Also:

• Constant Field Values

ISSUER

public static final String ISSUER

The policy assertion issuer

See Also:

• Constant Field Values

jBossXacmlJaxbContext

protected static javax.xml.bind.JAXBContext jBossXacmlJaxbContext

The JAXB Context to use for marshaling XACML security policy documents

Method Details

parseXacml

public static org.opencastproject.security.api.AccessControlList parseXacml(InputStream xacml)
                                                                     throws XACMLParsingException

Parses a XACML into an AccessControlList.

Only rules which follow the structure of those created by getXacml(MediaPackage, AccessControlList) may be successfully parsed. All other rules are ignored.

Parameters:

xacml - the XACML to parse

Returns:

the ACL, never null

Throws:

XACMLParsingException - if parsing fails

getXacml

public static String getXacml(org.opencastproject.mediapackage.MediaPackage mediapackage,
 org.opencastproject.security.api.AccessControlList accessControlList)
                       throws javax.xml.bind.JAXBException

Builds an xml string containing the xacml for the mediapackage.

Parameters:

mediapackage - the mediapackage

accessControlList - the tuples of roles to actions

Returns:

Throws:

javax.xml.bind.JAXBException