|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectcom.ibm.soa.parlayx21.group_mgmt.GroupManagementProxy
public class GroupManagementProxy
Constructor Summary | |
---|---|
GroupManagementProxy()
|
Method Summary | |
---|---|
java.net.URI |
createGroup(java.lang.String name,
java.lang.String domain,
boolean autoName)
Create a new group. |
void |
deleteGroup(java.net.URI group)
Delete a group. |
java.lang.String |
getEndpoint()
|
GroupManagement |
getGroupManagement()
|
AccessPermissions |
queryAccess(java.net.URI group,
java.lang.String requester)
Query the access permissions for a requester on a group. |
java.net.URI[] |
queryGroups(java.lang.String searchDomain,
boolean hierarchy)
Group information can be retrieved from the network, with two types of search, one that retrieves groups only from a single sub-domain and one that returns groups from the sub-domain and its sub-domains. |
void |
setAccess(java.net.URI group,
java.lang.String requester,
boolean adminPermission,
boolean addPermission,
boolean deletePermission,
boolean queryPermission)
Access to manage the elements within a group may be provided independently from the access to manage the group itself. |
void |
setEndpoint(java.lang.String endpoint)
|
void |
useJNDI(boolean useJNDI)
|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public GroupManagementProxy()
Method Detail |
---|
public void useJNDI(boolean useJNDI)
public java.lang.String getEndpoint()
public void setEndpoint(java.lang.String endpoint)
public GroupManagement getGroupManagement()
public java.net.URI createGroup(java.lang.String name, java.lang.String domain, boolean autoName) throws java.rmi.RemoteException, PolicyException, ServiceException
GroupManagement
Create a new group. The requester provides the name for the group and the domain segment in which the group is to be stored. A domain segment is used, since the full domain will consist of the domain segment provided by the requester (for example, 'sales.mycompany') plus a period separator ('.') per RFC 2396 [3] and the domain segment provided by the Service Provider (for example, 'serviceprovider.com').
To avoid name conflicts, since group URIs must be unique, an automatic naming capability is provided which will append a suffix to the name provided if the name is already used within the domain. If the AutoName is set to 'true' and the fully qualified name is not unique, then the name will have a suffix added and the unique name will be provided in the result. For example, if the group 'sales@mycompany.serviceprovider.com' was already defined, a suffix would be added and the result could be 'sales1@mycompany.serviceprovider.com'. If the AutoName is set to 'false', then a PolicyException is thrown if the group URI is not unique.
ServiceException from ES 202 391-1 [2]:
* SVC0001: Service error.
* SVC0002: Invalid input value.
PolicyException from ES 202 391-1 [2]:
* POL0001: Policy error.
* POL0212: Group name too long.
* POL0213: Group already exists.
createGroup
in interface GroupManagement
domain
- xsd:string
Domain segment to be contained within the domain provided by the Service Provider. May be hierarchical using period separators (see RFC 2396 [3])autoName
- xsd:boolean
If false, name must be unique or it will not be created. If true, a suffix will be added to the name if it is not unique
java.rmi.RemoteException
PolicyException
ServiceException
public void deleteGroup(java.net.URI group) throws java.rmi.RemoteException, PolicyException, ServiceException
GroupManagement
Delete a group.
ServiceException from ES 202 391-1 [2]:
* SVC0001: Service error.
* SVC0002: Invalid input value.
PolicyException from ES 202 391-1 [2]:
* POL0001: Policy error.
deleteGroup
in interface GroupManagement
group
- xsd:anyURI
Name of group to delete
java.rmi.RemoteException
PolicyException
ServiceException
public java.net.URI[] queryGroups(java.lang.String searchDomain, boolean hierarchy) throws java.rmi.RemoteException, PolicyException, ServiceException
GroupManagement
Group information can be retrieved from the network, with two types of search, one that retrieves groups only from a single sub-domain and one that returns groups from the sub-domain and its sub-domains.
An example demonstrates the two search types. The following example data is used:
* Dept123@region1.sales.mycompany.serviceprovider.com
* Dept245@region2.sales.mycompany.serviceprovider.com
* Dept348@sales.mycompany.serviceprovider.com
* Dept367@sales.mycompany.serviceprovider.com
* Dept875@finance.mycompany.serviceprovider.com
For a search using the search domain 'sales.mycompany', with the hierarchy set to 'false', the result will contain:
* Dept348@sales.mycompany.serviceprovider.com
* Dept367@sales.mycompany.serviceprovider.com
If the same search domain 'sales.mycompany' is used, but the hierarchy set to 'true', the result will contain:
* Dept123@region1.sales.mycompany.serviceprovider.com
* Dept245@region2.sales.mycompany.serviceprovider.com
* Dept348@sales.mycompany.serviceprovider.com
* Dept367@sales.mycompany.serviceprovider.com
ServiceException from ES 202 391-1 [2]:
* SVC0001: Service error.
* SVC0002: Invalid input value.
PolicyException from ES 202 391-1 [2]:
* POL0001: Policy error.
queryGroups
in interface GroupManagement
searchDomain
- xsd:string
Sub-domain to retrieve groups fromhierarchy
- xsd:boolean
Follow hierarchy under search name
java.rmi.RemoteException
PolicyException
ServiceException
public void setAccess(java.net.URI group, java.lang.String requester, boolean adminPermission, boolean addPermission, boolean deletePermission, boolean queryPermission) throws java.rmi.RemoteException, PolicyException, ServiceException
GroupManagement
Access to manage the elements within a group may be provided independently from the access to manage the group itself. This operation enables the group administrator to specify the requester and the operations the requester is permitted to perform through the Group interface.
The access rights are absolute, if a requester has 'query' access currently and 'add' access is to be added, then the request requires both 'add' and 'query' rights to be set to 'true'. Likewise, any right that is set to 'false' will be revoked.
ServiceException from ES 202 391-1 [2]:
* SVC0001: Service error.
* SVC0002: Invalid input value.
PolicyException from ES 202 391-1 [2]:
* POL0001: Policy error.
setAccess
in interface GroupManagement
group
- xsd:anyURI
Group to grant access torequester
- xsd:string
Requester to grant access toadminPermission
- xsd:Boolean
Permission to manage groupaddPermission
- xsd:Boolean
Permission to add members to the groupdeletePermission
- xsd:Boolean
Permission to delete members from the groupqueryPermission
- xsd:Boolean
Permission to query members in the group
java.rmi.RemoteException
PolicyException
ServiceException
public AccessPermissions queryAccess(java.net.URI group, java.lang.String requester) throws java.rmi.RemoteException, PolicyException, ServiceException
GroupManagement
Query the access permissions for a requester on a group.
ServiceException from ES 202 391-1 [2]:
* SVC0001: Service error.
* SVC0002: Invalid input value.
PolicyException from ES 202 391-1 [2]:
* POL0001: Policy error.
queryAccess
in interface GroupManagement
group
- xsd:anyURI
Group to which permissions are to be grantedrequester
- xsd:string
Requester to retrieve access permissions for
java.rmi.RemoteException
PolicyException
ServiceException
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |