Class GroupAccessEvaluator

java.lang.Object
com.netscape.certsrv.evaluators.AccessEvaluator
com.netscape.cms.evaluators.GroupAccessEvaluator

public class GroupAccessEvaluator extends AccessEvaluator
A class represents a group acls evaluator.
  • Field Details

    • logger

      public static org.slf4j.Logger logger
  • Constructor Details

    • GroupAccessEvaluator

      public GroupAccessEvaluator()
      Class constructor.
  • Method Details

    • init

      public void init()
      Description copied from class: AccessEvaluator
      Initialize the evaluator
      Specified by:
      init in class AccessEvaluator
    • getSupportedOperators

      public String[] getSupportedOperators()
      Description copied from class: AccessEvaluator
      Get the supported operators for this evaluator
      Specified by:
      getSupportedOperators in class AccessEvaluator
      Returns:
      Supported operators in string array
    • evaluate

      public boolean evaluate(AuthToken authToken, String type, String op, String value)
      evaluates uid in AuthToken to see if it has membership in group value
      Specified by:
      evaluate in class AccessEvaluator
      Parameters:
      authToken - authentication token
      type - must be "at_group"
      op - must be "="
      value - the group name
      Returns:
      true if AuthToken uid belongs to the group value, false otherwise
    • evaluate

      public boolean evaluate(String type, String op, String value)
      evaluates uid in SessionContext to see if it has membership in group value
      Specified by:
      evaluate in class AccessEvaluator
      Parameters:
      type - must be "group"
      op - must be "="
      value - the group name
      Returns:
      true if SessionContext uid belongs to the group value, false otherwise