Summary: Ctors | Methods | Inherited Methods | [Expand All]

public class

AclImpl

extends OwnerImpl
implements Acl

java.lang.Object
↳	sun.security.acl.OwnerImpl
	↳	sun.security.acl.AclImpl

Class Overview

An Access Control List (ACL) is encapsulated by this class.

Summary

Public Constructors
	AclImpl(Principal owner, String name) Constructor for creating an empty ACL.

Public Methods
synchronized boolean	addEntry(Principal caller, AclEntry entry) Adds an ACL entry to this ACL.
boolean	checkPermission(Principal principal, Permission permission) This method checks whether or not the specified principal has the required permission.
synchronized Enumeration<AclEntry>	entries() returns an enumeration of the entries in this ACL.
String	getName() Returns the name of the ACL.
synchronized Enumeration<Permission>	getPermissions(Principal user) This method returns the set of allowed permissions for the specified principal.
synchronized boolean	removeEntry(Principal caller, AclEntry entry) Removes an ACL entry from this ACL.
void	setName(Principal caller, String name) Sets the name of the ACL.
String	toString() return a stringified version of the ACL.

[Expand]

Inherited Methods

From class sun.security.acl.OwnerImpl

From class java.lang.Object

Object	clone() Creates and returns a copy of this object.
boolean	equals(Object obj) Indicates whether some other object is "equal to" this one.
void	finalize() Called by the garbage collector on an object when garbage collection determines that there are no more references to the object.
final Class<?>	getClass() Returns the runtime class of this `Object`.
int	hashCode() Returns a hash code value for the object.
final void	notify() Wakes up a single thread that is waiting on this object's monitor.
final void	notifyAll() Wakes up all threads that are waiting on this object's monitor.
String	toString() Returns a string representation of the object.
final void	wait() Causes the current thread to wait until another thread invokes the `notify()` method or the `notifyAll()` method for this object.
final void	wait(long timeout, int nanos) Causes the current thread to wait until another thread invokes the `notify()` method or the `notifyAll()` method for this object, or some other thread interrupts the current thread, or a certain amount of real time has elapsed.
final void	wait(long timeout) Causes the current thread to wait until either another thread invokes the `notify()` method or the `notifyAll()` method for this object, or a specified amount of time has elapsed.

From interface java.security.acl.Acl

abstract boolean	addEntry(Principal caller, AclEntry entry) Adds an ACL entry to this ACL.
abstract boolean	checkPermission(Principal principal, Permission permission) Checks whether or not the specified principal has the specified permission.
abstract Enumeration<AclEntry>	entries() Returns an enumeration of the entries in this ACL.
abstract String	getName() Returns the name of this ACL.
abstract Enumeration<Permission>	getPermissions(Principal user) Returns an enumeration for the set of allowed permissions for the specified principal (representing an entity such as an individual or a group).
abstract boolean	removeEntry(Principal caller, AclEntry entry) Removes an ACL entry from this ACL.
abstract void	setName(Principal caller, String name) Sets the name of this ACL.
abstract String	toString() Returns a string representation of the ACL contents.

From interface java.security.acl.Owner

Public Constructors

public AclImpl (Principal owner, String name)

Constructor for creating an empty ACL.

Public Methods

public synchronized boolean addEntry (Principal caller, AclEntry entry)

Adds an ACL entry to this ACL. An entry associates a group or a principal with a set of permissions. Each user or group can have one positive ACL entry and one negative ACL entry. If there is one of the type (negative or positive) already in the table, a false value is returned. The caller principal must be a part of the owners list of the ACL in order to invoke this method.

Parameters

caller	the principal who is invoking this method.
entry	the ACL entry that must be added to the ACL.

Returns

true on success, false if the entry is already present.

Throws

NotOwnerException	if the caller principal is not on the owners list of the Acl.

public boolean checkPermission (Principal principal, Permission permission)

This method checks whether or not the specified principal has the required permission. If permission is denied permission false is returned, a true value is returned otherwise. This method does not authenticate the principal. It presumes that the principal is a valid authenticated principal.

Parameters

principal	the name of the authenticated principal
permission	the permission that the principal must have.

Returns

true of the principal has the permission desired, false otherwise.

public synchronized Enumeration<AclEntry> entries ()

returns an enumeration of the entries in this ACL.

Returns

an enumeration of the entries in this ACL.

public String getName ()

Returns the name of the ACL.

Returns

the name of the ACL.

public synchronized Enumeration<Permission> getPermissions (Principal user)

This method returns the set of allowed permissions for the specified principal. This set of allowed permissions is calculated as follows: If there is no entry for a group or a principal an empty permission set is assumed. The group positive permission set is the union of all the positive permissions of each group that the individual belongs to. The group negative permission set is the union of all the negative permissions of each group that the individual belongs to. If there is a specific permission that occurs in both the postive permission set and the negative permission set, it is removed from both. The group positive and negatoive permission sets are calculated. The individial positive permission set and the individual negative permission set is then calculated. Again abscence of an entry means the empty set. The set of permissions granted to the principal is then calculated using the simple rule: Individual permissions always override the Group permissions. Specifically, individual negative permission set (specific denial of permissions) overrides the group positive permission set. And the individual positive permission set override the group negative permission set.

Parameters

user	the principal for which the ACL entry is returned.

Returns

The resulting permission set that the principal is allowed.

public synchronized boolean removeEntry (Principal caller, AclEntry entry)

Removes an ACL entry from this ACL. The caller principal must be a part of the owners list of the ACL in order to invoke this method.

Parameters

caller	the principal who is invoking this method.
entry	the ACL entry that must be removed from the ACL.

Returns

true on success, false if the entry is not part of the ACL.

Throws

NotOwnerException	if the caller principal is not the owners list of the Acl.

public void setName (Principal caller, String name)

Sets the name of the ACL.

Parameters

caller	the principal who is invoking this method.
name	the name of the ACL.

Throws

NotOwnerException	if the caller principal is not on the owners list of the Acl.

public String toString ()

return a stringified version of the ACL.

Returns

a string representation of the object.

Classes

AclImpl

Class Overview

Summary

Public Constructors

public AclImpl (Principal owner, String name)

Public Methods

public synchronized boolean addEntry (Principal caller, AclEntry entry)

Parameters

Returns

Throws

public boolean checkPermission (Principal principal, Permission permission)

Parameters

Returns

public synchronized Enumeration<AclEntry> entries ()

Returns

public String getName ()

Returns

public synchronized Enumeration<Permission> getPermissions (Principal user)

Parameters

Returns

public synchronized boolean removeEntry (Principal caller, AclEntry entry)

Parameters

Returns

Throws

public void setName (Principal caller, String name)

Parameters

Throws

public String toString ()

Returns