| Package | Description |
|---|---|
| com.sun.identity.entitlement |
Defines classes and interfaces to work with entitlements.
|
| com.sun.identity.entitlement.opensso | |
| com.sun.identity.entitlement.xacml3 | |
| org.forgerock.openam.entitlement |
Defines classes to handle entitlements.
|
| org.forgerock.openam.entitlement.conditions | |
| org.forgerock.openam.entitlement.conditions.environment | |
| org.forgerock.openam.entitlement.rest.model.json |
Data model for the entitlements resource.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AndCondition
EntitlementCondition wrapper on a set of
EntitlementCondition(s) to provide
boolean OR logic Membership is of AndCondition is satisfied
if the user is a member of any of the wrapped
EntitlementCondition. |
class |
AttributeLookupCondition
This condition evaluates if a given attribute from subject matches with
the one in resource.
|
class |
EntitlementConditionAdaptor |
class |
LogicalCondition |
class |
NotCondition
This class wrapped on an Entitlement Condition object to provide boolean
NOT.
|
class |
NumericAttributeCondition
Condition for evaluating attribute value of numeric type.
|
class |
OrCondition
EntitlementCondition wrapper on a set of
EntitlementConditions to provide boolean OR logic. |
class |
StringAttributeCondition
Condition for evaluating attribute value of string type.
|
| Modifier and Type | Method and Description |
|---|---|
EntitlementCondition |
Privilege.getCondition()
Returns the eCondition the privilege
|
EntitlementCondition |
ApplicationPrivilege.getCondition()
Returns the condition the privilege
|
EntitlementCondition |
NotCondition.getECondition()
Returns the nested
EntitlementCondition(s). |
| Modifier and Type | Method and Description |
|---|---|
Set<EntitlementCondition> |
LogicalCondition.getEConditions()
Returns the nested
EntitlementCondition(s). |
Set<EntitlementCondition> |
NotCondition.getEConditions()
Returns the nested
EntitlementCondition(s). |
| Modifier and Type | Method and Description |
|---|---|
void |
Privilege.setCondition(EntitlementCondition condition)
Sets condition.
|
void |
ApplicationPrivilege.setCondition(EntitlementCondition condition)
Sets the condition the privilege
|
void |
NotCondition.setECondition(EntitlementCondition eCondition)
Sets the nested
EntitlementCondition(s). |
| Modifier and Type | Method and Description |
|---|---|
void |
LogicalCondition.setEConditions(Set<EntitlementCondition> eConditions)
Sets the nested
EntitlementCondition(s). |
void |
NotCondition.setEConditions(Set<EntitlementCondition> eConditions)
Sets the nested
EntitlementCondition(s). |
| Constructor and Description |
|---|
NotCondition(EntitlementCondition eCondition)
Constructs NotCondition
|
NotCondition(EntitlementCondition eConditions,
String pConditionName)
Constructs
NotCondition. |
| Constructor and Description |
|---|
AndCondition(Set<EntitlementCondition> eConditions)
Constructs AndCondition
|
LogicalCondition(Set<EntitlementCondition> eConditions)
Constructor.
|
LogicalCondition(Set<EntitlementCondition> eConditions,
String pConditionName)
Constructor.
|
OrCondition(Set<EntitlementCondition> eConditions)
Constructor for providing
EntitlementConditions. |
| Modifier and Type | Class and Description |
|---|---|
class |
PolicyCondition
This condition wraps all OpenAM policy conditions.
|
| Modifier and Type | Method and Description |
|---|---|
static EntitlementCondition |
XACMLPrivilegeUtils.getEntitlementConditionFromPolicy(Policy policy)
Constructs EntitlementCondition from the policy.
|
| Modifier and Type | Method and Description |
|---|---|
static Condition |
XACMLPrivilegeUtils.eSubjectConditionToXCondition(EntitlementSubject es,
EntitlementCondition ec) |
| Modifier and Type | Class and Description |
|---|---|
class |
CachingEntitlementCondition
During policy evaluation multiple matching entitlement privileges can contain the same entitlement conditions
and by default OpenAM evaluates all the privileges separately, hence it could evaluate the same conditions multiple
times unnecessarily.
|
| Modifier and Type | Method and Description |
|---|---|
Class<? extends EntitlementCondition> |
EntitlementRegistry.getConditionType(String name)
Returns the condition type associated with the given short name, or null if no such condition is registered.
|
Collection<Class<? extends EntitlementCondition>> |
ConditionTypeRegistry.getEnvironmentConditions()
Gets all the environment conditions in the registry.
|
| Modifier and Type | Method and Description |
|---|---|
String |
EntitlementRegistry.getConditionName(EntitlementCondition condition)
Returns the short name that the given condition is registered under.
|
| Modifier and Type | Method and Description |
|---|---|
void |
EntitlementRegistry.registerConditionType(Class<? extends EntitlementCondition> type)
Registers an entitlement condition type using a short name generated from the type name.
|
void |
EntitlementRegistry.registerConditionType(String name,
Class<? extends EntitlementCondition> type)
Registers an entitlement condition type with the given short name (used in RESTful API calls and in the UI).
|
| Constructor and Description |
|---|
CachingEntitlementCondition(EntitlementCondition backingCondition) |
| Modifier and Type | Method and Description |
|---|---|
Collection<Class<? extends EntitlementCondition>> |
CoreConditionTypeRegistry.getEnvironmentConditions()
Gets all the environment conditions in the registry.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AMIdentityMembershipCondition
An implementation of an
EntitlementCondition that will check whether the
principal has the specified memberships. |
class |
AuthenticateToRealmCondition
An implementation of an
EntitlementCondition that will check whether the
principal has authenticated to the specified realm. |
class |
AuthenticateToServiceCondition
An implementation of an
EntitlementCondition that will check whether the
principal has authenticated to the specified service. |
class |
AuthLevelCondition
An implementation of an
EntitlementCondition that will check whether the
requested auth level is greater than or equal to the auth level set in the condition. |
class |
AuthSchemeCondition
An implementation of an
EntitlementCondition that will check whether the
auth scheme. |
class |
IPv4Condition
An
EntitlementCondition that can be used to enable/disable an authorization policy
based on the IP address and DNS name of the originating client requesting access to a resource. |
class |
IPv6Condition
An
EntitlementCondition that can be used to enable/disable an authorization policy
based on the IP address and DNS name of the originating client requesting access to a resource. |
class |
LDAPFilterCondition |
class |
LEAuthLevelCondition
An implementation of an
EntitlementCondition that will check whether the
requested auth level is less than or equal to the auth level set in the condition. |
class |
OAuth2ScopeCondition
An implementation of an
EntitlementCondition that will check whether the
request OAuth2 scopes are sufficient to gain access. |
class |
ResourceEnvIPCondition
This condition provides the policy framework with the condition decision and advices based on the client's
environment or resource such as IP address, DNS host name, location, etc.
|
class |
ScriptCondition
Scripted condition to enable scripts to be evaluated during policy evaluation.
|
class |
SessionCondition
An implementation of an
EntitlementCondition that defines the maximum user
session time during which a policy applies. |
class |
SessionPropertyCondition
An implementation of an
EntitlementCondition that will check whether the
properties of a session match the configured values. |
class |
SimpleTimeCondition |
| Modifier and Type | Method and Description |
|---|---|
EntitlementCondition |
JsonPolicy.getCondition()
Gets the condition used in this policy.
|
abstract EntitlementCondition |
JsonEntitlementConditionMixin.getECondition() |
| Modifier and Type | Method and Description |
|---|---|
abstract Set<EntitlementCondition> |
JsonEntitlementConditionMixin.getEConditions() |
protected Class<? extends EntitlementCondition> |
EntitlementConditionTypeIdResolver.getType(EntitlementRegistry registry,
String shortName) |
| Modifier and Type | Method and Description |
|---|---|
protected String |
EntitlementConditionTypeIdResolver.getShortName(EntitlementRegistry registry,
EntitlementCondition value) |
void |
JsonPolicy.setCondition(EntitlementCondition condition)
Sets the condition to use for this policy.
|
Copyright © 2010–2025 Open Identity Platform Community. All rights reserved.