| Package | Description |
|---|---|
| com.sun.identity.entitlement.opensso | |
| com.sun.identity.policy |
Provides classes for policy administration and evaluation.
|
| com.sun.identity.policy.client |
Provides classes necessary for a remote client to evaluate policy decisions.
|
| com.sun.identity.policy.interfaces |
Deprecated interfaces for writing custom Policy plugins for Conditions,
Subjects, Referrals, ResponseProviders and Resources.
|
| com.sun.identity.policy.plugins | |
| com.sun.identity.policy.remote |
Classes to handle policies remotely.
|
| com.sun.identity.policy.util | |
| com.sun.identity.setup | |
| org.forgerock.openam.network.ipv4 | |
| org.forgerock.openam.network.ipv6 |
| Modifier and Type | Method and Description |
|---|---|
static Set<IPrivilege> |
PrivilegeUtils.policyObjectToPrivileges(Object policy) |
static Set<IPrivilege> |
PrivilegeUtils.policyToPrivileges(Object policyObject)
Maps an OpenAM Policy to entitlement Privilege
|
static void |
PrivilegeUtils.policyToPrivileges(Policy policy,
Set<IPrivilege> privileges) |
static Policy |
PrivilegeUtils.privilegeToPolicy(String realm,
Privilege privilege) |
static Object |
PrivilegeUtils.privilegeToPolicyObject(String realm,
Privilege privilege) |
static Policy |
PrivilegeUtils.referralPrivilegeToPolicy(String realm,
ReferralPrivilege referralPrivilege) |
| Modifier and Type | Class and Description |
|---|---|
class |
InvalidFormatException
Exception thrown if a name of an object such as policy, rule or
referral has invalid format
|
class |
InvalidNameException
Exception thrown if a name of an object such as policy, rule or
referral is invalid
|
class |
LimitExceededException
Exception thrown if any configured limit is exceeded
|
class |
NameAlreadyExistsException
Exception thrown if a name of an object such as policy, rule or
referral already exists (used by another object of the same type)
|
class |
NameNotFoundException
Exception thrown if an object such as policy, rule or
referral for the given name does not exist.
|
class |
NoPermissionException
Exception thrown if a policy operation attempted could not be
done due to insufficient permissions
|
class |
ObjectInUseException
Exception thrown to indicate that an object you are trying to
remove is in use and therefore can not be removed.
|
| Modifier and Type | Method and Description |
|---|---|
void |
PolicyManager.addPolicy(Policy policy)
Deprecated.
Adds a policy to the data store.
|
void |
Policy.addRealmSubject(SSOToken token,
String subjectName,
String realmName,
boolean exclusive)
Deprecated.
Adds a reference in the policy to a Subject defined at the realm.
|
void |
Policy.addRealmSubject(String subjectName,
SubjectTypeManager stm,
boolean exclusive)
Deprecated.
Adds a reference in the policy to a Subject defined at the realm.
|
void |
ResourceResult.addResourceResult(ResourceResult resourceResult,
ResourceName resourceComparator)
Deprecated.
Adds a resource result to the resource result sub tree rooted at
this ResourceResult
|
void |
ResourceResult.addResourceResult(ResourceResult resourceResult,
ServiceType serviceType)
Deprecated.
Adds a resource result to the resource result sub tree rooted at
this ResourceResult
|
void |
SubjectTypeManager.addSubject(String subjectName,
Subject subject)
Deprecated.
Adds a policy subject at realm.
|
static String |
PolicyUtils.advicesToXMLString(Map advices)
Returns XML string representation of a
Map of policy advices |
boolean |
ResourceManager.canCreateNewResource(String ServiceType)
Determines that with the given organization (or, sub-organization,
or container) name, if a new resource can be created or not.
|
static void |
PolicyUtils.createOrReplacePolicies(PolicyManager pm,
InputStream xmlPolicies,
boolean replace)
Creates or replaces policy objects given an input stream of policy XML
which confines to
com/sun/identity/policy/policyAdmin.dtd. |
static void |
PolicyUtils.createPolicies(PolicyManager pm,
InputStream xmlPolicies)
Creates policy objects given an input stream of policy XML which
confines to
com/sun/identity/policy/policyAdmin.dtd. |
static Set |
PolicyConfig.getAdvicesHandleableByAM()
Returns names of policy advices that could be handled by OpenSSO
Enterprise if PEP redirects the user agent to OpenSSO.
|
Condition |
ConditionTypeManager.getCondition(String conditionType)
Deprecated.
Returns an instance of the
Condition
given the condition type name. |
Set |
ConditionTypeManager.getConditionTypeNames()
Deprecated.
Returns a
Set of all valid condition type names defined
by the policy service. |
static ProxyPolicyEvaluatorFactory |
ProxyPolicyEvaluatorFactory.getInstance()
Deprecated.
Gets an instance of ProxyPolicyEvaluatorFactory.
|
static PolicyCache |
PolicyCache.getInstance()
Gets the singleton instance of PolicyCache
|
Set |
PolicyManager.getManagedResourceNames()
Deprecated.
|
Set |
ResourceManager.getManagedResourceNames()
Returns a set of all managed resource names for all the
service types
|
Set |
ResourceManager.getManagedResourceNames(String serviceType)
Returns a set of all managed resource names for the given
service type.
|
Set |
PolicyManager.getPoliciesUsingRealmSubject(String subjectName)
Deprecated.
Gets the set of policies that use the realm subject
|
Policy |
PolicyManager.getPolicy(String policyName)
Deprecated.
Gets the policy object given the name of the policy.
|
static Map |
PolicyConfig.getPolicyConfig(String org)
this method returns the policy configuration for the given organization.
|
PolicyDecision |
PolicyEvaluator.getPolicyDecision(SSOToken token,
String resourceName,
Set actionNames)
Deprecated.
Evaluates privileges of the user to perform the specified actions
on the specified resource.
|
PolicyDecision |
PolicyEvaluator.getPolicyDecision(SSOToken token,
String resourceName,
Set actionNames,
Map envParameters)
Deprecated.
Evaluates privileges of the user to perform the specified actions
on the specified resource.
|
PolicyDecision |
Policy.getPolicyDecision(SSOToken token,
String resourceTypeName,
String resourceName,
Set actionNames,
Map envParameters)
Deprecated.
Gets policy decision
|
PolicyDecision |
ProxyPolicyEvaluator.getPolicyDecisionIgnoreSubjects(String resourceName,
Set actionNames,
Map env)
Deprecated.
Gets policy decision for a resource, skipping subject evaluation.
|
String |
PolicyManager.getPolicyDN(String policyName)
Deprecated.
Gets the LDAP DN (distinguished name) for the named policy
|
Set |
PolicyManager.getPolicyNames()
Deprecated.
Gets a set of names of polices defined in the
organization for which the policy manager was instantiated.
|
Set |
PolicyManager.getPolicyNames(String pattern)
Deprecated.
Gets a set of selected policy names matching the
pattern in the given organization.
|
Set |
ResourceManager.getPolicyNames(String serviceType,
String resource,
boolean includePoliciesForSuperResources)
Returns a set of names of all the policies for the given resource
of the given service.
|
static int |
ServiceTypeManager.getPolicyServiceRevisionNumber()
Returns service revision number of policy service
|
Set |
PolicyEvaluator.getProtectedResourcesIgnoreConditions(SSOToken token,
String rootResource)
Deprecated.
Gets protected resources for a user identified by single sign on token
Conditions defined in the policies are ignored while
computing protected resources.
|
ProxyPolicyEvaluator |
ProxyPolicyEvaluatorFactory.getProxyPolicyEvaluator(SSOToken token,
String serviceType)
Deprecated.
Gets an instance of
ProxyPolicyEvaluator. |
Referral |
ReferralTypeManager.getReferral(String referralType)
Deprecated.
Returns an instance of the
Referral
given the referral type name. |
Set |
ReferralTypeManager.getReferralTypeNames()
Deprecated.
Returns a set of all valid referral type names defined by the policy
service.
|
static Map |
PolicyConfig.getResourceCompareConfig(String service)
Returns the resource comparator configuration for the given
service type
|
Set |
PolicyEvaluator.getResourceNames(SSOToken token,
String resourceName,
boolean followReferral)
Deprecated.
Gets resource names that are exact matches, sub resources or
wild card matches of argument resource name.
|
Set |
PolicyEvaluator.getResourceNames(SSOToken token,
String resourceName,
boolean followReferral,
Set visitedOrgs)
Deprecated.
Gets resource names that are exact matches, sub resources or
wild card matches of argument resource name.
|
ResourceResult |
PolicyEvaluator.getResourceResult(SSOToken token,
String resourceName,
String scope,
Map envParameters)
Deprecated.
Use
getResourceResults() |
Set |
PolicyEvaluator.getResourceResults(SSOToken token,
String resourceName,
String scope,
Map envParameters)
Deprecated.
Gets resource result objects given a resource name.
|
ResponseProvider |
ResponseProviderTypeManager.getResponseProvider(String responseProviderTypeName)
Deprecated.
Returns an instance of the
ResponseProvider
given the response provider type name. |
Set |
ResponseProviderTypeManager.getResponseProviderTypeNames()
Deprecated.
Returns a set of all valid
ResponseProvider type names
defined in the PolicyConfig service. |
Set |
ConditionTypeManager.getSelectedConditionTypeNames()
Deprecated.
Returns a
Set of valid condition type names configured for
the organization. |
Set |
ReferralTypeManager.getSelectedReferralTypeNames()
Deprecated.
Returns a set of valid referral type names configured for the
organization.
|
Set |
ResponseProviderTypeManager.getSelectedResponseProviderTypeNames()
Deprecated.
Returns a set of valid
ResponseProvider type names
configured. |
Set |
SubjectTypeManager.getSelectedSubjectTypeNames()
Deprecated.
Returns a set of valid subject type names configured for the
organization.
|
Subject |
SubjectTypeManager.getSubject(String subjectType)
Deprecated.
Returns an instance of the
Subject given the subject type
name. |
Subject |
SubjectTypeManager.getSubjectByName(String subjectName)
Deprecated.
Returns the Subject object identified by subjectName defined at
the realm
|
Set |
SubjectTypeManager.getSubjectNames()
Deprecated.
Get the set of names of Subject(s) defined at the realm
|
Set |
SubjectTypeManager.getSubjectTypeNames()
Deprecated.
Returns a set of all valid subject type names defined by the policy
service.
|
static Set |
PolicyEvaluator.getUserNSRoleValues(SSOToken token)
Deprecated.
Get the set of role DNs of a user.
|
Set |
ResourceManager.getValidServiceNames()
Returns a set of valid service names that are applicable for
the organization.
|
boolean |
Conditions.isAllowed(SSOToken token,
Map env)
Checks whether the effective result of conditions is an allow or deny.
|
boolean |
PolicyEvaluator.isAllowed(SSOToken token,
String resourceName,
String actionName)
Deprecated.
Evaluates a simple privilege of boolean type.
|
boolean |
PolicyEvaluator.isAllowed(SSOToken token,
String resourceName,
String actionName,
Map envParameters)
Deprecated.
Evaluates simple privileges of boolean type.
|
static boolean |
PolicyUtils.isLocalDS(String hostName)
Checks if the
hostName is the same as
the one used by the OpenAM SDK. |
boolean |
Subjects.isMember(SSOToken token)
Checks if the given user (using
SSOToken) belongs
to any of the subjects contained in this user collection (subjects). |
static ActionDecision |
ActionDecision.parseActionDecision(Node actionDecisionNode)
Deprecated.
Creates an ActionDecisions object given a w3c DOM node
|
static Map |
PolicyUtils.parseAdvicesXML(String advicesXML)
Parses an XML string representation of policy advices and
returns a Map of advices.
|
static Map |
PolicyUtils.parseEnvParameters(Node pNode)
Parses an XML node which represents a collection of
the environment parameters and returns a map which contains
these parameters.
|
static PolicyDecision |
PolicyDecision.parsePolicyDecision(Node policyDecisionNode)
Deprecated.
Gets a PolicyDecision given corresponding XML node
|
static ResourceResult |
ResourceResult.parseResourceResult(Node resourceResultNode)
Deprecated.
Converts an XML representation of resource result to ResourceResult
|
static Set |
PolicyUtils.parseResponseAttributes(Node pNode)
Parses an XML node which represents a collection of
user response attributes and returns a set which contains the
names of these attributes
|
void |
PolicyManager.removePolicy(String policyName)
Deprecated.
Deletes a policy in the organization with the given name.
|
Subject |
SubjectTypeManager.removeSubject(String subjectName)
Deprecated.
Removes the subject with the given name from the realm.
|
Subject |
SubjectTypeManager.removeSubject(String subjectName,
boolean forcedRemove)
Deprecated.
Removes the subject with the given name from the realm.
|
void |
PolicyManager.replacePolicy(Policy policy)
Deprecated.
Replaces a policy object in the data store with the same policy name
|
void |
SubjectTypeManager.replaceSubject(String subjectName,
Subject subject)
Deprecated.
Replaces an existing subject with the same name by the
current one at the realm.
|
String[] |
ResourceManager.splitResourceName(String serviceTypeName,
String resourceName)
Returns the resource prefix (super-resource) and the rest of the
resource name (sub-resource)
|
void |
Policy.store(SSOToken token,
String name)
Deprecated.
Stores the policy object in a persistent data store
under the organization, sub-organization or a container
object, specified as a parameter.
|
| Constructor and Description |
|---|
Conditions(ConditionTypeManager ctm,
Node conditionsNode)
Constructor used by
Policy to obtain
an instance of Conditions from W3C DOM
representation of the object. |
Policy(PolicyManager pm,
Node policyNode)
Deprecated.
Constructs a policy given the Policy Node.
|
PolicyEvaluator(String serviceTypeName)
Deprecated.
Constructor to create a
PolicyEvaluator given the
ServiceType name. |
PolicyEvaluator(String orgName,
String serviceTypeName)
Deprecated.
Constructor to create a
PolicyEvaluator given organization
name and the ServiceType name. |
PolicyEvaluator(String orgName,
String serviceTypeName,
String applicationName)
Deprecated.
Creates a new policy evaluator instance.
|
PolicyManager(SSOToken token)
Deprecated.
Constructor for
PolicyManager for the
top (or root) organization. |
PolicyManager(SSOToken token,
String name)
Deprecated.
Constructor for
PolicyManager for the
specified organization, sub organization or a container object. |
Referrals(PolicyManager pm,
Node referralsNode)
Constructor used by
Policy to obtain
an instance of Referrals from the
XML document |
ResponseProviders(ResponseProviderTypeManager rpm,
Node responseProvidersNode)
Constructor used by
Policy to obtain
an instance of ResponseProviders from the
XML document |
Subjects(PolicyManager pm,
Node usersNode)
Constructor used by
Policy to obtain
an instance of Subjects from the
XML document |
| Modifier and Type | Class and Description |
|---|---|
class |
InvalidAppSSOTokenException
Exception thrown if Application
SSOToken is invalid. |
| Modifier and Type | Method and Description |
|---|---|
Set |
PolicyEvaluator.getAdvicesHandleableByAM(boolean refetchFromServer)
Gets names of policy advices that could be handled by OpenAM
if PEP redirects user agent to OpenAM.
|
String |
PolicyEvaluator.getCompositeAdvice(ActionDecision actionDecision)
Returns XML string representation of advice map contained in the
actionDecision.
|
PolicyDecision |
PolicyEvaluator.getPolicyDecision(SSOToken token,
String resourceName,
Set actionNames)
Evaluates privileges of the user to perform the specified actions
on the specified resource.
|
PolicyDecision |
PolicyEvaluator.getPolicyDecision(SSOToken token,
String resourceName,
Set actionNames,
Map envParameters)
Evaluates privileges of the user to perform the specified actions
on the specified resource.
|
PolicyEvaluator |
PolicyEvaluatorFactory.getPolicyEvaluator(String serviceName)
Returns an instance of
com.sun.identity.policy.client.PolicyEvaluator |
PolicyEvaluator |
PolicyEvaluatorFactory.getPolicyEvaluator(String serviceName,
AppSSOTokenProvider appSSOTokenProvider)
Returns an instance of
com.sun.identity.policy.client.PolicyEvaluator |
boolean |
PolicyEvaluator.isAllowed(SSOToken token,
String resourceName,
String actionName)
Evaluates a simple privilege of boolean type.
|
boolean |
PolicyEvaluator.isAllowed(SSOToken token,
String resourceName,
String actionName,
Map envParameters)
Evaluates simple privileges of boolean type.
|
| Modifier and Type | Method and Description |
|---|---|
ConditionDecision |
Condition.getConditionDecision(SSOToken token,
Map<String,Set<String>> env)
Deprecated.
Gets the decision computed by this condition object, based on the
Map of environment parameters |
String |
ResponseProvider.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
Condition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
PolicyDecision |
Referral.getPolicyDecision(SSOToken token,
String resourceType,
String resourceName,
Set actionNames,
Map envParameters)
Deprecated.
Gets policy results
|
Set |
Referral.getResourceNames(SSOToken token,
String serviceTypeName,
String resourceName)
Deprecated.
Gets resource names that are exact matches, sub resources or
wild card matches of argument resource name.
|
Map |
ResponseProvider.getResponseDecision(SSOToken token,
Map env)
Deprecated.
Gets the response attributes computed by this ResponseProvider object,
based on the
SSOToken and Map of
environment parameters. |
ValidValues |
Referral.getValidValues(SSOToken token)
Deprecated.
Gets the valid values for this referral
|
ValidValues |
Subject.getValidValues(SSOToken token)
Deprecated.
Returns a list of possible values for the
Subject
. |
ValidValues |
Referral.getValidValues(SSOToken token,
String pattern)
Deprecated.
Gets the valid values for this referral
matching a pattern
|
ValidValues |
Subject.getValidValues(SSOToken token,
String pattern)
Deprecated.
Returns a list of possible values for the
Subject
that satisfy the given pattern. |
Set |
ResponseProvider.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set<String> |
Condition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Syntax |
Referral.getValueSyntax(SSOToken token)
Deprecated.
Gets the syntax for the value
|
Syntax |
Subject.getValueSyntax(SSOToken token)
Deprecated.
Returns the syntax of the values the
Subject implementation can have. |
void |
ResponseProvider.initialize(Map configParams)
Deprecated.
Initialize the
ResponseProvider |
void |
Subject.initialize(Map configParams)
Deprecated.
Initialize (or configure) the
Subject
object. |
boolean |
Subject.isMember(SSOToken token)
Deprecated.
Determines if the user belongs to this instance
of the
Subject object. |
void |
ResponseProvider.setProperties(Map properties)
Deprecated.
Sets the properties of the responseProvider plugin.
|
void |
Condition.setProperties(Map<String,Set<String>> properties)
Deprecated.
Sets the properties of the condition.
|
| Modifier and Type | Method and Description |
|---|---|
protected PolicyException |
URLResourceName.constructResourceInvalidException(Object[] args) |
protected PolicyException |
PrefixResourceName.constructResourceInvalidException(Object[] args) |
| Modifier and Type | Method and Description |
|---|---|
String |
SuffixResourceName.canonicalize(String res)
This method is used to canonicalize a suffix resource
It returns the string back as is.
|
ConditionDecision |
AuthRoleCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object.
|
ConditionDecision |
SessionCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
map of environment parameters or the user token.
|
ConditionDecision |
PrivilegeCondition.getConditionDecision(SSOToken token,
Map env)
Returns condition decision.
|
ConditionDecision |
AuthenticateToRealmCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Returns the decision computed by this condition object, based on the
map of environment parameters
|
ConditionDecision |
SessionPropertyCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object.
|
ConditionDecision |
SimpleTimeCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
map of environment parameters
A policy would be evaluated only
if the decision of condition is allow.
|
ConditionDecision |
IPCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
map of environment parameters
|
ConditionDecision |
AuthSchemeCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
map of environment parameters
|
ConditionDecision |
AuthenticatedSharedAgentsCondition.getConditionDecision(SSOToken token,
Map env)
Gets the decision computed by this condition object.
|
ConditionDecision |
AMIdentityMembershipCondition.getConditionDecision(SSOToken token,
Map environment)
Deprecated.
Gets the decision computed by this condition object.
|
ConditionDecision |
UserSelfCheckCondition.getConditionDecision(SSOToken token,
Map env)
Gets the decision computed by this condition object.
|
ConditionDecision |
LDAPFilterCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Returns the decision computed by this condition object.
|
ConditionDecision |
ResourceEnvIPCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Returns the decision computed by
ResourceEnvIPCondition
object. |
ConditionDecision |
LEAuthLevelCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
Map of environment parameters |
ConditionDecision |
AuthenticateToServiceCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Returns the decision computed by this condition object, based on the
map of environment parameters
|
ConditionDecision |
AuthLevelCondition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
map of environment parameters
|
String |
AuthRoleCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
SessionCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
PrivilegeCondition.getDisplayName(String property,
Locale locale)
Returns the display name of a property.
|
String |
AuthenticateToRealmCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Returns the display name for the property name.
|
String |
SessionPropertyCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
IDRepoResponseProvider.getDisplayName(String property,
Locale locale)
Gets the display name for the property name.
|
String |
SimpleTimeCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
IPCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
AuthSchemeCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
AuthenticatedSharedAgentsCondition.getDisplayName(String property,
Locale locale)
Gets the display name for the property name.
|
String |
AMIdentityMembershipCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
UserSelfCheckCondition.getDisplayName(String property,
Locale locale)
Gets the display name for the property name.
|
String |
LDAPFilterCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Returns the display name for the property name.
|
String |
ResourceEnvIPCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Returns the display name for the property name.
|
String |
LEAuthLevelCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
String |
AuthenticateToServiceCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Returns the display name for the property name.
|
String |
AuthLevelCondition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
PolicyDecision |
OrgReferral.getPolicyDecision(SSOToken token,
String resourceType,
String resourceName,
Set actionNames,
Map envParameters)
Gets policy evaluation results
|
Set |
OrgReferral.getResourceNames(SSOToken token,
String serviceTypeName,
String resourceName)
Gets resource names that are exact matches, sub resources or
wild card matches of argument resource name.
|
Map |
IDRepoResponseProvider.getResponseDecision(SSOToken token,
Map env)
Gets the response attributes computed by this ResponseProvider object,
based on the sso token and map of environment parameters
|
ValidValues |
LDAPUsers.getValidEntries(SSOToken token,
String pattern,
String[] attributeNames)
Returns a set of possible values that satisfy the
pattern. |
ValidValues |
WebServicesClients.getValidValues(SSOToken token)
Returns certificate subject DNs in the KeyStore as possible values.
|
ValidValues |
AMIdentitySubject.getValidValues(SSOToken token)
Deprecated.
Returns a list of possible values for the
Subject. |
ValidValues |
Organization.getValidValues(SSOToken token)
Returns a list of possible values for the
Organization
. |
ValidValues |
DSAMERole.getValidValues(SSOToken token)
Returns a list of possible values for the
Subject. |
ValidValues |
LDAPRoles.getValidValues(SSOToken token)
Returns a list of possible values for the
LDAPRoles
. |
ValidValues |
LDAPUsers.getValidValues(SSOToken token)
Returns a list of possible values for the
LDAPUsers
. |
ValidValues |
PeerOrgReferral.getValidValues(SSOToken token)
Gets the valid values for this referral
|
ValidValues |
LDAPGroups.getValidValues(SSOToken token)
Returns a list of possible values for the
LDAPGroups
. |
ValidValues |
SubOrgReferral.getValidValues(SSOToken token)
Gets the valid values for this referral
|
abstract ValidValues |
OrgReferral.getValidValues(SSOToken token)
Gets the valid values for this referral
|
ValidValues |
WebServicesClients.getValidValues(SSOToken token,
String pattern)
Returns certificate subject DNs in the KeyStore as possible values.
|
ValidValues |
AMIdentitySubject.getValidValues(SSOToken token,
String pattern)
Deprecated.
Returns a list of possible values for the
Subject
that matches the pattern. |
ValidValues |
Organization.getValidValues(SSOToken token,
String pattern)
Returns a list of possible values for the
Organization
that satisfy the given pattern. |
ValidValues |
DSAMERole.getValidValues(SSOToken token,
String pattern)
Returns a list of possible values for the
Subject
that matches the pattern. |
ValidValues |
LDAPRoles.getValidValues(SSOToken token,
String pattern)
Returns a list of possible values for the
LDAPRoles
that satisfy the given pattern. |
ValidValues |
LDAPUsers.getValidValues(SSOToken token,
String pattern)
Returns a list of possible values for the
LDAPUsers
that satisfy the given pattern. |
ValidValues |
PeerOrgReferral.getValidValues(SSOToken token,
String pattern)
Gets the valid values for this referral
matching a pattern
|
ValidValues |
LDAPGroups.getValidValues(SSOToken token,
String pattern)
Returns a list of possible values for the
LDAPGroups
that satisfy the given pattern. |
ValidValues |
SubOrgReferral.getValidValues(SSOToken token,
String pattern)
Gets the valid values for this referral
matching a pattern
|
abstract ValidValues |
OrgReferral.getValidValues(SSOToken token,
String pattern)
Gets the valid values for this referral matching a pattern
|
Set |
AuthRoleCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
SessionCondition.getValidValues(String property)
Deprecated.
Gets a set of valid values given the property name.
|
Set |
PrivilegeCondition.getValidValues(String property)
Returns the valid values of a property.
|
Set |
AuthenticateToRealmCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
SessionPropertyCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
IDRepoResponseProvider.getValidValues(String property)
Returns a set of valid values given the property name.
|
Set |
SimpleTimeCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
IPCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
AuthSchemeCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
AuthenticatedSharedAgentsCondition.getValidValues(String property)
Returns a set of valid values given the property name.
|
Set |
AMIdentityMembershipCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
UserSelfCheckCondition.getValidValues(String property)
Returns a set of valid values given the property name.
|
Set |
LDAPFilterCondition.getValidValues(String property)
Deprecated.
Returns the set of valid values given the property name.
|
Set |
ResourceEnvIPCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
LEAuthLevelCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
AuthenticateToServiceCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Set |
AuthLevelCondition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
Syntax |
OrgReferral.getValueSyntax(SSOToken token)
Returns the syntax of the values the
OrgReferral |
void |
AMIdentitySubject.initialize(Map configParams)
Deprecated.
Initialize the AMIdentitySubject object by using the configuration
information passed by the Policy Framework.
|
void |
Organization.initialize(Map configParams)
Initialize the
Organization object by using the
configuration information passed by the Policy Framework. |
void |
IDRepoResponseProvider.initialize(Map configParams)
Initialize the IDRepoResponseProvider object by using the configuration
information passed by the Policy Framework.
|
void |
DSAMERole.initialize(Map configParams)
This method initializes the DSAME Role plugin with the organization
DN, search configuration, ldap server name, in which this plugin
is specified for a
Policy. |
void |
LDAPRoles.initialize(Map configParams)
Initialize the LDAPGroup object by using the configuration
information passed by the Policy Framework.
|
void |
LDAPUsers.initialize(Map configParams)
Initialize the LDAPGroup object by using the configuration
information passed by the Policy Framework.
|
void |
LDAPGroups.initialize(Map configParams)
Initialize the LDAPGroup object by using the configuration
information passed by the Policy Framework.
|
boolean |
WebServicesClients.isMember(SSOToken token)
Determines if the token belongs to the
WebServicesClients object. |
boolean |
AMIdentitySubject.isMember(SSOToken token)
Deprecated.
Determines if the user is a member of this instance of the
Subject object. |
boolean |
Organization.isMember(SSOToken token)
Determines if the user belongs to this instance
of the
Organization object. |
boolean |
DSAMERole.isMember(SSOToken token)
Determines if the user belongs to this instance of the
Subject object. |
boolean |
LDAPRoles.isMember(SSOToken token)
Determines if the user identified by the token,
belongs to this instance of the
LDAPRoles object. |
boolean |
LDAPUsers.isMember(SSOToken token)
Determines if the user belongs to this instance
of the
LDAPUsers object. |
boolean |
LDAPGroups.isMember(SSOToken token)
Determines if the user belongs to this instance
of the
LDAPGroups object. |
void |
AuthRoleCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
SessionCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
PrivilegeCondition.setProperties(Map properties)
Sets the property values to this object.
|
void |
AuthenticateToRealmCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
SessionPropertyCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
IDRepoResponseProvider.setProperties(Map properties)
Sets the properties of the responseProvider plugin.
|
void |
SimpleTimeCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
IPCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
AuthSchemeCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
AuthenticatedSharedAgentsCondition.setProperties(Map properties)
Sets the properties of the condition.
|
void |
AMIdentityMembershipCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
UserSelfCheckCondition.setProperties(Map properties)
Sets the properties of the condition.
|
void |
LDAPFilterCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
ResourceEnvIPCondition.setProperties(Map properties)
Deprecated.
Sets the properties of
ResourceEnvIPCondition. |
void |
LEAuthLevelCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
AuthenticateToServiceCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
AuthLevelCondition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
void |
LDAPFilterCondition.validate()
Deprecated.
|
| Modifier and Type | Class and Description |
|---|---|
class |
PolicyEvaluationException
The class
PolicyEvaluationException is the exception
for the error happening in policy request XML parsing and policy
request evaluation. |
| Modifier and Type | Method and Description |
|---|---|
static List |
PolicyDecisionUtils.doResourceIPEnvAuth(String resourceUrl,
String realm,
Map envParameters)
Performs Resource/IP/Environment based authentication.
|
| Modifier and Type | Method and Description |
|---|---|
void |
ConfigureData.configure()
Configures the product.
|
| Modifier and Type | Method and Description |
|---|---|
ConditionDecision |
IPv4Condition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
map of environment parameters
|
String |
IPv4Condition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
Set |
IPv4Condition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
void |
IPv4Condition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
| Modifier and Type | Method and Description |
|---|---|
ConditionDecision |
IPv6Condition.getConditionDecision(SSOToken token,
Map env)
Deprecated.
Gets the decision computed by this condition object, based on the
map of environment parameters
|
String |
IPv6Condition.getDisplayName(String property,
Locale locale)
Deprecated.
Gets the display name for the property name.
|
Set |
IPv6Condition.getValidValues(String property)
Deprecated.
Returns a set of valid values given the property name.
|
void |
IPv6Condition.setProperties(Map properties)
Deprecated.
Sets the properties of the condition.
|
Copyright © 2010–2025 Open Identity Platform Community. All rights reserved.