1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127
/* * @(#)AuthorizeCallback.java 1.11 05/11/17 * * Copyright 2006 Sun Microsystems, Inc. All rights reserved. * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms. */ package javax.security.sasl; import javax.security.auth.callback.Callback; /** * This callback is used by <tt>SaslServer</tt> to determine whether * one entity (identified by an authenticated authentication id) * can act on * behalf of another entity (identified by an authorization id). * * @since 1.5 * * @author Rosanna Lee * @author Rob Weltman */ public class AuthorizeCallback implements Callback, java.io.Serializable { /** * The (authenticated) authentication id to check. * @serial */ private String authenticationID; /** * The authorization id to check. * @serial */ private String authorizationID; /** * The id of the authorized entity. If null, the id of * the authorized entity is authorizationID. * @serial */ private String authorizedID; /** * A flag indicating whether the authentication id is allowed to * act on behalf of the authorization id. * @serial */ private boolean authorized; /** * Constructs an instance of <tt>AuthorizeCallback</tt>. * * @param authnID The (authenticated) authentication id. * @param authzID The authorization id. */ public AuthorizeCallback(String authnID, String authzID) { authenticationID = authnID; authorizationID = authzID; } /** * Returns the authentication id to check. * @return The authentication id to check. */ public String getAuthenticationID() { return authenticationID; } /** * Returns the authorization id to check. * @return The authentication id to check. */ public String getAuthorizationID() { return authorizationID; } /** * Determines whether the authentication id is allowed to * act on behalf of the authorization id. * * @return <tt>true</tt> if authorization is allowed; <tt>false</tt> otherwise * @see #setAuthorized(boolean) * @see #getAuthorizedID() */ public boolean isAuthorized() { return authorized; } /** * Sets whether the authorization is allowed. * @param ok <tt>true</tt> if authorization is allowed; <tt>false</tt> otherwise * @see #isAuthorized * @see #setAuthorizedID(java.lang.String) */ public void setAuthorized(boolean ok) { authorized = ok; } /** * Returns the id of the authorized user. * @return The id of the authorized user. <tt>null</tt> means the * authorization failed. * @see #setAuthorized(boolean) * @see #setAuthorizedID(java.lang.String) */ public String getAuthorizedID() { if (!authorized) { return null; } return (authorizedID == null) ? authorizationID : authorizedID; } /** * Sets the id of the authorized entity. Called by handler only when the id * is different from getAuthorizationID(). For example, the id * might need to be canonicalized for the environment in which it * will be used. * @param id The id of the authorized user. * @see #setAuthorized(boolean) * @see #getAuthorizedID */ public void setAuthorizedID(String id) { authorizedID = id; } private static final long serialVersionUID = -2353344186490470805L; }