org.glite.security.voms.service.trustedadmin
Class VOMSTrustedAdminSoapBindingImpl

java.lang.Object
  extended byorg.glite.security.voms.service.trustedadmin.VOMSTrustedAdminSoapBindingImpl
All Implemented Interfaces:
VOMSTrustedAdmin

public class VOMSTrustedAdminSoapBindingImpl
extends java.lang.Object
implements VOMSTrustedAdmin

Implementation of the TrustedAdmin interface. It basically handles the delegation and then calls VOMSAdminSoapBindingImpl to do the job.

Author:
Akos Frohner, Karoly Lorentey

Field Summary
protected static VOMSAdminSoapBindingImpl admin
           
 
Constructor Summary
VOMSTrustedAdminSoapBindingImpl()
           
 
Method Summary
 void addACLEntry(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String container, ACLEntry aclEntry)
          Adds a new entry to an ACL of a container.
 void addDefaultACLEntry(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname, ACLEntry aclEntry)
          Manipulates the default ACL, which is applied on every group created as a subgroup of this one.
 void addMember(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname, java.lang.String username, java.lang.String userca)
          Adds a new member to the group.
 void assignCapability(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String capability, java.lang.String username, java.lang.String userca)
          Assigns a new capability to the user.
 void assignRole(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname, java.lang.String rolename, java.lang.String username, java.lang.String userca)
          Assigns a new role to the user.
 void createCapability(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String capability)
          Creates a new capability.
 void createGroup(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String parentname, java.lang.String groupname)
          Creates a new group as a subgroup of an existing group.
 void createRole(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String rolename)
          Creates a new role.
 void createUser(java.lang.String delegatedDN, java.lang.String delegatedCA, User user)
          Creates a new user in the VOMS database.
 void deleteCapability(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String capability)
          Deletes a capability.
 void deleteGroup(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname)
          Deletes a group.
 void deleteRole(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String rolename)
          Deletes a role.
 void deleteUser(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String username, java.lang.String userca)
          Removes a user from the VOMS database.
 void dismissCapability(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String capability, java.lang.String username, java.lang.String userca)
          Dismisses a capability of a user.
 void dismissRole(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String parentname, java.lang.String rolename, java.lang.String username, java.lang.String userca)
          Dismisses a role of a user.
 ACLEntry[] getACL(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname)
          Returns the whole ACL associated with a container.
 ACLEntry[] getDefaultACL(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname)
          Manipulates the default ACL, which is applied on every group created as a subgroup of this one.
 java.lang.String[] getGroupPath(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname)
          Returns the absolute "path" down to this group.
 int getMajorVersionNumber()
          Returns the major version number.
 int getMinorVersionNumber()
          Returns the minor version number.
 int getPatchVersionNumber()
          Returns the patch version number.
 User getUser(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String username, java.lang.String userca)
          Returns information about a user in the VOMS database.
 java.lang.String getVOName(java.lang.String delegatedDN, java.lang.String delegatedCA)
          Return the name of this VO.
 java.lang.String[] listCapabilities(java.lang.String delegatedDN, java.lang.String delegatedCA)
          Lists capabilities.
 java.lang.String[] listCapabilities(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String username, java.lang.String userca)
          Lists capabilities of a user.
 java.lang.String[] listCAs(java.lang.String delegatedDN, java.lang.String delegatedCA)
          Lists certificate authorities.
 java.lang.String[] listGroups(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String username, java.lang.String userca)
          Lists groups of a user.
 User[] listMembers(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname)
          Lists members of a group.
 java.lang.String[] listRoles(java.lang.String delegatedDN, java.lang.String delegatedCA)
          Lists roles.
 java.lang.String[] listRoles(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String username, java.lang.String userca)
          Lists roles of a user.
 java.lang.String[] listSubGroups(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname)
          Lists immediate sub-groups of a group.
 User[] listUsersWithCapability(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String capability)
          Lists assigned users of a capability.
 User[] listUsersWithRole(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname, java.lang.String rolename)
          Lists assigned users of a role associated with a group.
 void removeACLEntry(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String container, ACLEntry aclEntry)
          Removes an existing entry from the ACL.
 void removeDefaultACLEntry(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname, ACLEntry aclEntry)
          Manipulates the default ACL, which is applied on every group created as a subgroup of this one.
 void removeMember(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname, java.lang.String username, java.lang.String userca)
          Removes a member of a group.
 void setACL(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String container, ACLEntry[] acl)
          Replaces the existing ACL on this container.
 void setDefaultACL(java.lang.String delegatedDN, java.lang.String delegatedCA, java.lang.String groupname, ACLEntry[] aclEntry)
          Manipulates the default ACL, which is applied on every group created as a subgroup of this one.
 void setUser(java.lang.String delegatedDN, java.lang.String delegatedCA, User user)
          Updates auxiliary information about a user in the VOMS database.
protected static VOMSAdminSoapBindingImpl theAdmin()
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

admin

protected static VOMSAdminSoapBindingImpl admin
Constructor Detail

VOMSTrustedAdminSoapBindingImpl

public VOMSTrustedAdminSoapBindingImpl()
Method Detail

theAdmin

protected static VOMSAdminSoapBindingImpl theAdmin()

getUser

public User getUser(java.lang.String delegatedDN,
                    java.lang.String delegatedCA,
                    java.lang.String username,
                    java.lang.String userca)
             throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Returns information about a user in the VOMS database.

Permission: LIST on the VO group.

Specified by:
getUser in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
username - The name of the user to look up.
userca - The certificate authority of the user.
Returns:
All information about the user that is known to VOMS.
Throws:
VOMSException
See Also:
VOMSAdmin.getUser(java.lang.String, java.lang.String)

setUser

public void setUser(java.lang.String delegatedDN,
                    java.lang.String delegatedCA,
                    User user)
             throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Updates auxiliary information about a user in the VOMS database. The new attributes are passed in the User object.

Permission: ADD on the VO group.

Specified by:
setUser in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
user - The user to update.
Throws:
VOMSException
See Also:
User, VOMSAdmin.setUser(org.glite.security.voms.service.User)

createUser

public void createUser(java.lang.String delegatedDN,
                       java.lang.String delegatedCA,
                       User user)
                throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Creates a new user in the VOMS database.

Permission: ADD on the VO group.

Specified by:
createUser in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
user - The user to be added.
Throws:
VOMSException
See Also:
VOMSAdmin.createUser(org.glite.security.voms.service.User)

deleteUser

public void deleteUser(java.lang.String delegatedDN,
                       java.lang.String delegatedCA,
                       java.lang.String username,
                       java.lang.String userca)
                throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Removes a user from the VOMS database. Deletes all the associated group, role membership information and corresponding ACL entries as well. It is basically a call to removeMember(VO, user).

Permission: REMOVE on the VO group.

Specified by:
deleteUser in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
username - The user's DN.
userca - The user's CA.
Throws:
VOMSException
See Also:
VOMSTrustedAdmin.removeMember(java.lang.String, java.lang.String, java.lang.String, java.lang.String, java.lang.String), VOMSAdmin.deleteUser(java.lang.String, java.lang.String)

createGroup

public void createGroup(java.lang.String delegatedDN,
                        java.lang.String delegatedCA,
                        java.lang.String parentname,
                        java.lang.String groupname)
                 throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Creates a new group as a subgroup of an existing group. Copies the default ACL list of the parent to the new group and adds an extra entry for the administrator with full privileges.

Permission: CREATE on parent group.

Specified by:
createGroup in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
parentname - The parent group's name.
groupname - The group's name.
Throws:
VOMSException
See Also:
VOMSAdmin.createGroup(java.lang.String, java.lang.String)

deleteGroup

public void deleteGroup(java.lang.String delegatedDN,
                        java.lang.String delegatedCA,
                        java.lang.String groupname)
                 throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Deletes a group. The operation deletes the group, all of its sub-groups and associated roles with all the membership information.

Warning: Deleting the VO "group" effectively wipes out the whole database, so use with care!

Permission: DELETE on the group.

Specified by:
deleteGroup in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
Throws:
VOMSException
See Also:
VOMSAdmin.deleteGroup(java.lang.String)

createRole

public void createRole(java.lang.String delegatedDN,
                       java.lang.String delegatedCA,
                       java.lang.String rolename)
                throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Creates a new role. Copies the default ACL list of the VO Group to the new role and adds an extra entry for the administrator with full privileges.

Permission: CREATE on the VO group.

Specified by:
createRole in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
rolename - The role to be added.
Throws:
VOMSException
See Also:
VOMSAdmin.createRole(java.lang.String)

deleteRole

public void deleteRole(java.lang.String delegatedDN,
                       java.lang.String delegatedCA,
                       java.lang.String rolename)
                throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Deletes a role. The role is removed with all the membership information.

Permission: DELETE on the role.

Specified by:
deleteRole in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
rolename - The role to be deleted.
Throws:
VOMSException
See Also:
VOMSAdmin.deleteRole(java.lang.String)

createCapability

public void createCapability(java.lang.String delegatedDN,
                             java.lang.String delegatedCA,
                             java.lang.String capability)
                      throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Creates a new capability. Copies the default ACL list of the VO to the new capability and adds an extra entry for the administrator with full privileges.

Permission: CREATE on the VO group.

Specified by:
createCapability in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
capability - The capability to be created.
Throws:
VOMSException
See Also:
VOMSAdmin.createCapability(java.lang.String)

deleteCapability

public void deleteCapability(java.lang.String delegatedDN,
                             java.lang.String delegatedCA,
                             java.lang.String capability)
                      throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Deletes a capability. Deletes the capability with all the membership information.

Permission: DELETE on the capability.

Specified by:
deleteCapability in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
capability - The capability to be deleted.
Throws:
VOMSException
See Also:
VOMSAdmin.deleteCapability(java.lang.String)

addMember

public void addMember(java.lang.String delegatedDN,
                      java.lang.String delegatedCA,
                      java.lang.String groupname,
                      java.lang.String username,
                      java.lang.String userca)
               throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Adds a new member to the group. The user must be a member of the parent group.

Permission: ADD on the group.

Specified by:
addMember in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
username - The user's DN.
userca - The user's CA.
Throws:
VOMSException
See Also:
VOMSAdmin.addMember(java.lang.String, java.lang.String, java.lang.String)

removeMember

public void removeMember(java.lang.String delegatedDN,
                         java.lang.String delegatedCA,
                         java.lang.String groupname,
                         java.lang.String username,
                         java.lang.String userca)
                  throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Removes a member of a group. Also removes the membership information from the group's sub-groups and associated roles of these groups. If it is the VO group, then it will also delete the user with all its ACL entries.

Permission: REMOVE on the group.

Specified by:
removeMember in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
username - The user's DN.
userca - The user's CA.
Throws:
VOMSException
See Also:
VOMSTrustedAdmin.deleteUser(java.lang.String, java.lang.String, java.lang.String, java.lang.String), VOMSAdmin.removeMember(java.lang.String, java.lang.String, java.lang.String)

assignRole

public void assignRole(java.lang.String delegatedDN,
                       java.lang.String delegatedCA,
                       java.lang.String groupname,
                       java.lang.String rolename,
                       java.lang.String username,
                       java.lang.String userca)
                throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Assigns a new role to the user. The user must be a member of the parent group.

Permission: ADD on the role.

Specified by:
assignRole in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The name of the group associated with this assignment.
rolename - The role's name.
username - The name of the user to add.
userca - The CA of the user to add.
Throws:
VOMSException
See Also:
VOMSAdmin.assignRole(java.lang.String, java.lang.String, java.lang.String, java.lang.String)

dismissRole

public void dismissRole(java.lang.String delegatedDN,
                        java.lang.String delegatedCA,
                        java.lang.String parentname,
                        java.lang.String rolename,
                        java.lang.String username,
                        java.lang.String userca)
                 throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Dismisses a role of a user.

Permission: REMOVE on the role.

Specified by:
dismissRole in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
parentname - The parent group's name.
rolename - The role's name.
username - The user's DN.
userca - The user's CA.
Throws:
VOMSException
See Also:
VOMSAdmin.dismissRole(java.lang.String, java.lang.String, java.lang.String, java.lang.String)

assignCapability

public void assignCapability(java.lang.String delegatedDN,
                             java.lang.String delegatedCA,
                             java.lang.String capability,
                             java.lang.String username,
                             java.lang.String userca)
                      throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Assigns a new capability to the user.

Permission: ADD on the capability.

Specified by:
assignCapability in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
capability - The capability's name.
username - The user's DN.
userca - The user's CA.
Throws:
VOMSException
See Also:
VOMSAdmin.assignCapability(java.lang.String, java.lang.String, java.lang.String)

dismissCapability

public void dismissCapability(java.lang.String delegatedDN,
                              java.lang.String delegatedCA,
                              java.lang.String capability,
                              java.lang.String username,
                              java.lang.String userca)
                       throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Dismisses a capability of a user.

Permission: REMOVE on the capability.

Specified by:
dismissCapability in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
capability - The capability's name.
username - The user's DN.
userca - The user's CA.
Throws:
VOMSException
See Also:
VOMSAdmin.dismissCapability(java.lang.String, java.lang.String, java.lang.String)

listMembers

public User[] listMembers(java.lang.String delegatedDN,
                          java.lang.String delegatedCA,
                          java.lang.String groupname)
                   throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists members of a group.

Permission:LIST on the group.

Specified by:
listMembers in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name (null is the VO group).
Returns:
List of users in this group.
Throws:
VOMSException
See Also:
VOMSAdmin.listMembers(java.lang.String)

listUsersWithRole

public User[] listUsersWithRole(java.lang.String delegatedDN,
                                java.lang.String delegatedCA,
                                java.lang.String groupname,
                                java.lang.String rolename)
                         throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists assigned users of a role associated with a group.

Permission:LIST on the role.

Specified by:
listUsersWithRole in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
rolename - The role's name.
Returns:
List of users for this role.
Throws:
VOMSException
See Also:
VOMSAdmin.listUsersWithRole(java.lang.String, java.lang.String)

listUsersWithCapability

public User[] listUsersWithCapability(java.lang.String delegatedDN,
                                      java.lang.String delegatedCA,
                                      java.lang.String capability)
                               throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists assigned users of a capability.

Permission:LIST on the capability.

Specified by:
listUsersWithCapability in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
capability - The capability's name.
Returns:
List of users with this capability.
Throws:
VOMSException
See Also:
VOMSAdmin.listUsersWithCapability(java.lang.String)

getVOName

public java.lang.String getVOName(java.lang.String delegatedDN,
                                  java.lang.String delegatedCA)
                           throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Return the name of this VO.

Permission:LIST on the VO group.

Specified by:
getVOName in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
Returns:
The name of this VO.
Throws:
VOMSException
See Also:
VOMSAdmin.getVOName()

getGroupPath

public java.lang.String[] getGroupPath(java.lang.String delegatedDN,
                                       java.lang.String delegatedCA,
                                       java.lang.String groupname)
                                throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Returns the absolute "path" down to this group. The first element is the VO group and the last is the group itself. There is at least one element in this path if the group exists: the VO group.

Permission:LIST on parent groups.

Specified by:
getGroupPath in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name (null is the VO group).
Returns:
Path to the group.
Throws:
VOMSException
See Also:
VOMSAdmin.getGroupPath(java.lang.String)

listSubGroups

public java.lang.String[] listSubGroups(java.lang.String delegatedDN,
                                        java.lang.String delegatedCA,
                                        java.lang.String groupname)
                                 throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists immediate sub-groups of a group.

Permission:LIST on the group.

Specified by:
listSubGroups in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name (null is the VO group).
Returns:
List of groups in this group.
Throws:
VOMSException
See Also:
VOMSAdmin.listSubGroups(java.lang.String)

listGroups

public java.lang.String[] listGroups(java.lang.String delegatedDN,
                                     java.lang.String delegatedCA,
                                     java.lang.String username,
                                     java.lang.String userca)
                              throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists groups of a user.

Permission:LIST on the VO group.

Specified by:
listGroups in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
username - The user's DN.
userca - The user's CA.
Returns:
List of groups in this group.
Throws:
VOMSException
See Also:
VOMSAdmin.listGroups(java.lang.String, java.lang.String)

listRoles

public java.lang.String[] listRoles(java.lang.String delegatedDN,
                                    java.lang.String delegatedCA)
                             throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists roles.

Permission:LIST on the VO group.

Specified by:
listRoles in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
Returns:
List of roles in this VO.
Throws:
VOMSException
See Also:
VOMSAdmin.listRoles()

listRoles

public java.lang.String[] listRoles(java.lang.String delegatedDN,
                                    java.lang.String delegatedCA,
                                    java.lang.String username,
                                    java.lang.String userca)
                             throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists roles of a user.

Permission:LIST on the VO group.

Specified by:
listRoles in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
username - The user's DN.
userca - The user's CA.
Returns:
List of roles of the user qualified with their group names.
Throws:
VOMSException
See Also:
VOMSAdmin.listRoles()

listCapabilities

public java.lang.String[] listCapabilities(java.lang.String delegatedDN,
                                           java.lang.String delegatedCA)
                                    throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists capabilities.

Permission:LIST on the VO group.

Specified by:
listCapabilities in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
Returns:
List of capabilities.
Throws:
VOMSException
See Also:
VOMSAdmin.listCapabilities()

listCapabilities

public java.lang.String[] listCapabilities(java.lang.String delegatedDN,
                                           java.lang.String delegatedCA,
                                           java.lang.String username,
                                           java.lang.String userca)
                                    throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists capabilities of a user.

Permission:LIST on the VO group.

Specified by:
listCapabilities in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
username - The user's DN.
userca - The user's CA.
Returns:
List of capabilities.
Throws:
VOMSException
See Also:
VOMSAdmin.listCapabilities()

listCAs

public java.lang.String[] listCAs(java.lang.String delegatedDN,
                                  java.lang.String delegatedCA)
                           throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Lists certificate authorities.

Permission:LIST on the VO group.

Specified by:
listCAs in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
Returns:
List of certificate authority DNs.
Throws:
VOMSException
See Also:
VOMSAdmin.listCAs()

getACL

public ACLEntry[] getACL(java.lang.String delegatedDN,
                         java.lang.String delegatedCA,
                         java.lang.String groupname)
                  throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Returns the whole ACL associated with a container.

Permission: GETACL on the container.

Specified by:
getACL in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The container's name (null is the VO group).
Returns:
The access control list.
Throws:
VOMSException
See Also:
VOMSAdmin.getACL(java.lang.String)

setACL

public void setACL(java.lang.String delegatedDN,
                   java.lang.String delegatedCA,
                   java.lang.String container,
                   ACLEntry[] acl)
            throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Replaces the existing ACL on this container.

Permission: SETACL on the container.

Specified by:
setACL in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
container - The container's name.
acl - The new access control list.
Throws:
VOMSException
See Also:
VOMSAdmin.setACL(java.lang.String, org.glite.security.voms.service.ACLEntry[])

addACLEntry

public void addACLEntry(java.lang.String delegatedDN,
                        java.lang.String delegatedCA,
                        java.lang.String container,
                        ACLEntry aclEntry)
                 throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Adds a new entry to an ACL of a container.

Permission: SETACL on the container.

Specified by:
addACLEntry in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
container - The container's name.
aclEntry - The new access control list entry.
Throws:
VOMSException
See Also:
VOMSAdmin.addACLEntry(java.lang.String, org.glite.security.voms.service.ACLEntry)

removeACLEntry

public void removeACLEntry(java.lang.String delegatedDN,
                           java.lang.String delegatedCA,
                           java.lang.String container,
                           ACLEntry aclEntry)
                    throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Removes an existing entry from the ACL.

Permission: SETACL on the container.

Specified by:
removeACLEntry in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
container - The container's name.
aclEntry - The access control list entry to be removed.
Throws:
VOMSException
See Also:
VOMSAdmin.removeACLEntry(java.lang.String, org.glite.security.voms.service.ACLEntry)

getDefaultACL

public ACLEntry[] getDefaultACL(java.lang.String delegatedDN,
                                java.lang.String delegatedCA,
                                java.lang.String groupname)
                         throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Manipulates the default ACL, which is applied on every group created as a subgroup of this one.

Specified by:
getDefaultACL in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
Returns:
The access control list.
Throws:
VOMSException
See Also:
VOMSTrustedAdmin.getACL(java.lang.String, java.lang.String, java.lang.String), VOMSAdmin.getDefaultACL(java.lang.String)

setDefaultACL

public void setDefaultACL(java.lang.String delegatedDN,
                          java.lang.String delegatedCA,
                          java.lang.String groupname,
                          ACLEntry[] aclEntry)
                   throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Manipulates the default ACL, which is applied on every group created as a subgroup of this one.

Specified by:
setDefaultACL in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
aclEntry - The new access control list.
Throws:
VOMSException
See Also:
VOMSTrustedAdmin.setACL(java.lang.String, java.lang.String, java.lang.String, org.glite.security.voms.service.ACLEntry[]), VOMSAdmin.setDefaultACL(java.lang.String, org.glite.security.voms.service.ACLEntry[])

addDefaultACLEntry

public void addDefaultACLEntry(java.lang.String delegatedDN,
                               java.lang.String delegatedCA,
                               java.lang.String groupname,
                               ACLEntry aclEntry)
                        throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Manipulates the default ACL, which is applied on every group created as a subgroup of this one.

Specified by:
addDefaultACLEntry in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
aclEntry - The new access control list entry.
Throws:
VOMSException
See Also:
VOMSTrustedAdmin.addACLEntry(java.lang.String, java.lang.String, java.lang.String, org.glite.security.voms.service.ACLEntry), VOMSAdmin.addDefaultACLEntry(java.lang.String, org.glite.security.voms.service.ACLEntry)

removeDefaultACLEntry

public void removeDefaultACLEntry(java.lang.String delegatedDN,
                                  java.lang.String delegatedCA,
                                  java.lang.String groupname,
                                  ACLEntry aclEntry)
                           throws VOMSException
Description copied from interface: VOMSTrustedAdmin
Manipulates the default ACL, which is applied on every group created as a subgroup of this one.

Specified by:
removeDefaultACLEntry in interface VOMSTrustedAdmin
Parameters:
delegatedDN - The DN of the delegated client.
delegatedCA - The CA of the delegated client.
groupname - The group's name.
aclEntry - The access control list entry to be removed.
Throws:
VOMSException
See Also:
VOMSTrustedAdmin.removeACLEntry(java.lang.String, java.lang.String, java.lang.String, org.glite.security.voms.service.ACLEntry), VOMSAdmin.removeDefaultACLEntry(java.lang.String, org.glite.security.voms.service.ACLEntry)

getMajorVersionNumber

public int getMajorVersionNumber()
Description copied from interface: VOMSTrustedAdmin
Returns the major version number.

Specified by:
getMajorVersionNumber in interface VOMSTrustedAdmin

getMinorVersionNumber

public int getMinorVersionNumber()
Description copied from interface: VOMSTrustedAdmin
Returns the minor version number.

Specified by:
getMinorVersionNumber in interface VOMSTrustedAdmin

getPatchVersionNumber

public int getPatchVersionNumber()
Description copied from interface: VOMSTrustedAdmin
Returns the patch version number.

Specified by:
getPatchVersionNumber in interface VOMSTrustedAdmin