public class CassandraAuthorizer extends java.lang.Object implements IAuthorizer
| Modifier and Type | Field and Description | 
|---|---|
| static java.lang.String | USER_PERMISSIONS | 
| static java.lang.String | USERNAME | 
| Constructor and Description | 
|---|
| CassandraAuthorizer() | 
| Modifier and Type | Method and Description | 
|---|---|
| java.util.Set<Permission> | authorize(AuthenticatedUser user,
         IResource resource)Returns a set of permissions of a user on a resource. | 
| void | grant(AuthenticatedUser performer,
     java.util.Set<Permission> permissions,
     IResource resource,
     RoleResource grantee)Grants a set of permissions on a resource to a role. | 
| java.util.Set<PermissionDetails> | list(AuthenticatedUser performer,
    java.util.Set<Permission> permissions,
    IResource resource,
    RoleResource grantee)Returns a list of permissions on a resource granted to a role. | 
| java.util.Set<DataResource> | protectedResources()Set of resources that should be made inaccessible to users and only accessible internally. | 
| void | revoke(AuthenticatedUser performer,
      java.util.Set<Permission> permissions,
      IResource resource,
      RoleResource revokee)Revokes a set of permissions on a resource from a user. | 
| void | revokeAllFrom(RoleResource revokee)Called before deleting a role with DROP ROLE statement (or the alias provided for compatibility,
 DROP USER) so that a new role with the same name wouldn't inherit permissions of the deleted one in the future. | 
| void | revokeAllOn(IResource droppedResource)This method is called after a resource is removed (i.e. | 
| void | setup()Setup is called once upon system startup to initialize the IAuthorizer. | 
| void | validateConfiguration()Validates configuration of IAuthorizer implementation (if configurable). | 
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitrequireAuthorizationpublic static final java.lang.String USERNAME
public static final java.lang.String USER_PERMISSIONS
public java.util.Set<Permission> authorize(AuthenticatedUser user, IResource resource)
IAuthorizerauthorize in interface IAuthorizeruser - Authenticated user requesting authorization.resource - Resource for which the authorization is being requested. @see DataResource.public void grant(AuthenticatedUser performer, java.util.Set<Permission> permissions, IResource resource, RoleResource grantee) throws RequestValidationException, RequestExecutionException
IAuthorizergrant in interface IAuthorizerperformer - User who grants the permissions.permissions - Set of permissions to grant.resource - Resource on which to grant the permissions.grantee - Role to which the permissions are to be granted.RequestValidationExceptionRequestExecutionExceptionpublic void revoke(AuthenticatedUser performer, java.util.Set<Permission> permissions, IResource resource, RoleResource revokee) throws RequestValidationException, RequestExecutionException
IAuthorizerrevoke in interface IAuthorizerperformer - User who revokes the permissions.permissions - Set of permissions to revoke.resource - Resource on which to revoke the permissions.revokee - Role from which to the permissions are to be revoked.RequestValidationExceptionRequestExecutionExceptionpublic void revokeAllFrom(RoleResource revokee)
IAuthorizerrevokeAllFrom in interface IAuthorizerrevokee - The role to revoke all permissions from.public void revokeAllOn(IResource droppedResource)
IAuthorizerrevokeAllOn in interface IAuthorizerdroppedResource - The resource to revoke all permissions on.public java.util.Set<PermissionDetails> list(AuthenticatedUser performer, java.util.Set<Permission> permissions, IResource resource, RoleResource grantee) throws RequestValidationException, RequestExecutionException
IAuthorizerlist in interface IAuthorizerperformer - User who wants to see the permissions.permissions - Set of Permission values the user is interested in. The result should only include the
                    matching ones.resource - The resource on which permissions are requested. Can be null, in which case permissions on all
                 resources should be returned.grantee - The role whose permissions are requested. Can be null, in which case permissions of every
           role should be returned.RequestValidationExceptionRequestExecutionExceptionpublic java.util.Set<DataResource> protectedResources()
IAuthorizerprotectedResources in interface IAuthorizerpublic void validateConfiguration()
                           throws ConfigurationException
IAuthorizervalidateConfiguration in interface IAuthorizerConfigurationException - when there is a configuration error.public void setup()
IAuthorizersetup in interface IAuthorizerCopyright © 2018 The Apache Software Foundation