/* Acl.java -- An access control list
Copyright (C) 1998 Free Software Foundation, Inc.
This file is part of GNU Classpath.
GNU Classpath is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2, or (at your option)
any later version.
GNU Classpath is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
General Public License for more details.
You should have received a copy of the GNU General Public License
along with GNU Classpath; see the file COPYING. If not, write to the
Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA
02111-1307 USA.
Linking this library statically or dynamically with other modules is
making a combined work based on this library. Thus, the terms and
conditions of the GNU General Public License cover the whole
combination.
As a special exception, the copyright holders of this library give you
permission to link this library with independent modules to produce an
executable, regardless of the license terms of these independent
modules, and to copy and distribute the resulting executable under
terms of your choice, provided that you also meet, for each linked
independent module, the terms and conditions of the license of that
module. An independent module is a module which is not derived from
or based on this library. If you modify this library, you may extend
this exception to your version of the library, but you are not
obligated to do so. If you do not wish to do so, delete this
exception statement from your version. */
package java.security.acl;
import java.security.Principal;
import java.util.Enumeration;
/**
* A Java access control list (ACL) is a group of individual ACL entries.
* These entries consist of a Principal
and a list of
* permissions this Principal
is either granted or denied.
* A given Principal
can have at most one positive ACL entry
* (i.e., one that grants permissions) and one negative ACL entry (i.e., one
* that denies permissions). If a given permission is both granted and
* denied, the ACL treats it as if it were never granted or denied. If
* both a Principal
and a Group
to which the
* Principal
belongs have an ACL entry, the permissions for
* the individual Principal
take precedence over the
* permissions of the Group
if there is a conflict.
*
* Additionally, the ACL interface extends the Owner
interface
* and so an ACL has owners. Actions which modify the ACL are restricted
* to owners.
*
* @version 0.0
*
* @author Aaron M. Renn (arenn@urbanophile.com)
*/
public interface Acl extends Owner
{
/**
* This method returns the name of this ACL.
*
* @return The name of this ACL
*/
String getName();
/**
* This method sets the name of the ACL
*
* @param caller The Principal
requesting the action.
* @param name The new name for this ACL.
*
* @exception NotOwnerException If the caller is not an owner of this ACL.
*/
void setName(Principal caller, String name)
throws NotOwnerException;
/**
* This method adds the specified entry to the ACL
*
* @param caller The Principal
requesting the addition
* @param entry The ACL entry to add
*
* @return true
if the entry was added, false
* if there is already an entry of the same type for the
* Principal
.
*
* @exception NotOwnerException If the caller is not an owner of this ACL.
*/
boolean addEntry(Principal caller, AclEntry entry)
throws NotOwnerException;
/**
* This method delets the specified entry from the ACL
*
* @param caller The Principal
requesting the deletion.
* @param entry The ACL entry to delete
*
* @return true
if the entry was deleted, or false
* if this entry was not part of the ACL to begin with
*
* @exception NotOwnerException If the caller is not an owner of this ACL.
*/
boolean removeEntry(Principal caller, AclEntry entry)
throws NotOwnerException;
/**
* This method returns a list of all the entries in the ACL as an
* Enumeration
.
*
* @return An enumeration of the ACL entries
*/
Enumeration entries();
/**
* This method tests whether or not the specified Principal
* has the specified Permission
*
* @param user The Principal
to test
* @param perm The Permission
to test for
*
* @return true
if the user has been granted the permission,
* false
otherwise
*/
boolean checkPermission(Principal user, Permission perm);
/**
* This method returns a list of Permission
's that are granted
* to a particular Principal
. This includes any permissions
* that are granted to Group
's to which the Principal
* belongs unless they are overridden by a negative ACL. This permission
* list is returned as an Enumeration
.
*
* @param user The Principal
to retrieve permissions for.
*
* @return A list of permissions for the Principal
.
*/
Enumeration getPermissions(Principal user);
/**
* This method returns the ACL as a String
*
* @return A String
representation of this ACL
*/
String toString();
}