Package com.adventnet.security.authorization

This package consists of authorization related interfaces and classes which are used to perform Access Control to the users for different applications and also to add/delete the Access Control Data to the data store.

See:
Description

Interface Summary

AuthObserver	This is the interface for getting notifications about the changes in authorization information such as addition/deletion/modifications of users,operations To listen for notifications, users should implement this interface and can register for any of the following updates.
AuthorizationAdmin	This is the basic interface that has to be implemented for persistence data store.
AuthorizationEngine	This is the interface which provides the framework for Authorization.
CustomViewScopeAPI	This class used to provide the Custom View Scope support for framework in Web NMS.
SecuredAdminAPI	This is the basic interface that has to be implemented for performing password related APIs in AuthorizationAdmin in secured way.

Class Summary

AuthorizedViewObject	This class represents the AuthorizedViewName and the set of properties associated with it.
OperationObject	This class represents the OperationName and its hierarchical order in the Operations Tree.

Exception Summary

AuthorizationException

This exception is thrown in case of any exception mainly related to security related database operation.

Package com.adventnet.security.authorization Description

This package consists of authorization related interfaces and classes which are used to perform Access Control to the users for different applications and also to add/delete the Access Control Data to the data store. Authorization package consists of a framework where users can plug-in their implementation. A default implementation that uses relational database as backend for storing access information is also provided.

The framework uses a Access Control policy where a user belonging to a particular group has a view defined(also called authorized view) that specifies the operations he is allowed to perform. Also, the client(UI) wishing to provide customized views for each user/group can associate a namedView with the set of authorizedViews.

This package also provides some administrative APIs like add/delete etc, access control information. The default implementation of Authorization uses a relational database as backend for storing access control information.