| Package | Description |
|---|---|
| org.wildfly.security.auth.permission |
Permissions which pertain to authentication and authorization.
|
| org.wildfly.security.auth.server |
Server side of authentication provided by Elytron.
|
| org.wildfly.security.authz |
Elytron's Authorization API
|
| org.wildfly.security.credential.store |
Package for Credential Store API/SPI classes and interfaces.
|
| org.wildfly.security.manager |
The WildFly security manager implementation and supporting utilities.
|
| org.wildfly.security.permission |
| Modifier and Type | Class and Description |
|---|---|
class |
ChangeRoleMapperPermission
The permission to change a role mapper category on a security identity.
|
class |
LoginPermission
Establish whether the current identity has permission to complete an authentication ("log in").
|
class |
RunAsPrincipalPermission
The permission to run as another principal within some security domain.
|
| Modifier and Type | Class and Description |
|---|---|
class |
SecurityIdentity
A loaded and authenticated security identity.
|
| Modifier and Type | Method and Description |
|---|---|
SecurityIdentity |
SecurityIdentity.intersectWith(PermissionVerifier verifier)
Create a new security identity which is the same as this one, but which limits authorization privileges to the
intersection of the current privileges and the given verifier.
|
| Modifier and Type | Method and Description |
|---|---|
PermissionVerifier |
PermissionMapper.mapPermissions(PermissionMappable permissionMappable,
Roles roles)
Returns a
PermissionVerifier with all the permissions associated with the given information. |
PermissionVerifier |
SimplePermissionMapper.mapPermissions(PermissionMappable permissionMappable,
Roles roles) |
| Modifier and Type | Method and Description |
|---|---|
SimplePermissionMapper.Builder |
SimplePermissionMapper.Builder.addMapping(Set<String> principals,
Set<String> roles,
PermissionVerifier permissionVerifier)
Add a new mapping to a
PermissionVerifier, if the PermissionMappable being mapped has a principal name that is in the Set of principals or of any of the assigned roles are matched this mapping will be a match. |
SimplePermissionMapper.Builder |
SimplePermissionMapper.Builder.addMatchAllPrincipals(PermissionVerifier permissionVerifier)
Add a new mapping to a
PermissionVerifier, if the PermissionMappable being mapped has a principal or any of the assigned roles are matched this mapping will be a match. |
static PermissionMapper |
PermissionMapper.createConstant(PermissionVerifier verifier)
Returns a new mapper that maps all to pre-defined
PermissionVerifier instance. |
| Modifier and Type | Class and Description |
|---|---|
class |
CredentialStorePermission
Credential Store API specific permission.
|
| Modifier and Type | Class and Description |
|---|---|
class |
WildFlySecurityManager
The security manager.
|
class |
WildFlySecurityManagerPermission
A permission specific to the WildFly security manager.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AbstractActionPermission<This extends AbstractActionPermission<This>>
An abstract base class for named permissions that have actions, with useful API and implementation methods.
|
class |
AbstractActionSetPermission<This extends AbstractActionSetPermission<This>>
An abstract base class for permissions which use a bit set to represent actions.
|
class |
AbstractBooleanPermission<This extends AbstractBooleanPermission<This>>
A base class for nameless and actionless permissions that are either granted or not granted.
|
class |
AbstractNamedPermission<This extends AbstractNamedPermission<This>>
An abstract base class for named permissions with useful API and implementation methods.
|
class |
AbstractNameOnlyPermission<This extends AbstractNameOnlyPermission<This>>
A permission which has a name only, and no actions.
|
class |
AbstractNameSetOnlyPermission<This extends AbstractNameSetOnlyPermission<This>>
An actionless permission with a finite, fixed set of possible names.
|
class |
AbstractPermission<This extends AbstractPermission<This>>
An abstract base class for any permission.
|
class |
AbstractPermissionCollection
Base class for useful permission collections.
|
class |
BooleanPermissionCollection
A permission collection type which either does or does not hold its instance.
|
class |
ByNamePermissionCollection
A permission collection for actionless permissions which are organized by name.
|
class |
ElytronPermission
A general Elytron permission.
|
class |
NameSetPermissionCollection
A permission collection for permissions with a finite set of names, which is based on a simple bit set.
|
class |
NoPermission
A permission which implies nothing, not even itself.
|
class |
SimpleActionBitsPermissionCollection
A trivially simple permission collection, suitable as a default for most permission types (though probably not as efficient
as a specialized type in many cases).
|
class |
SimplePermissionCollection
A trivially simple permission collection, suitable as a default for most permission types (though probably not as efficient
as a specialized type in many cases).
|
| Modifier and Type | Field and Description |
|---|---|
static PermissionVerifier |
PermissionVerifier.ALL
A verifier which implies all permissions.
|
static PermissionVerifier |
PermissionVerifier.NONE
A verifier which implies no permissions.
|
| Modifier and Type | Method and Description |
|---|---|
default PermissionVerifier |
PermissionVerifier.and(PermissionVerifier other)
Return a new verifier which implies permissions which are implied both by this verifier and by the given verifier.
|
static PermissionVerifier |
PermissionVerifier.from(Permission permission)
Get a permission verifier for a single permission.
|
static PermissionVerifier |
PermissionVerifier.from(PermissionCollection permissionCollection)
Get a permission verifier for a permission collection.
|
static PermissionVerifier |
PermissionVerifier.from(Policy policy,
ProtectionDomain protectionDomain)
Get a permission verifier for a policy's view of a protection domain.
|
static PermissionVerifier |
PermissionVerifier.from(ProtectionDomain protectionDomain)
Get a permission verifier for a protection domain.
|
default PermissionVerifier |
PermissionVerifier.not()
Return a new verifier which implies the opposite of this verifier.
|
default PermissionVerifier |
PermissionVerifier.or(PermissionVerifier other)
Return a new verifier which implies permissions which are implied either by this verifier or by the given verifier.
|
default PermissionVerifier |
PermissionVerifier.unless(PermissionVerifier other)
Return a new verifier which implies permissions which are implied by this verifier but not the given verifier.
|
default PermissionVerifier |
PermissionVerifier.xor(PermissionVerifier other)
Return a new verifier which implies permissions which are implied by only one of this verifier or the given verifier.
|
| Modifier and Type | Method and Description |
|---|---|
default PermissionVerifier |
PermissionVerifier.and(PermissionVerifier other)
Return a new verifier which implies permissions which are implied both by this verifier and by the given verifier.
|
default PermissionVerifier |
PermissionVerifier.or(PermissionVerifier other)
Return a new verifier which implies permissions which are implied either by this verifier or by the given verifier.
|
default PermissionVerifier |
PermissionVerifier.unless(PermissionVerifier other)
Return a new verifier which implies permissions which are implied by this verifier but not the given verifier.
|
default PermissionVerifier |
PermissionVerifier.xor(PermissionVerifier other)
Return a new verifier which implies permissions which are implied by only one of this verifier or the given verifier.
|
Copyright © 2020 JBoss by Red Hat. All rights reserved.