/*
    * GRIDIdentityMappingService.java
    *
    * Created on January 5, 2005, 5:48 PM
    */
   
   package org.opensciencegrid.authz.service;
   
   import org.opensciencegrid.authz.common.GridId;
  import org.opensciencegrid.authz.common.LocalId;
  
  /*** A service that maps a grid credential to a local site identity.
   *
   * @author Gabriele Carcassi
   */
  public interface GRIDIdentityMappingService {
      /***
       * Returns the local identity to be used for the GRID identity.
       * There are 3 different kind of return decision:
       * <ul>
       *   <li>PERMIT: whenever mapCredentials returns a LocalId object, the
       *   service will allow access. Even if all the properties of the object
       *   are set to null.</li>
       *   <li>DENY: when the return value is null, access will be denied.</li>
       *   <li>INDETERMINATE: whenever the method throws an exception, the
       *   service will return an indeterminate decsion.</li>
       * </ul>
       * @param gridID The GRID identity to map
       * @return A local identity or null, if no local identity could be found.
       * @throws RuntimeException If any problem occurs such that the mapping couldn't be performed correctly.
       */
      LocalId mapCredentials(GridId gridID);
  }