|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object gov.bnl.gums.userGroup.UserGroup gov.bnl.gums.userGroup.VOMSUserGroup
public class VOMSUserGroup
A group of users residing on a VOMS vo database. This class is able to import a list of users from a VOMS server. It will store to a local medium through the UserGroupDB interface. It also manages the caching from the local database.
The authentication is done through the proxy, or a certificate/key/password combination. The parameters are to be set externally as system properties. The proxy can be set through "gridProxyFile" property. Other properties are "sslCertfile", "sslKey", "sslKeyPasswd" and "sslCAFiles". More documentation can be found in the documentation of the edg trustmanager
Field Summary |
---|
Fields inherited from class gov.bnl.gums.userGroup.UserGroup |
---|
accessIndex, accessTypes |
Constructor Summary | |
---|---|
VOMSUserGroup()
|
|
VOMSUserGroup(Configuration configuration)
|
|
VOMSUserGroup(Configuration configuration,
java.lang.String name)
|
Method Summary | |
---|---|
UserGroup |
clone(Configuration configuration)
Create a clone of itself |
java.lang.String |
getMatchFQAN()
The scheme according to which the FQAN will be matched. |
static java.util.List |
getMatchFQANTypes()
|
java.util.List |
getMemberList()
Returns the list of user identities that are part of the group. |
java.lang.String |
getRemainderUrl()
|
java.lang.String |
getRole()
Changes the role. |
java.lang.String |
getType()
Getter for property type. |
static java.lang.String |
getTypeStatic()
|
java.lang.String |
getUrl()
|
java.lang.String |
getVoGroup()
Returns the VO group. |
org.edg.security.voms.service.admin.VOMSAdmin |
getVOMSAdmin()
|
java.lang.String |
getVomsServer()
Get name of VomsServer |
boolean |
isAcceptProxyWithoutFQAN()
True if non-VOMS will be accepted. |
boolean |
isIgnoreFQAN()
Convenience function for "ignore".equals(getmatchFQAN()) |
boolean |
isInGroup(GridUser user)
Determines whether the given user identity is part of the group. |
void |
setAcceptProxyWithoutFQAN(boolean acceptProxyWithoutFQAN)
Changes the way non-VOMS proxies are handled. |
void |
setMatchFQAN(java.lang.String matchFQAN)
Changes the scheme according to which the FQAN will be matched. |
void |
setRemainderUrl(java.lang.String remainderUrl)
|
void |
setRole(java.lang.String role)
Changes the role. |
void |
setVoGroup(java.lang.String voGroup)
Changes the VO group. |
void |
setVomsServer(java.lang.String vomsServer)
Set name of VOMS Server |
java.lang.String |
toString()
|
java.lang.String |
toString(java.lang.String bgColor)
Get string representation of this object for displaying in the diagnostic summary web page |
java.lang.String |
toXML()
Create a clone of itself |
void |
updateMembers()
Updates the local list of the users from the source of the group. |
Methods inherited from class gov.bnl.gums.userGroup.UserGroup |
---|
getAccess, getConfiguration, getDescription, getName, hasReadAllAccess, hasReadSelfAccess, hasWriteAccess, setAccess, setConfiguration, setDescription, setName |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait |
Constructor Detail |
---|
public VOMSUserGroup()
public VOMSUserGroup(Configuration configuration)
public VOMSUserGroup(Configuration configuration, java.lang.String name)
Method Detail |
---|
public static java.lang.String getTypeStatic()
public static java.util.List getMatchFQANTypes()
public UserGroup clone(Configuration configuration)
UserGroup
clone
in class UserGroup
public java.lang.String getMatchFQAN()
Possible values are:
public java.util.List getMemberList()
UserGroup
Some UserGroups, however, could be defined by a rule that doesn't allow listing. For example, a group could be 'all the users with a DOEGrids certificate'. Though one could argue whether or not is a good idea to have such a group, one can implement one and throw an UnsupportedOperationException. This will make it impossible for GUMS to create a grid-mapfile, but would still allow direct user to account mapping through a call-out.
getMemberList
in class UserGroup
public java.lang.String getRemainderUrl()
public java.lang.String getType()
UserGroup
getType
in class UserGroup
public java.lang.String getUrl()
public java.lang.String getVomsServer()
public java.lang.String getVoGroup()
public org.edg.security.voms.service.admin.VOMSAdmin getVOMSAdmin()
public java.lang.String getRole()
public boolean isAcceptProxyWithoutFQAN()
public boolean isIgnoreFQAN()
public boolean isInGroup(GridUser user)
UserGroup
isInGroup
in class UserGroup
public void setAcceptProxyWithoutFQAN(boolean acceptProxyWithoutFQAN)
acceptProxyWithoutFQAN
- True if group will accept non-VOMS proxiespublic void setMatchFQAN(java.lang.String matchFQAN)
matchFQAN
- One of the following: "exact, "vorole, "role", "vogroup", "vo", "ignore". (also "group" for backwards compat.)public void setRemainderUrl(java.lang.String remainderUrl)
public void setVomsServer(java.lang.String vomsServer)
vo
- public void setVoGroup(java.lang.String voGroup)
voGroup
- The group in the VOMS (i.e. /atlas/usatlas)public void setRole(java.lang.String role)
role
- The role in the VOMS (i.e.production)public java.lang.String toString()
toString
in class java.lang.Object
public java.lang.String toString(java.lang.String bgColor)
UserGroup
toString
in class UserGroup
bgColor
- back ground color
public java.lang.String toXML()
UserGroup
toXML
in class UserGroup
public void updateMembers()
UserGroup
Most user groups will get the information from a separate database accessible via WAN. For that reason, the user group will maintain a local cache with the list of members, which can be updated through this method.
updateMembers
in class UserGroup
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |