You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@directory.apache.org by gi...@apache.org on 2022/07/27 21:42:42 UTC
[directory-site] branch asf-site updated: Updated site from master (9e6d37dcd236fd8414cd349210f12d8895a71f29)
This is an automated email from the ASF dual-hosted git repository.
git-site-role pushed a commit to branch asf-site
in repository https://gitbox.apache.org/repos/asf/directory-site.git
The following commit(s) were added to refs/heads/asf-site by this push:
new 968595f7 Updated site from master (9e6d37dcd236fd8414cd349210f12d8895a71f29)
968595f7 is described below
commit 968595f7b3a671f1c2bc9e88e5cf1822a9a08d95
Author: jenkins <bu...@apache.org>
AuthorDate: Wed Jul 27 21:42:39 2022 +0000
Updated site from master (9e6d37dcd236fd8414cd349210f12d8895a71f29)
---
content/fortress/index.xml | 28 ++++++-
content/fortress/user-guide.html | 4 +-
.../user-guide/4-fortress-code-samples.html | 2 +
.../fortress/user-guide/4.1-create-session.html | 10 ++-
content/fortress/user-guide/4.10-delete-user.html | 22 ++++--
.../{4.9-add-user.html => 4.11-add-permobj.html} | 91 ++++++++++------------
...0-delete-user.html => 4.12-delete-permobj.html} | 56 ++++++-------
content/fortress/user-guide/4.2-check-access.html | 8 +-
.../user-guide/4.3-session-permissions.html | 8 +-
content/fortress/user-guide/4.4-activate-role.html | 8 +-
.../fortress/user-guide/4.5-deactivate-role.html | 8 +-
.../fortress/user-guide/4.6-authorized-roles.html | 8 +-
content/fortress/user-guide/4.7-add-role.html | 10 ++-
content/fortress/user-guide/4.8-delete-role.html | 8 +-
content/fortress/user-guide/4.9-add-user.html | 10 ++-
content/index.xml | 28 ++++++-
content/sitemap.xml | 36 +++++----
17 files changed, 234 insertions(+), 111 deletions(-)
diff --git a/content/fortress/index.xml b/content/fortress/index.xml
index 7067b0cf..faf093de 100644
--- a/content/fortress/index.xml
+++ b/content/fortress/index.xml
@@ -137,7 +137,7 @@ More info here on how it works:
<pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
<guid>https://directory.apache.org/fortress/user-guide/4-fortress-code-samples.html</guid>
- <description>4 - Apache Fortress Code Samples Table of content 4.1 - Create Session 4.2 - Check Access 4.3 - Session Permissions 4.4 - Add Active Role 4.5 - Drop Active Role 4.6 - Get Authorized Roles 4.7 - Add Role 4.8 - Delete Role 4.9 - Add User 4.10 - Delete User </description>
+ <description>4 - Apache Fortress Code Samples Table of content 4.1 - Create Session 4.2 - Check Access 4.3 - Session Permissions 4.4 - Add Active Role 4.5 - Drop Active Role 4.6 - Get Authorized Roles 4.7 - Add Role 4.8 - Delete Role 4.9 - Add User 4.10 - Delete User 4.11 - Add Permission Object 4.12 - Delete Permission Object </description>
</item>
<item>
@@ -157,7 +157,31 @@ Parameters:
<pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
<guid>https://directory.apache.org/fortress/user-guide/4.10-delete-user.html</guid>
- <description>void deleteUser(User user) throws SecurityException 4.10 - Delete User This command deletes an existing user from the RBAC database. The command is valid if and only if the user to be deleted is a member of the USERS data set. The USERS and UA data sets and the assigned_users function are updated. This method performs a &ldquo;hard&rdquo; delete. It completely removes all data associated with this user from the directory. User entity must exist in directory pri [...]
+ <description>4.10 - Delete User void deleteUser(User user) throws SecurityException This command deletes an existing user from the RBAC database. The command is valid if and only if the user to be deleted is a member of the USERS data set. The USERS and UA data sets and the assigned_users function are updated. This method performs a &ldquo;hard&rdquo; delete. It completely removes all data associated with this user from the directory. User entity must exist in directory pri [...]
+ </item>
+
+ <item>
+ <title>4.11 - Add Permission Object</title>
+ <link>https://directory.apache.org/fortress/user-guide/4.11-add-permobj.html</link>
+ <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+
+ <guid>https://directory.apache.org/fortress/user-guide/4.11-add-permobj.html</guid>
+ <description>4.11 - Add Permission Object PermObj addPermObj(PermObj pObj) throws SecurityException This method will add permission object to perms container in directory. The perm object must not exist before making this call. A PermObj instance exists in a hierarchical, one-many relationship between itself and children as stored in ldap tree: (PermObj-&gt;Permission}).
+required parameters:
+ PermObj#objName - contains the name of new object being added PermObj#ou - contains the name of an existing PERMS OrgUnit this object is associated with optional parameters:</description>
+ </item>
+
+ <item>
+ <title>4.12 - Delete Permission Object</title>
+ <link>https://directory.apache.org/fortress/user-guide/4.12-delete-permobj.html</link>
+ <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+
+ <guid>https://directory.apache.org/fortress/user-guide/4.12-delete-permobj.html</guid>
+ <description>4.8 - Delete Permission Object void deletePermObj(PermObj pObj) throws SecurityException This method will remove permission object to perms container in directory. This method will also remove in associated permission objects that are attached to this object.
+required parameters:
+ PermObj#objName - contains the name of existing object targeted for removal Parameters:
+ pObj - must contain the PermObj#objName of object targeted for removal. Throws:
+ SecurityException - thrown in the event of perm object data or system error.</description>
</item>
<item>
diff --git a/content/fortress/user-guide.html b/content/fortress/user-guide.html
index b8fe2b82..849ead93 100644
--- a/content/fortress/user-guide.html
+++ b/content/fortress/user-guide.html
@@ -169,13 +169,13 @@
<li><a href="user-guide/4.8-delete-role.html">4.8 - Delete Role</a></li>
<li><a href="user-guide/4.9-add-user.html">4.9 - Add User</a></li>
<li><a href="user-guide/4.10-delete-user.html">4.10 - Delete User</a></li>
+<li><a href="user-guide/4.11-add-permobj.html">4.11 - Add Permission Object</a></li>
+<li><a href="user-guide/4.12-delete-permobj.html">4.12 - Delete Permission Object</a></li>
</ul>
</li>
<li>
<p>TODO (more code samples):</p>
<ul>
-<li>[4.11 - addPermObj]</li>
-<li>[4.12 - deletePermObj]</li>
<li>[4.13 - addPermission]</li>
<li>[4.14 - deletePermission]</li>
<li>[4.15 - assignUser]</li>
diff --git a/content/fortress/user-guide/4-fortress-code-samples.html b/content/fortress/user-guide/4-fortress-code-samples.html
index 07b42b2c..012a8ddd 100644
--- a/content/fortress/user-guide/4-fortress-code-samples.html
+++ b/content/fortress/user-guide/4-fortress-code-samples.html
@@ -165,6 +165,8 @@
<li><a href="4.8-delete-role.html">4.8 - Delete Role</a></li>
<li><a href="4.9-add-user.html">4.9 - Add User</a></li>
<li><a href="4.10-delete-user.html">4.10 - Delete User</a></li>
+<li><a href="4.11-add-permobj.html">4.11 - Add Permission Object</a></li>
+<li><a href="4.12-delete-permobj.html">4.12 - Delete Permission Object</a></li>
</ul>
diff --git a/content/fortress/user-guide/4.1-create-session.html b/content/fortress/user-guide/4.1-create-session.html
index 5a250701..5458b044 100644
--- a/content/fortress/user-guide/4.1-create-session.html
+++ b/content/fortress/user-guide/4.1-create-session.html
@@ -178,8 +178,14 @@ In addition to checking user password validity it will apply configured password
<ul>
<li>SecurityException - in the event of data validation failure, security policy violation or DAO error.</li>
</ul>
-<h2 id="simple-createsession">Simple createSession</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<h2 id="createsession">createSession</h2>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Session</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.User</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">createSessionTest</span><span style="color:#666">(</span>String userId<span style="color:#666">,</span> String password<span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".createSession"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.10-delete-user.html b/content/fortress/user-guide/4.10-delete-user.html
index 23bc62ac..c6fae8ad 100644
--- a/content/fortress/user-guide/4.10-delete-user.html
+++ b/content/fortress/user-guide/4.10-delete-user.html
@@ -143,7 +143,8 @@
</div>
<div class="nav_next">
-
+
+ <a href="4.11-add-permobj.html">4.11 - Add Permission Object</a>
</div>
<div class="clearfix"></div>
@@ -151,9 +152,9 @@
- <div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">deleteUser</span><span style="color:#666">(</span>User user<span style="color:#666">)</span> <span style="color:#a2f;font-weight:bold">throws</span> SecurityException
-</code></pre></div><h1 id="410---delete-user">4.10 - Delete User</h1>
-<p>This command deletes an existing user from the RBAC database.
+ <h1 id="410---delete-user">4.10 - Delete User</h1>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">deleteUser</span><span style="color:#666">(</span>User user<span style="color:#666">)</span> <span style="color:#a2f;font-weight:bold">throws</span> SecurityException
+</code></pre></div><p>This command deletes an existing user from the RBAC database.
The command is valid if and only if the user to be deleted is a member of the USERS data set.
The USERS and UA data sets and the assigned_users function are updated. This method performs a “hard” delete.
It completely removes all data associated with this user from the directory.
@@ -171,7 +172,15 @@ User entity must exist in directory prior to making this call else exception wil
<li>SecurityException - thrown in the event of data validation or system error.</li>
</ul>
<h2 id="deleteuser">deleteUser</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.GlobalErrIds</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.User</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testDeleteUser</span><span style="color:#666">(</span>String userId<span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testDeleteUser"</span><span style="color:#666">;</span>
@@ -223,7 +232,8 @@ User entity must exist in directory prior to making this call else exception wil
</div>
<div class="nav_next">
-
+
+ <a href="4.11-add-permobj.html">4.11 - Add Permission Object</a>
</div>
<div class="clearfix"></div>
diff --git a/content/fortress/user-guide/4.9-add-user.html b/content/fortress/user-guide/4.11-add-permobj.html
similarity index 61%
copy from content/fortress/user-guide/4.9-add-user.html
copy to content/fortress/user-guide/4.11-add-permobj.html
index 8e499a70..7fbfb59c 100644
--- a/content/fortress/user-guide/4.9-add-user.html
+++ b/content/fortress/user-guide/4.11-add-permobj.html
@@ -3,7 +3,7 @@
<html lang="en">
<head>
<meta charset="utf-8">
- <title>4.9 - Add User — Apache Directory</title>
+ <title>4.11 - Add Permission Object — Apache Directory</title>
<link href="/css/common.css" rel="stylesheet" type="text/css"/>
<link href="/css/turquoise.css" rel="stylesheet" type="text/css"/>
@@ -132,7 +132,7 @@
<div class="nav_prev">
- <a href="4.8-delete-role.html">4.8 - Delete Role</a>
+ <a href="4.10-delete-user.html">4.10 - Delete User</a>
</div>
<div class="nav_up">
@@ -144,7 +144,7 @@
<div class="nav_next">
- <a href="4.10-delete-user.html">4.10 - Delete User</a>
+ <a href="4.12-delete-permobj.html">4.12 - Delete Permission Object</a>
</div>
<div class="clearfix"></div>
@@ -152,74 +152,65 @@
- <h1 id="49---add-user">4.9 - Add User</h1>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java">User <span style="color:#00a000">addUser</span><span style="color:#666">(</span>User user<span style="color:#666">)</span> <span style="color:#a2f;font-weight:bold">throws</span> SecurityException
-</code></pre></div><p>This command creates a new RBAC user. The command is valid only if the new user is not already a member of the USERS data set.
-The USER data set is updated. The new user does not own any session at the time of its creation.</p>
+ <h1 id="411---add-permission-object">4.11 - Add Permission Object</h1>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java">PermObj <span style="color:#00a000">addPermObj</span><span style="color:#666">(</span>PermObj pObj<span style="color:#666">)</span> <span style="color:#a2f;font-weight:bold">throws</span> SecurityException
+</code></pre></div><p>This method will add permission object to perms container in directory.
+The perm object must not exist before making this call.
+A PermObj instance exists in a hierarchical, one-many relationship between itself and children as stored in ldap tree: (PermObj->Permission}).</p>
<p>required parameters:</p>
<ul>
-<li>User#userId - maps to INetOrgPerson uid</li>
-<li>User#password - used when password authentication is required</li>
-<li>User#ou - contains the name of an already existing User OU node</li>
+<li>PermObj#objName - contains the name of new object being added</li>
+<li>PermObj#ou - contains the name of an existing PERMS OrgUnit this object is associated with</li>
</ul>
<p>optional parameters:</p>
<ul>
-<li>User#pwPolicy - contains the name of an already existing OpenLDAP password policy node</li>
-<li>User#cn - maps to INetOrgPerson common name attribute</li>
-<li>User#sn - maps to INetOrgPerson surname attribute</li>
-<li>User#description - maps to INetOrgPerson description attribute</li>
-<li>User#title - maps to INetOrgPerson title attribute</li>
-<li>User#employeeType - maps to INetOrgPerson employeeType attribute</li>
-<li>User#phones * - multivalued attribute maps to organizationalPerson telephoneNumber attribute</li>
-<li>User#mobiles * - multivalued attribute maps to INetOrgPerson mobile attribute</li>
-<li>User#emails * - multivalued attribute maps to INetOrgPerson mail attribute</li>
-<li>User#address * - multivalued attribute maps to organizationalPerson postalAddress, st, l, postalCode, postOfficeBox attributes</li>
-<li>User#beginTime - HHMM - determines begin hour user may activate session</li>
-<li>User#endTime - HHMM - determines end hour user may activate session.</li>
-<li>User#beginDate - YYYYMMDD - determines date when user may sign on</li>
-<li>User#endDate - YYYYMMDD - indicates latest date user may sign on</li>
-<li>User#beginLockDate - YYYYMMDD - determines beginning of enforced inactive status</li>
-<li>User#endLockDate - YYYYMMDD - determines end of enforced inactive status</li>
-<li>User#dayMask - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day of user may sign on</li>
-<li>User#timeout - number (in minutes) of session inactivity time allowed</li>
-<li>User#props * - multivalued attribute contains property key and values are separated with a ‘:'. e.g. mykey1:myvalue1</li>
+<li>PermObj#description - any safe text</li>
+<li>PermObj#type - contains any safe text</li>
+<li>PermObj#props * - multi-occurring property key and values are separated with a ‘:'. e.g. mykey1:myvalue1</li>
</ul>
<p>Parameters:</p>
<ul>
-<li>user - User entity must contain User#userId and User#ou (required) and optional User#description,User#roles and many others.</li>
+<li>pObj - must contain the PermObj#objName and PermObj#ou. The other attributes are optional.</li>
</ul>
<p>Returns:</p>
<ul>
-<li>Returns entity containing user data that was added.</li>
+<li>copy of PermObj entity.</li>
</ul>
<p>Throws:</p>
<ul>
-<li>SecurityException - thrown in the event of data validation or system error.</li>
+<li>SecurityException - - thrown in the event of perm object data or system error.</li>
</ul>
-<h2 id="adduser">addUser</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
-<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testCreateUser</span><span style="color:#666">(</span>String userId<span style="color:#666">,</span> String password<span style="color:#666">,</span> String userOu<span style="color:#666">)</span>
+<h2 id="addpermobj">addPermObj</h2>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.GlobalErrIds</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.PermObj</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
+<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testAddPermObject</span><span style="color:#666">(</span>String objName<span style="color:#666">,</span> String permOu<span style="color:#666">)</span>
<span style="color:#666">{</span>
- String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testCreateUser"</span><span style="color:#666">;</span>
+ String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testAddPermObject"</span><span style="color:#666">;</span>
<span style="color:#a2f;font-weight:bold">try</span>
<span style="color:#666">{</span>
- <span style="color:#080;font-style:italic">// Instantiate the AdminMgr implementation. All AdminMgr APIs can throw a SecurityException in the event
-</span><span style="color:#080;font-style:italic"></span> <span style="color:#080;font-style:italic">// of rule violation or system error.
+ <span style="color:#080;font-style:italic">// Instantiate the AdminMgr implementation which is used to provision RBAC policies.
</span><span style="color:#080;font-style:italic"></span> AdminMgr adminMgr <span style="color:#666">=</span> AdminMgrFactory<span style="color:#666">.</span><span style="color:#b44">createInstance</span><span style="color:#666">(</span><span style="color:#666">)</span><span style="color:#666">;</span>
- User inUser <span style="color:#666">=</span> <span style="color:#a2f;font-weight:bold">new</span> User<span style="color:#666">(</span>userId<span style="color:#666">,</span> password<span style="color:#666">)</span><span style="color:#666">;</span>
- <span style="color:#080;font-style:italic">// ou is required attribute:
-</span><span style="color:#080;font-style:italic"></span> inUser<span style="color:#666">.</span><span style="color:#b44">setOu</span><span style="color:#666">(</span>userOu<span style="color:#666">)</span><span style="color:#666">;</span>
- <span style="color:#080;font-style:italic">// Now call the add API. The API will return User entity with associated LDAP dn if creation was successful.
-</span><span style="color:#080;font-style:italic"></span> User outUser <span style="color:#666">=</span> adminMgr<span style="color:#666">.</span><span style="color:#b44">addUser</span><span style="color:#666">(</span>inUser<span style="color:#666">)</span><span style="color:#666">;</span>
- assertNotNull<span style="color:#666">(</span>outUser<span style="color:#666">)</span><span style="color:#666">;</span>
+
+ <span style="color:#080;font-style:italic">// Add the PermObj entity to ldap. The PermObj entity must have a name and an OrgUnit affiliation.
+</span><span style="color:#080;font-style:italic"></span> adminMgr<span style="color:#666">.</span><span style="color:#b44">addPermObj</span><span style="color:#666">(</span><span style="color:#a2f;font-weight:bold">new</span> PermObj<span style="color:#666">(</span>objName<span style="color:#666">,</span> permOu<span style="color:#666">)</span><span style="color:#666">)</span><span style="color:#666">;</span>
<span style="color:#080;font-style:italic">// Instantiate the ReviewMgr implementation which is used to interrogate policy information.
</span><span style="color:#080;font-style:italic"></span> ReviewMgr reviewMgr <span style="color:#666">=</span> ReviewMgrFactory<span style="color:#666">.</span><span style="color:#b44">createInstance</span><span style="color:#666">(</span><span style="color:#666">)</span><span style="color:#666">;</span>
+ <span style="color:#080;font-style:italic">// now read the newly created Object entity back:
+</span><span style="color:#080;font-style:italic"></span> PermObj outObj <span style="color:#666">=</span> reviewMgr<span style="color:#666">.</span><span style="color:#b44">readPermObj</span><span style="color:#666">(</span><span style="color:#a2f;font-weight:bold">new</span> PermObj<span style="color:#666">(</span>objName<span style="color:#666">)</span><span style="color:#666">)</span><span style="color:#666">;</span>
- <span style="color:#080;font-style:italic">// now read the newly created User entity back:
-</span><span style="color:#080;font-style:italic"></span> User outUser2 <span style="color:#666">=</span> reviewMgr<span style="color:#666">.</span><span style="color:#b44">readUser</span><span style="color:#666">(</span>inUser<span style="color:#666">)</span><span style="color:#666">;</span>
- assertTrue<span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" failed read"</span><span style="color:#666">,</span> inUser<span style="color:#666">.</span><span style="color:#b44">equals</span><span style="color:#666">(</span>outUser2<span style="color:#666">)</span><span style="color:#666">)</span><span style="color:#666">;</span>
- LOG<span style="color:#666">.</span><span style="color:#b44">info</span><span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" user ["</span> <span style="color:#666">+</span> outUser2<span style="color:#666">.</span><span style="color:#b44">getUserId</span><span style="color:#666">(</span><span style="color:#666">)</span> <span style="color:#666">+</span> <span style="color:#b44">"] success"</span><span style="col [...]
+ <span style="color:#080;font-style:italic">// Do some validations.
+</span><span style="color:#080;font-style:italic"></span> assertNotNull<span style="color:#666">(</span>outObj<span style="color:#666">)</span><span style="color:#666">;</span>
+ assertTrue<span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" failed obj name check"</span><span style="color:#666">,</span> objName<span style="color:#666">.</span><span style="color:#b44">equals</span><span style="color:#666">(</span>outObj<span style="color:#666">.</span><span style="color:#b44">getObjName</span><span style="color:#666">(</span><span style="color:#666">)</span><span style="color:#666">)</span><span s [...]
+ assertTrue<span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" failed obj ou check"</span><span style="color:#666">,</span> permOu<span style="color:#666">.</span><span style="color:#b44">equals</span><span style="color:#666">(</span>outObj<span style="color:#666">.</span><span style="color:#b44">getOu</span><span style="color:#666">(</span><span style="color:#666">)</span><span style="color:#666">)</span><span style="co [...]
+ LOG<span style="color:#666">.</span><span style="color:#b44">info</span><span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" permission object ["</span> <span style="color:#666">+</span> outObj<span style="color:#666">.</span><span style="color:#b44">getObjName</span><span style="color:#666">(</span><span style="color:#666">)</span> <span style="color:#666">+</span> <span style="color:#b44">"] success"</span><spa [...]
<span style="color:#666">}</span>
<span style="color:#a2f;font-weight:bold">catch</span> <span style="color:#666">(</span>SecurityException ex<span style="color:#666">)</span>
<span style="color:#666">{</span>
@@ -234,7 +225,7 @@ The USER data set is updated. The new user does not own any session at the time
<div class="nav_prev">
- <a href="4.8-delete-role.html">4.8 - Delete Role</a>
+ <a href="4.10-delete-user.html">4.10 - Delete User</a>
</div>
<div class="nav_up">
@@ -246,7 +237,7 @@ The USER data set is updated. The new user does not own any session at the time
<div class="nav_next">
- <a href="4.10-delete-user.html">4.10 - Delete User</a>
+ <a href="4.12-delete-permobj.html">4.12 - Delete Permission Object</a>
</div>
<div class="clearfix"></div>
diff --git a/content/fortress/user-guide/4.10-delete-user.html b/content/fortress/user-guide/4.12-delete-permobj.html
similarity index 68%
copy from content/fortress/user-guide/4.10-delete-user.html
copy to content/fortress/user-guide/4.12-delete-permobj.html
index 23bc62ac..f91c4a86 100644
--- a/content/fortress/user-guide/4.10-delete-user.html
+++ b/content/fortress/user-guide/4.12-delete-permobj.html
@@ -3,7 +3,7 @@
<html lang="en">
<head>
<meta charset="utf-8">
- <title>4.10 - Delete User — Apache Directory</title>
+ <title>4.12 - Delete Permission Object — Apache Directory</title>
<link href="/css/common.css" rel="stylesheet" type="text/css"/>
<link href="/css/turquoise.css" rel="stylesheet" type="text/css"/>
@@ -132,7 +132,7 @@
<div class="nav_prev">
- <a href="4.9-add-user.html">4.9 - Add User</a>
+ <a href="4.11-add-permobj.html">4.11 - Add Permission Object</a>
</div>
<div class="nav_up">
@@ -151,53 +151,57 @@
- <div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">deleteUser</span><span style="color:#666">(</span>User user<span style="color:#666">)</span> <span style="color:#a2f;font-weight:bold">throws</span> SecurityException
-</code></pre></div><h1 id="410---delete-user">4.10 - Delete User</h1>
-<p>This command deletes an existing user from the RBAC database.
-The command is valid if and only if the user to be deleted is a member of the USERS data set.
-The USERS and UA data sets and the assigned_users function are updated. This method performs a “hard” delete.
-It completely removes all data associated with this user from the directory.
-User entity must exist in directory prior to making this call else exception will be thrown.</p>
+ <h1 id="48---delete-permission-object">4.8 - Delete Permission Object</h1>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">deletePermObj</span><span style="color:#666">(</span>PermObj pObj<span style="color:#666">)</span> <span style="color:#a2f;font-weight:bold">throws</span> SecurityException
+</code></pre></div><p>This method will remove permission object to perms container in directory.
+This method will also remove in associated permission objects that are attached to this object.</p>
<p>required parameters:</p>
<ul>
-<li>User#userId - maps to INetOrgPerson uid</li>
+<li>PermObj#objName - contains the name of existing object targeted for removal</li>
</ul>
<p>Parameters:</p>
<ul>
-<li>user - Contains the User#userId of the User targeted for deletion.</li>
+<li>pObj - must contain the PermObj#objName of object targeted for removal.</li>
</ul>
<p>Throws:</p>
<ul>
-<li>SecurityException - thrown in the event of data validation or system error.</li>
+<li>SecurityException - thrown in the event of perm object data or system error.</li>
</ul>
-<h2 id="deleteuser">deleteUser</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
-<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testDeleteUser</span><span style="color:#666">(</span>String userId<span style="color:#666">)</span>
+<h2 id="deletepermobj">deletePermObj</h2>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.GlobalErrIds</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.PermObj</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
+<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testDelPermObjects</span><span style="color:#666">(</span>String objName<span style="color:#666">)</span>
<span style="color:#666">{</span>
- String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testDeleteUser"</span><span style="color:#666">;</span>
+ String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testDelPermObjects"</span><span style="color:#666">;</span>
<span style="color:#a2f;font-weight:bold">try</span>
<span style="color:#666">{</span>
<span style="color:#080;font-style:italic">// Instantiate the AdminMgr implementation which is used to provision RBAC policies.
</span><span style="color:#080;font-style:italic"></span> AdminMgr adminMgr <span style="color:#666">=</span> AdminMgrFactory<span style="color:#666">.</span><span style="color:#b44">createInstance</span><span style="color:#666">(</span><span style="color:#666">)</span><span style="color:#666">;</span>
- User inUser <span style="color:#666">=</span> <span style="color:#a2f;font-weight:bold">new</span> User<span style="color:#666">(</span>userId<span style="color:#666">)</span><span style="color:#666">;</span>
- adminMgr<span style="color:#666">.</span><span style="color:#b44">deleteUser</span><span style="color:#666">(</span>inUser<span style="color:#666">)</span><span style="color:#666">;</span>
+ <span style="color:#080;font-style:italic">// this will remove the object along with any operations associated with it:
+</span><span style="color:#080;font-style:italic"></span> adminMgr<span style="color:#666">.</span><span style="color:#b44">deletePermObj</span><span style="color:#666">(</span><span style="color:#a2f;font-weight:bold">new</span> PermObj<span style="color:#666">(</span>deletePermObj<span style="color:#666">)</span><span style="color:#666">)</span><span style="color:#666">;</span>
- <span style="color:#080;font-style:italic">// now read it back:
-</span><span style="color:#080;font-style:italic"></span> <span style="color:#080;font-style:italic">// Instantiate the ReviewMgr implementation which is used to interrogate policy information.
+ <span style="color:#080;font-style:italic">// Instantiate the ReviewMgr implementation which is used to interrogate policy information.
</span><span style="color:#080;font-style:italic"></span> ReviewMgr reviewMgr <span style="color:#666">=</span> ReviewMgrFactory<span style="color:#666">.</span><span style="color:#b44">createInstance</span><span style="color:#666">(</span><span style="color:#666">)</span><span style="color:#666">;</span>
<span style="color:#a2f;font-weight:bold">try</span>
<span style="color:#666">{</span>
- <span style="color:#080;font-style:italic">// this should fail because User was deleted above:
-</span><span style="color:#080;font-style:italic"></span> reviewMgr<span style="color:#666">.</span><span style="color:#b44">readUser</span><span style="color:#666">(</span>inUser<span style="color:#666">)</span><span style="color:#666">;</span>
- fail<span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" user ["</span> <span style="color:#666">+</span> inUser<span style="color:#666">.</span><span style="color:#b44">getUserId</span><span style="color:#666">(</span><span style="color:#666">)</span> <span style="color:#666">+</span> <span style="color:#b44">"] delete failed"</span><span style="color:#666">)</span><span style="color:#666">;</span>
+ <span style="color:#080;font-style:italic">// this should fail:
+</span><span style="color:#080;font-style:italic"></span> reviewMgr<span style="color:#666">.</span><span style="color:#b44">readPermObj</span><span style="color:#666">(</span><span style="color:#a2f;font-weight:bold">new</span> PermObj<span style="color:#666">(</span>objName<span style="color:#666">)</span><span style="color:#666">)</span><span style="color:#666">;</span>
+ fail<span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" permission object delete failed"</span><span style="color:#666">)</span><span style="color:#666">;</span>
<span style="color:#666">}</span>
<span style="color:#a2f;font-weight:bold">catch</span> <span style="color:#666">(</span>SecurityException se<span style="color:#666">)</span>
<span style="color:#666">{</span>
- assertTrue<span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" excep id check"</span><span style="color:#666">,</span> se<span style="color:#666">.</span><span style="color:#b44">getErrorId</span><span style="color:#666">(</span><span style="color:#666">)</span> <span style="color:#666">=</span><span style="color:#666">=</span> GlobalErrIds<span style="color:#666">.</span><span style="color:#b44">USER_NOT_FOUND</span [...]
+ assertTrue<span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" excep id check"</span><span style="color:#666">,</span> se<span style="color:#666">.</span><span style="color:#b44">getErrorId</span><span style="color:#666">(</span><span style="color:#666">)</span> <span style="color:#666">=</span><span style="color:#666">=</span> GlobalErrIds<span style="color:#666">.</span><span style="color:#b44">PERM_OBJ_NOT_FOUND</ [...]
<span style="color:#080;font-style:italic">// pass
</span><span style="color:#080;font-style:italic"></span> <span style="color:#666">}</span>
- LOG<span style="color:#666">.</span><span style="color:#b44">info</span><span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" user ["</span> <span style="color:#666">+</span> inUser<span style="color:#666">.</span><span style="color:#b44">getUserId</span><span style="color:#666">(</span><span style="color:#666">)</span> <span style="color:#666">+</span> <span style="color:#b44">"] success"</span><span style="color [...]
+ LOG<span style="color:#666">.</span><span style="color:#b44">info</span><span style="color:#666">(</span>szLocation <span style="color:#666">+</span> <span style="color:#b44">" permission object ["</span> <span style="color:#666">+</span> TEST_PERM_OBJECT <span style="color:#666">+</span> <span style="color:#b44">"] success"</span><span style="color:#666">)</span><span style="color:#666">;</span>
<span style="color:#666">}</span>
<span style="color:#a2f;font-weight:bold">catch</span> <span style="color:#666">(</span>SecurityException ex<span style="color:#666">)</span>
<span style="color:#666">{</span>
@@ -212,7 +216,7 @@ User entity must exist in directory prior to making this call else exception wil
<div class="nav_prev">
- <a href="4.9-add-user.html">4.9 - Add User</a>
+ <a href="4.11-add-permobj.html">4.11 - Add Permission Object</a>
</div>
<div class="nav_up">
diff --git a/content/fortress/user-guide/4.2-check-access.html b/content/fortress/user-guide/4.2-check-access.html
index fa34f252..4080bfca 100644
--- a/content/fortress/user-guide/4.2-check-access.html
+++ b/content/fortress/user-guide/4.2-check-access.html
@@ -178,7 +178,13 @@ This implementation will verify the roles or userId correspond to the subject&rs
<li>SecurityException - in the event of data validation failure, security policy violation or DAO error.</li>
</ul>
<h2 id="checkaccess">checkAccess</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Session</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Permission</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testCheckAccess</span><span style="color:#666">(</span> Session session<span style="color:#666">,</span> String objectName<span style="color:#666">,</span> String operationName <span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testCheckAccess"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.3-session-permissions.html b/content/fortress/user-guide/4.3-session-permissions.html
index 8867f221..0c44e95a 100644
--- a/content/fortress/user-guide/4.3-session-permissions.html
+++ b/content/fortress/user-guide/4.3-session-permissions.html
@@ -169,7 +169,13 @@
<li>SecurityException - is thrown if runtime error occurs with system.</li>
</ul>
<h2 id="sessionpermissions">sessionPermissions</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Session</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Permission</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testSessionPermissions</span><span style="color:#666">(</span> Session session <span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testSessionPermissions"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.4-activate-role.html b/content/fortress/user-guide/4.4-activate-role.html
index f31e6df6..896644ae 100644
--- a/content/fortress/user-guide/4.4-activate-role.html
+++ b/content/fortress/user-guide/4.4-activate-role.html
@@ -174,7 +174,13 @@
<li>SecurityException - is thrown if user is not allowed to activate or runtime error occurs with system.</li>
</ul>
<h2 id="addactiverole">addActiveRole</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Session</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.UserRole</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testAddActiveRole</span><span style="color:#666">(</span> Session session<span style="color:#666">,</span> String roleName <span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testAddActiveRole"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.5-deactivate-role.html b/content/fortress/user-guide/4.5-deactivate-role.html
index 0ff1aca9..e6b0695d 100644
--- a/content/fortress/user-guide/4.5-deactivate-role.html
+++ b/content/fortress/user-guide/4.5-deactivate-role.html
@@ -172,7 +172,13 @@
<li>SecurityException - is thrown if user is not allowed to deactivate or runtime error occurs with system.</li>
</ul>
<h2 id="dropactiverole">dropActiveRole</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Session</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.UserRole</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testDropActiveRole</span><span style="color:#666">(</span> Session session<span style="color:#666">,</span> String roleName <span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testDropActiveRole"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.6-authorized-roles.html b/content/fortress/user-guide/4.6-authorized-roles.html
index e1d38c04..7781da0b 100644
--- a/content/fortress/user-guide/4.6-authorized-roles.html
+++ b/content/fortress/user-guide/4.6-authorized-roles.html
@@ -169,7 +169,13 @@
<li>SecurityException - is thrown if session invalid or system. error.</li>
</ul>
<h2 id="authorizedroles">authorizedRoles</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AccessMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Session</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.UserRole</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testAuthorizedRoles</span><span style="color:#666">(</span> Session session <span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testAuthorizedRoles"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.7-add-role.html b/content/fortress/user-guide/4.7-add-role.html
index 0dfbe29d..526ec38a 100644
--- a/content/fortress/user-guide/4.7-add-role.html
+++ b/content/fortress/user-guide/4.7-add-role.html
@@ -185,7 +185,15 @@ The ROLES data set is updated. Initially, no user or permission is assigned to t
<li>SecurityException - thrown in the event of data validation or system error.</li>
</ul>
<h2 id="addrole">addRole</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.GlobalErrIds</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Role</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testCreateRole</span><span style="color:#666">(</span><span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testCreateRole"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.8-delete-role.html b/content/fortress/user-guide/4.8-delete-role.html
index 745a53fa..fe2d2117 100644
--- a/content/fortress/user-guide/4.8-delete-role.html
+++ b/content/fortress/user-guide/4.8-delete-role.html
@@ -170,7 +170,13 @@ This command will also deassign role from all users.</p>
<li>SecurityException - thrown in the event of data validation or system error.</li>
</ul>
<h2 id="deleterole">deleteRole</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.GlobalErrIds</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.Role</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testDeleteRole</span><span style="color:#666">(</span><span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testDeleteRole"</span><span style="color:#666">;</span>
diff --git a/content/fortress/user-guide/4.9-add-user.html b/content/fortress/user-guide/4.9-add-user.html
index 8e499a70..a8ec72b7 100644
--- a/content/fortress/user-guide/4.9-add-user.html
+++ b/content/fortress/user-guide/4.9-add-user.html
@@ -197,7 +197,15 @@ The USER data set is updated. The new user does not own any session at the time
<li>SecurityException - thrown in the event of data validation or system error.</li>
</ul>
<h2 id="adduser">addUser</h2>
-<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f">@test</span>
+<div class="highlight"><pre style="background-color:#f8f8f8;-moz-tab-size:4;-o-tab-size:4;tab-size:4"><code class="language-java" data-lang="java"><span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.GlobalErrIds</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.SecurityException</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.AdminMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgr</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.ReviewMgrFactory</span><span style="color:#666">;</span>
+<span style="color:#a2f;font-weight:bold">import</span> <span style="color:#00f;font-weight:bold">org.apache.directory.fortress.core.model.User</span><span style="color:#666">;</span>
+
+<span style="color:#a2f">@test</span>
<span style="color:#a2f;font-weight:bold">public</span> <span style="color:#a2f;font-weight:bold">static</span> <span style="color:#0b0;font-weight:bold">void</span> <span style="color:#00a000">testCreateUser</span><span style="color:#666">(</span>String userId<span style="color:#666">,</span> String password<span style="color:#666">,</span> String userOu<span style="color:#666">)</span>
<span style="color:#666">{</span>
String szLocation <span style="color:#666">=</span> <span style="color:#b44">".testCreateUser"</span><span style="color:#666">;</span>
diff --git a/content/index.xml b/content/index.xml
index 25265168..09454d20 100644
--- a/content/index.xml
+++ b/content/index.xml
@@ -1454,7 +1454,7 @@ Anyway, we use a subset of ASN/1, as what we have to deal with is the BER/DER en
<pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
<guid>https://directory.apache.org/fortress/user-guide/4-fortress-code-samples.html</guid>
- <description>4 - Apache Fortress Code Samples Table of content 4.1 - Create Session 4.2 - Check Access 4.3 - Session Permissions 4.4 - Add Active Role 4.5 - Drop Active Role 4.6 - Get Authorized Roles 4.7 - Add Role 4.8 - Delete Role 4.9 - Add User 4.10 - Delete User </description>
+ <description>4 - Apache Fortress Code Samples Table of content 4.1 - Create Session 4.2 - Check Access 4.3 - Session Permissions 4.4 - Add Active Role 4.5 - Drop Active Role 4.6 - Get Authorized Roles 4.7 - Add Role 4.8 - Delete Role 4.9 - Add User 4.10 - Delete User 4.11 - Add Permission Object 4.12 - Delete Permission Object </description>
</item>
<item>
@@ -1714,7 +1714,31 @@ At the moment, the server does not support this feature.</description>
<pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
<guid>https://directory.apache.org/fortress/user-guide/4.10-delete-user.html</guid>
- <description>void deleteUser(User user) throws SecurityException 4.10 - Delete User This command deletes an existing user from the RBAC database. The command is valid if and only if the user to be deleted is a member of the USERS data set. The USERS and UA data sets and the assigned_users function are updated. This method performs a &ldquo;hard&rdquo; delete. It completely removes all data associated with this user from the directory. User entity must exist in directory pri [...]
+ <description>4.10 - Delete User void deleteUser(User user) throws SecurityException This command deletes an existing user from the RBAC database. The command is valid if and only if the user to be deleted is a member of the USERS data set. The USERS and UA data sets and the assigned_users function are updated. This method performs a &ldquo;hard&rdquo; delete. It completely removes all data associated with this user from the directory. User entity must exist in directory pri [...]
+ </item>
+
+ <item>
+ <title>4.11 - Add Permission Object</title>
+ <link>https://directory.apache.org/fortress/user-guide/4.11-add-permobj.html</link>
+ <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+
+ <guid>https://directory.apache.org/fortress/user-guide/4.11-add-permobj.html</guid>
+ <description>4.11 - Add Permission Object PermObj addPermObj(PermObj pObj) throws SecurityException This method will add permission object to perms container in directory. The perm object must not exist before making this call. A PermObj instance exists in a hierarchical, one-many relationship between itself and children as stored in ldap tree: (PermObj-&gt;Permission}).
+required parameters:
+ PermObj#objName - contains the name of new object being added PermObj#ou - contains the name of an existing PERMS OrgUnit this object is associated with optional parameters:</description>
+ </item>
+
+ <item>
+ <title>4.12 - Delete Permission Object</title>
+ <link>https://directory.apache.org/fortress/user-guide/4.12-delete-permobj.html</link>
+ <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
+
+ <guid>https://directory.apache.org/fortress/user-guide/4.12-delete-permobj.html</guid>
+ <description>4.8 - Delete Permission Object void deletePermObj(PermObj pObj) throws SecurityException This method will remove permission object to perms container in directory. This method will also remove in associated permission objects that are attached to this object.
+required parameters:
+ PermObj#objName - contains the name of existing object targeted for removal Parameters:
+ pObj - must contain the PermObj#objName of object targeted for removal. Throws:
+ SecurityException - thrown in the event of perm object data or system error.</description>
</item>
<item>
diff --git a/content/sitemap.xml b/content/sitemap.xml
index 8ef09ce1..0c94e3fd 100644
--- a/content/sitemap.xml
+++ b/content/sitemap.xml
@@ -714,7 +714,7 @@
<url>
<loc>https://directory.apache.org/fortress/user-guide/4-fortress-code-samples.html</loc>
- <lastmod>2022-07-26T17:39:01-05:00</lastmod>
+ <lastmod>2022-07-27T16:41:41-05:00</lastmod>
</url>
<url>
@@ -754,7 +754,7 @@
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.1-create-session.html</loc>
- <lastmod>2022-07-25T21:23:40-05:00</lastmod>
+ <lastmod>2022-07-27T16:41:41-05:00</lastmod>
</url>
<url>
@@ -839,7 +839,17 @@
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.10-delete-user.html</loc>
- <lastmod>2022-07-26T17:39:01-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
+ </url>
+
+ <url>
+ <loc>https://directory.apache.org/fortress/user-guide/4.11-add-permobj.html</loc>
+ <lastmod>2022-07-27T16:41:41-05:00</lastmod>
+ </url>
+
+ <url>
+ <loc>https://directory.apache.org/fortress/user-guide/4.12-delete-permobj.html</loc>
+ <lastmod>2022-07-27T16:41:41-05:00</lastmod>
</url>
<url>
@@ -854,7 +864,7 @@
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.2-check-access.html</loc>
- <lastmod>2022-07-25T21:23:40-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
@@ -1044,7 +1054,7 @@
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.3-session-permissions.html</loc>
- <lastmod>2022-07-25T21:23:40-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
@@ -1054,32 +1064,32 @@
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.4-activate-role.html</loc>
- <lastmod>2022-07-25T16:19:42-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.5-deactivate-role.html</loc>
- <lastmod>2022-07-25T16:19:42-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.6-authorized-roles.html</loc>
- <lastmod>2022-07-25T21:05:59-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.7-add-role.html</loc>
- <lastmod>2022-07-26T17:39:01-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.8-delete-role.html</loc>
- <lastmod>2022-07-26T17:39:01-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
<loc>https://directory.apache.org/fortress/user-guide/4.9-add-user.html</loc>
- <lastmod>2022-07-26T17:45:50-05:00</lastmod>
+ <lastmod>2022-07-27T16:33:41-05:00</lastmod>
</url>
<url>
@@ -1854,7 +1864,7 @@
<url>
<loc>https://directory.apache.org/fortress.html</loc>
- <lastmod>2022-07-26T17:45:50-05:00</lastmod>
+ <lastmod>2022-07-27T16:41:41-05:00</lastmod>
</url>
<url>
@@ -2359,7 +2369,7 @@
<url>
<loc>https://directory.apache.org/fortress/user-guide.html</loc>
- <lastmod>2022-07-26T17:39:01-05:00</lastmod>
+ <lastmod>2022-07-27T16:41:41-05:00</lastmod>
</url>
<url>