Source for javax.security.auth.kerberos.DelegationPermission

   1: /* DelegationPermission.java -- kerberos delegation permission
   2:    Copyright (C) 2006 Free Software Foundation, Inc.
   3: 
   4: This file is part of GNU Classpath.
   5: 
   6: GNU Classpath is free software; you can redistribute it and/or modify
   7: it under the terms of the GNU General Public License as published by
   8: the Free Software Foundation; either version 2, or (at your option)
   9: any later version.
  10: 
  11: GNU Classpath is distributed in the hope that it will be useful, but
  12: WITHOUT ANY WARRANTY; without even the implied warranty of
  13: MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  14: General Public License for more details.
  15: 
  16: You should have received a copy of the GNU General Public License
  17: along with GNU Classpath; see the file COPYING.  If not, write to the
  18: Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
  19: 02110-1301 USA.
  20: 
  21: Linking this library statically or dynamically with other modules is
  22: making a combined work based on this library.  Thus, the terms and
  23: conditions of the GNU General Public License cover the whole
  24: combination.
  25: 
  26: As a special exception, the copyright holders of this library give you
  27: permission to link this library with independent modules to produce an
  28: executable, regardless of the license terms of these independent
  29: modules, and to copy and distribute the resulting executable under
  30: terms of your choice, provided that you also meet, for each linked
  31: independent module, the terms and conditions of the license of that
  32: module.  An independent module is a module which is not derived from
  33: or based on this library.  If you modify this library, you may extend
  34: this exception to your version of the library, but you are not
  35: obligated to do so.  If you do not wish to do so, delete this
  36: exception statement from your version. */
  37: 
  38: 
  39: package javax.security.auth.kerberos;
  40: 
  41: import java.security.BasicPermission;
  42: import java.security.Permission;
  43: import java.security.PermissionCollection;
  44: import java.util.Enumeration;
  45: import java.util.Vector;
  46: 
  47: /**
  48:  * @since 1.4
  49:  */
  50: public final class DelegationPermission
  51:     extends BasicPermission
  52: {
  53:   // FIXME: Enable this when serialization works.
  54:   // private static final long serialVersionUID = 883133252142523922L;
  55: 
  56:   /**
  57:    * Create a new instance with the given name.
  58:    */
  59:   public DelegationPermission(String name)
  60:   {
  61:     super(name);
  62:     checkSyntax(name);
  63:   }
  64: 
  65:   /**
  66:    * Create a new instance with the given name and actions.
  67:    * 
  68:    * The name consists of two parts: first the subordinate
  69:    * service principal, then the target service principal.
  70:    * Each principal is surrounded by quotes; the two are separated
  71:    * by a space.
  72:    * 
  73:    * @param name the name
  74:    * @param actions the actions; this is ignored
  75:    */
  76:   public DelegationPermission(String name, String actions)
  77:   {
  78:     super(name, actions);
  79:     checkSyntax(name);
  80:   }
  81: 
  82:   private static void checkSyntax(String name)
  83:   {
  84:     int index = name.indexOf('"', 1);
  85:     int len = name.length();
  86:     if (name.charAt(0) != '"' || name.charAt(len - 1) != '"'
  87:         || index == -1 || index + 3 >= len
  88:         || name.charAt(index + 1) != ' '
  89:         || name.charAt(index + 2) != '"')
  90:       // FIXME: better message here.
  91:       throw new IllegalArgumentException("invalid syntax for principals");
  92:   }
  93: 
  94:   public boolean implies(Permission perm)
  95:   {
  96:     return equals(perm);
  97:   }
  98: 
  99:   public PermissionCollection newPermissionCollection()
 100:   {
 101:     // FIXME: don't know how to serialize here.  I suspect this
 102:     // class has to have a particular name, etc ...
 103:     return new PermissionCollection()
 104:     {
 105:       private Vector permissions = new Vector();
 106: 
 107:       public void add(Permission perm)
 108:       {
 109:         if (isReadOnly())
 110:           throw new SecurityException("readonly");
 111:         if (! (perm instanceof DelegationPermission))
 112:           throw new IllegalArgumentException("can only add DelegationPermissions");
 113:         permissions.add(perm);
 114:       }
 115: 
 116:       public boolean implies(Permission perm)
 117:       {
 118:         if (! (perm instanceof DelegationPermission))
 119:           return false;
 120:         Enumeration e = elements();
 121:         while (e.hasMoreElements())
 122:           {
 123:             DelegationPermission dp = (DelegationPermission) e.nextElement();
 124:             if (dp.implies(perm))
 125:               return true;
 126:           }
 127:         return false;
 128:       }
 129: 
 130:       public Enumeration elements()
 131:       {
 132:         return permissions.elements();
 133:       }
 134:     };
 135:   }
 136: }