Contents

Contains MBeans related to security namely Principal Manager, ACL Manager and Realm manager MBeans.

PrincipalManager

Attributes of FileDBManager

Fiorano.security.PrincipalManager.FileDBManager:ServiceType=FileDBManager,Name=FileDBManager2,type=config

(a) Path
Description: Path for Initialization of FileBased dataStorage
Type: java.lang.String
Access: RW
Default Value: SDB/REALM.PRINCIPAL

(b) DeletedThresholdPercent
Description:Threshold percentage of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 50

(c) DeletedThresholdCount
Description: Threshold count of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 10

(d) DbTableNamePrefix
Description: Prefix of file based DB table names
Type: java.lang.String
Access: RW
Default Value: #

Attributes of NativeFilePrincipalManager

Fiorano.security.PrincipalManager:ServiceType=PrincipalManager,Impl=FILE,Name=NativeFilePrincipalManager,type=config

(a) MaxPasswdLength
Description: Maximum allowable password length.
Type: int
Access: RW
Default Value: 50

(b) MaxMemberCount
Description: Maximum number of members a principal/Group can have starting Cache Compaction Process
Type: int
Access: RW
Default Value: 50

(c) PasswordExpiryDuration
Description: Returns the duration in milliseconds after which a user's password will expire. -1 indicates that a password will never expire.
Type: long
Access: RW
Default Value: -1

(d) PasswordHistoryCheckEnabled
Description: boolean indicating if the change password operation should check if the new password is the same as one of the three previously used passwords.
Type: boolean
Access: RW
Default Value: false

AclManager

Attributes of FileDBManager

Fiorano.security.AclManager.FileDBManager:ServiceType=FileDBManager,Name=FileDBManager3,type=config

(a) Path
Description: Path for Initialization of FileBased dataStorage
Type: java.lang.String
Access: RW
Default Value: SDB/REALM.ACL

(b) DeletedThresholdPercent
Description: Threshold percentage of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 50

(c) DeletedThresholdCount
Description: Threshold count of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 10

(d) DbTableNamePrefix
Description: Prefix of file based DB table names
Type: java.lang.String
Access: RW
Default Value: #

Attributes of NativeFileBasedAclManager

Fiorano.security.AclManager:ServiceType=AclManager,Impl=FILE,Name=NativeFileBasedAclManager,type=config

(a) MaxAcePerAcl
Description: Maximum number of Access control entries per ACL.
Type: int
Access: RO
Default Value: 100

RealmManager

Operations of SecuritySubSystem

Fiorano.security:ServiceType=RealmManager,Name=SecuritySubSystem

(a) boolean setACL(String context, String aclName, String permName)
Description: Set the ACL to the required Context (principal)
Return Type: boolean (indicating whether the operation was successful)
Parameters:

  • name="context" type="String" description="principal name for which permissions are changed"
  • name="aclName" type="String" description="aclName for which permissions are changed"
  • name="permName" type="String" description="permission name"

Valid Values for "permName" are:
"DEFAULT", "LOOKUP", "CREATE_ADMIN_CONNECTION", "CREATE_CONNECTION", "CREATE_PUBLISHER", "CREATE_SUBSCRIBER", "CREATE_DURABLE_SUBSCRIBER", "UNSUBSCRIBE", "CREATE_QUEUE_RECEIVER", "CREATE_QUEUE_BROWSER", "CREATE_QUEUE_SENDER", "ROUTER_OUT", "ROUTER_IN", "MQ_ADMIN_SERVICES", "TRACING_ADMIN_SERVICES", "NAMING_ADMIN_SERVICES", "REALM_ADMIN_SERVICES", "AUDIT_STORAGE_POLICY_CHANGE" and "DELETE_AUDIT_EVENTS"

(b) Principal findDefaultAclOwner()
Description: Gets the default ACL owner
Return Type: java.security.Principal

(c) Principal findUser(String name)
Description: Gets User with the specified Name
Return Type: java.security.Principal
Parameters:

  • name="name" type="String"

(d) boolean authunticateUser(String username, String passwd)
Description: authenticates given user
Return Type: boolean
Parameters:

  • name="UserName" type="String"
  • name="Password" type="String"

(e) Principal createUser(String userName, String password)
Description: Creates User
Return Type: java.security.Principal
Parameters:

  • name="UserName" type="String"
  • name="Password" type="String"

(f) Principal createUser(String userName, String password, boolean encrypt)
Description: Creates User
Return Type: java.security.Principal
Parameters:

  • name="UserName" type="String"
  • name="Password" type="String"
  • name="encrypt" type="boolean" description="Use Password encryption"

(g) Group createGroup(String grpName)
Description: Creates Group
Return Type: java.security.acl.Group
Parameters:

  • name="grpName" type="String" description="Group Name"

(h) boolean deleteUser(String userName)
Description: Deletes User.
Return Type: boolean (indicating whether the operation was successful)
Parameters:

  • name="UserName" type="String" description="User Name"

(i) boolean deleteGroup(String grpName)
Description: Deletes Group
Return Type: boolean (indicating whether the operation was successful)
Parameters:

  • name="grpName" type="String" description="Group Name"

(j) boolean addMember(String grpName, String userName)
Description: Adds user to given group
Return Type: boolean
Parameters:

  • name="grpName" type="String" description="Group Name"
  • name="userName" type="String" description="User Name"

(k) Hashtable listMembers(String grpName)
Description: List members present in given group
Return Type: java.util.Hashtable (Contains String representation of all groups and users who are the members of this group)
Parameters:

  • name="grpName" type="String" description="Group Name"

(l) Hashtable listAllGroups()
Description: List all groups
Return Type: java.util.Hashtable (Contains String representation of all groups)

(m) Hashtable listAllUsers()
Description: List all Users
Return Type: java.util.Hashtable (Contains String representation of all users)

(n) Enumeration getUserNames()
Description: Get the Enumeration of UserNames
Return Type: Enumeration
Parameters: None

(o) Enumeration getGroupNames ()
Description: Get the Enumeration of GroupNames
Return Type: Enumeration
Parameters: None

(p) boolean changePasswd(String usrName, String oldPasswd, String newPasswd)
Description: Change the password of a user
Return Type: boolean
Parameters:

  • name="UserName" type="String"
  • name="oldPassword" type="String"
  • name="newPassword" type="String"
  • name="Encrypt" type="boolean" description="Whether to encrypt password"

(q) getLockedOutUserNames ()
Description: gets the locked out usernames
Return Type: java.util.List
Parameters: None

(r) isUserLocked ()
Description: specifies if the given username is locked out or not
Return Type: boolean (indicating if the given username is locked out or not)
Parameters: name="username" type="java.lang.String" description="UserName"

Attributes of SecuritySubSystem (Config)

(a) EnableUserLockout
Description: Returns whether user lockout for failed login is enabled
Type: boolean
Access: RW
Default Value: false

(b) NumberOfFailedLoginAllowed
Description: Returns the number of failed login attempts allowed for users.
Type: int
Access: RW
Default Value: 5

(c) UserBlockingTime
Description: Returns time in millis for account block duration
Type: long
Access: RW
Default Value: 86400000

Adaptavist ThemeBuilder EngineAtlassian Confluence