Contains MBeans related to security namely Principal Manager, ACL Manager and Realm manager MBeans.
6.1 PrincipalManager
6.1.1Attributes of FileDBManager
Fiorano.security.PrincipalManager.FileDBManager:ServiceType=FileDBManager,Name=FileDBManager2,type=config
(a) Path
Description: Path for Initialization of FileBased dataStorage
Type: java.lang.String
Access: RW
Default Value: SDB/REALM.PRINCIPAL
(b) DeletedThresholdPercent
Description:Threshold percentage of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 50
(c) DeletedThresholdCount
Description: Threshold count of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 10
(d) DbTableNamePrefix
Description: Prefix of file based DB table names
Type: java.lang.String
Access: RW
Default Value: #
6.1.2 Attributes of NativeFilePrincipalManager
Fiorano.security.PrincipalManager:ServiceType=PrincipalManager,Impl=FILE,Name=NativeFilePrincipalManager,type=config
(a) MaxPasswdLength
Description: Maximum allowable password length.
Type: int
Access: RW
Default Value: 50
(b) MaxMemberCount
Description: Maximum number of members a principal/Group can have starting Cache Compaction Process
Type: int
Access: RW
Default Value: 50
6.2 AclManager
6.2.1 Attributes of FileDBManager
Fiorano.security.AclManager.FileDBManager:ServiceType=FileDBManager,Name=FileDBManager3,type=config
(a) Path
Description: Path for Initialization of FileBased dataStorage
Type: java.lang.String
Access: RW
Default Value: SDB/REALM.ACL
(b) DeletedThresholdPercent
Description: Threshold percentage of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 50
(c) DeletedThresholdCount
Description: Threshold count of deleted Entries for starting Cache Compaction Process
Type: int
Access: RW
Default Value: 10
(d) DbTableNamePrefix
Description: Prefix of file based DB table names
Type: java.lang.String
Access: RW
Default Value: #
6.2.2 Attributes of NativeFileBasedAclManager
Fiorano.security.AclManager:ServiceType=AclManager,Impl=FILE,Name=NativeFileBasedAclManager,type=config
(a) MaxAcePerAcl
Description: Maximum number of Access control entries per ACL.
Type: int
Access: RO
Default Value: 100
6.3 RealmManager
6.3.1 Operations of SecuritySubSystem
Fiorano.security:ServiceType=RealmManager,Name=SecuritySubSystem
(a) boolean setACL(String context, String aclName, String permName)
Description: Set the ACL to the required Context (principal)
Return Type: boolean (indicating whether the operation was successful)
Parameters:
- name="context" type="String" description="principal name for which permissions are changed"
- name="aclName" type="String" description="aclName for which permissions are changed"
- name="permName" type="String" description="permission name"
Valid Values for "permName" are:
"DEFAULT", "LOOKUP", "CREATE_ADMIN_CONNECTION", "CREATE_CONNECTION", "CREATE_PUBLISHER", "CREATE_SUBSCRIBER", "CREATE_DURABLE_SUBSCRIBER", "UNSUBSCRIBE", "CREATE_QUEUE_RECEIVER", "CREATE_QUEUE_BROWSER", "CREATE_QUEUE_SENDER", "ROUTER_OUT", "ROUTER_IN", "MQ_ADMIN_SERVICES", "TRACING_ADMIN_SERVICES", "NAMING_ADMIN_SERVICES", "REALM_ADMIN_SERVICES", "AUDIT_STORAGE_POLICY_CHANGE" and "DELETE_AUDIT_EVENTS"
(b) Principal findDefaultAclOwner()
Description: Gets the default ACL owner
Return Type: java.security.Principal
(c) Principal findUser(String name)
Description: Gets User with the specified Name
Return Type: java.security.Principal
Parameters:
- name="name" type="String"
(d) boolean authunticateUser(String username, String passwd)
Description: authenticates given user
Return Type: boolean
Parameters:
- name="UserName" type="String"
- name="Password" type="String"
(e) Principal createUser(String userName, String password)
Description: Creates User
Return Type: java.security.Principal
Parameters:
- name="UserName" type="String"
- name="Password" type="String"
(f) Principal createUser(String userName, String password, boolean encrypt)
Description: Creates User
Return Type: java.security.Principal
Parameters:
- name="UserName" type="String"
- name="Password" type="String"
- name="encrypt" type="boolean" description="Use Password encryption"
(g) Group createGroup(String grpName)
Description: Creates Group
Return Type: java.security.acl.Group
Parameters:
- name="grpName" type="String" description="Group Name"
(h) boolean deleteUser(String userName)
Description: Deletes User.
Return Type: boolean (indicating whether the operation was successful)
Parameters:
- name="UserName" type="String" description="User Name"
boolean deleteGroup(String grpName)
Description: Deletes Group
Return Type: boolean (indicating whether the operation was successful)
Parameters:
- name="grpName" type="String" description="Group Name"
(j) boolean addMember(String grpName, String userName)
Description: Adds user to given group
Return Type: boolean
Parameters:
- name="grpName" type="String" description="Group Name"
- name="userName" type="String" description="User Name"
(k) Hashtable listMembers(String grpName)
Description: List members present in given group
Return Type: java.util.Hashtable (Contains String representation of all groups and users who are the members of this group)
Parameters:
- name="grpName" type="String" description="Group Name"
(l) Hashtable listAllGroups()
Description: List all groups
Return Type: java.util.Hashtable (Contains String representation of all groups)
(m) Hashtable listAllUsers()
Description: List all Users
Return Type: java.util.Hashtable (Contains String representation of all users)
Enumeration getUserNames()
Description: Get the Enumeration of UserNames
Return Type: Enumeration
Parameters: None
(o) Enumeration getGroupNames ()
Description: Get the Enumeration of GroupNames
Return Type: Enumeration
Parameters: None
(p) boolean changePasswd(String usrName, String oldPasswd, String newPasswd)
Description: Change the password of a user
Return Type: boolean
Parameters:
- name="UserName" type="String"
- name="oldPassword" type="String"
- name="newPassword" type="String"
- name="Encrypt" type="boolean" description="Whether to encrypt password"