diff options
Diffstat (limited to 'base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java')
-rw-r--r-- | base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java | 128 |
1 files changed, 0 insertions, 128 deletions
diff --git a/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java b/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java deleted file mode 100644 index fe784f3a9..000000000 --- a/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java +++ /dev/null @@ -1,128 +0,0 @@ -// --- BEGIN COPYRIGHT BLOCK --- -// This program is free software; you can redistribute it and/or modify -// it under the terms of the GNU General Public License as published by -// the Free Software Foundation; version 2 of the License. -// -// This program is distributed in the hope that it will be useful, -// but WITHOUT ANY WARRANTY; without even the implied warranty of -// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -// GNU General Public License for more details. -// -// You should have received a copy of the GNU General Public License along -// with this program; if not, write to the Free Software Foundation, Inc., -// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. -// -// (C) 2007 Red Hat, Inc. -// All rights reserved. -// --- END COPYRIGHT BLOCK --- -package com.netscape.cms.evaluators; - -import com.netscape.certsrv.apps.CMS; -import com.netscape.certsrv.authentication.IAuthToken; -import com.netscape.certsrv.base.SessionContext; -import com.netscape.certsrv.evaluators.IAccessEvaluator; -import com.netscape.certsrv.logging.ILogger; -import com.netscape.cmsutil.util.Utils; - -/** - * A class represents a IP address acls evaluator. - * <P> - * - * @version $Revision$, $Date$ - */ -public class IPAddressAccessEvaluator implements IAccessEvaluator { - private String mType = "ipaddress"; - private String mDescription = "IP Address evaluator"; - private ILogger mLogger = CMS.getLogger(); - - /** - * Class constructor. - */ - public IPAddressAccessEvaluator() { - } - - /** - * initialization. nothing for now. - */ - public void init() { - } - - /** - * gets the type name for this acl evaluator - * - * @return type for this acl evaluator: ipaddress - */ - public String getType() { - return mType; - } - - /** - * gets the description for this acl evaluator - * - * @return description for this acl evaluator - */ - public String getDescription() { - return mDescription; - } - - public String[] getSupportedOperators() { - String[] s = new String[2]; - - s[0] = "="; - s[1] = "!="; - return s; - } - - /** - * Gets the IP address from session context - * - * @param authToken authentication token - * @param type must be "ipaddress" - * @param op must be "=" or "!=" - * @param value the ipaddress - */ - public boolean evaluate(IAuthToken authToken, String type, String op, String value) { - - return evaluate(type, op, value); - } - - /** - * evaluates uid in SessionContext to see if it has membership in - * group value - * - * @param type must be "group" - * @param op must be "=" - * @param value the group name - * @return true if SessionContext uid belongs to the group value, - * false otherwise - */ - public boolean evaluate(String type, String op, String value) { - - SessionContext mSC = SessionContext.getContext(); - - value = Utils.stripQuotes(value); - String ipaddress = (String) mSC.get(SessionContext.IPADDRESS); - - if (type.equals(mType)) { - if (ipaddress == null) { - log(ILogger.LL_FAILURE, CMS.getLogMessage("EVALUATOR_IPADDRESS_NULL")); - return false; - } - if (op.equals("=")) { - return ipaddress.matches(value); - } else { - return !(ipaddress.matches(value)); - } - - } - - return false; - } - - private void log(int level, String msg) { - if (mLogger == null) - return; - mLogger.log(ILogger.EV_SYSTEM, null, ILogger.S_ACLS, - level, "GroupAccessEvaluator: " + msg); - } -} |