diff options
Diffstat (limited to 'pki/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java')
-rw-r--r-- | pki/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java | 32 |
1 files changed, 18 insertions, 14 deletions
diff --git a/pki/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java b/pki/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java index a5c99eeb9..4de8f694f 100644 --- a/pki/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java +++ b/pki/base/common/src/com/netscape/cms/evaluators/IPAddressAccessEvaluator.java @@ -17,7 +17,6 @@ // --- END COPYRIGHT BLOCK --- package com.netscape.cms.evaluators; - import com.netscape.certsrv.apps.CMS; import com.netscape.certsrv.authentication.IAuthToken; import com.netscape.certsrv.base.SessionContext; @@ -25,7 +24,6 @@ import com.netscape.certsrv.evaluators.IAccessEvaluator; import com.netscape.certsrv.logging.ILogger; import com.netscape.cmsutil.util.Utils; - /** * A class represents a IP address acls evaluator. * <P> @@ -44,13 +42,14 @@ public class IPAddressAccessEvaluator implements IAccessEvaluator { } /** - * initialization. nothing for now. + * initialization. nothing for now. */ public void init() { } /** * gets the type name for this acl evaluator + * * @return type for this acl evaluator: ipaddress */ public String getType() { @@ -59,6 +58,7 @@ public class IPAddressAccessEvaluator implements IAccessEvaluator { /** * gets the description for this acl evaluator + * * @return description for this acl evaluator */ public String getDescription() { @@ -75,24 +75,27 @@ public class IPAddressAccessEvaluator implements IAccessEvaluator { /** * Gets the IP address from session context + * * @param authToken authentication token * @param type must be "ipaddress" * @param op must be "=" or "!=" * @param value the ipaddress */ - public boolean evaluate(IAuthToken authToken, String type, String op, String value) { + public boolean evaluate(IAuthToken authToken, String type, String op, + String value) { return evaluate(type, op, value); } /** - * evaluates uid in SessionContext to see if it has membership in - * group value + * evaluates uid in SessionContext to see if it has membership in group + * value + * * @param type must be "group" * @param op must be "=" * @param value the group name - * @return true if SessionContext uid belongs to the group value, - * false otherwise + * @return true if SessionContext uid belongs to the group value, false + * otherwise */ public boolean evaluate(String type, String op, String value) { @@ -103,16 +106,17 @@ public class IPAddressAccessEvaluator implements IAccessEvaluator { if (type.equals(mType)) { if (ipaddress == null) { - log(ILogger.LL_FAILURE, CMS.getLogMessage("EVALUATOR_IPADDRESS_NULL")); + log(ILogger.LL_FAILURE, + CMS.getLogMessage("EVALUATOR_IPADDRESS_NULL")); return false; } - if (op.equals("=")) { + if (op.equals("=")) { return ipaddress.matches(value); } else { return !(ipaddress.matches(value)); } - - } + + } return false; } @@ -120,7 +124,7 @@ public class IPAddressAccessEvaluator implements IAccessEvaluator { private void log(int level, String msg) { if (mLogger == null) return; - mLogger.log(ILogger.EV_SYSTEM, null, ILogger.S_ACLS, - level, "GroupAccessEvaluator: " + msg); + mLogger.log(ILogger.EV_SYSTEM, null, ILogger.S_ACLS, level, + "GroupAccessEvaluator: " + msg); } } |