Examples of ACL

• co.cask.cdap.api.security.ACL
  Represents an entry in the Access Control List.
• com.cloudera.lib.service.ACL
• com.ecyrd.jspwiki.auth.acl.Acl

  Defines an access control list (ACL) for wiki pages. An Access Control List is a data structure used to guard access to resources. An ACL can be thought of as a data structure with multiple ACL entries. Each ACL entry, of interface type AclEntry, contains a set of positive permissions associated with a particular principal. (A principal represents an entity such as an individual user or a group). The ACL Entries in each ACL observe the following rules:

  • Each principal can have at most one ACL entry; that is, multiple ACL entries are not allowed for any principal. Each entry specifies the set of permissions that are to be granted
  • If there is no entry for a particular principal, then the principal is considered to have a null (empty) permission set

  This interface is a highly stripped-down derivation of the java.security.acl.Acl interface. In particular, the notion of an Acl "owner" has been eliminated, since JWPWiki pages do not have owners. An additional simplification compared to the standard Java package is that negative permissions have been eliminated. Instead, JSPWiki assumes a "default-deny" security stance: principals are granted no permissions by default, and posesses only those that have been explicitly granted to them. And finally, the getPermissions() and checkPermission() methods have been eliminated due to the complexities associated with resolving Role principal membership.

  @author Andrew Jaquith @since 2.3
• com.emc.atmos.api.Acl
• com.emc.esu.api.Acl
  An Access Control List (ACL) is a collection of Grants that assign privileges to users and/or groups.
• com.github.sardine.model.Acl
  xample.com/acl/users/gstein</D:href> </D:owner>
• com.google.code.com.sun.mail.imap.ACL
  An access control list entry for a particular authentication identifier (user or group). Associates a set of Rights with the identifier. See RFC 2086.

  @author Bill Shannon

• com.google.feedserver.resource.Acl
  ACL bean / resource
• com.googlecode.sardine.model.Acl
  xample.com/acl/users/gstein</D:href> </D:owner>
• com.intridea.io.vfs.operations.Acl
  ACL for S3. Usage samples: Allow everyone to read: acl.allow(Acl.Group.GUEST, Acl.Permission.READ); Allow all authorized users to read and write: Acl.Permission[] rights = {Acl.Permission.READ, Acl.Permission.WRITE}; acl.allow(Acl.Group.AUTHORIZED, rights); Deny all (owner still has access to overwrite ACL): acl.denyAll(); @author Marat Komarov @author Alex Kovalyov
• com.sun.jna.examples.win32.WinNT.ACL
• com.sun.jna.platform.win32.WinNT.ACL
  @author dblock[at]dblock[dot]org
• com.sun.mail.imap.ACL
  An access control list entry for a particular authentication identifier (user or group). Associates a set of Rights with the identifier. See RFC 2086.

  @author Bill Shannon

• de.iritgo.aktera.permissions.security.Acl
• gabriel.acl.Acl
  Access control list for managing permissions. ACLs contain entries which map principals to permissions. @author Stephan J. Schmidt @version $Id: Acl.java,v 1.2 2004/06/24 07:26:21 stephan Exp $
• hudson.security.ACL
  ins-ci.org/display/JENKINS/Making+your+plugin+behave+in+secured+Hudson
• lotus.domino.ACL
• loxia.web.annotation.Acl
• org.acegisecurity.acls.Acl
  Represents an access control list (ACL) for a domain object.

  An Acl represents all ACL entries for a given domain object. In order to avoid needing references to the domain object itself, this interface handles indirection between a domain object and an ACL object identity via the {@link org.acegisecurity.acls.objectidentity.ObjectIdentity} interface.

  An implementation represents the {@link org.acegisecurity.acls.Permission}list applicable for some or all {@link org.acegisecurity.acls.sid.Sid}instances.

  @author Ben Alex @version $Id: Acl.java 1784 2007-02-24 21:00:24Z luke_t $
• org.apache.chemistry.opencmis.commons.data.Acl
  Access Control List (ACL).
• org.apache.cloudstack.api.ACL
• org.apache.wiki.auth.acl.Acl

  Defines an access control list (ACL) for wiki pages. An Access Control List is a data structure used to guard access to resources. An ACL can be thought of as a data structure with multiple ACL entries. Each ACL entry, of interface type AclEntry, contains a set of positive permissions associated with a particular principal. (A principal represents an entity such as an individual user or a group). The ACL Entries in each ACL observe the following rules:

  • Each principal can have at most one ACL entry; that is, multiple ACL entries are not allowed for any principal. Each entry specifies the set of permissions that are to be granted
  • If there is no entry for a particular principal, then the principal is considered to have a null (empty) permission set

  This interface is a highly stripped-down derivation of the java.security.acl.Acl interface. In particular, the notion of an Acl "owner" has been eliminated, since JWPWiki pages do not have owners. An additional simplification compared to the standard Java package is that negative permissions have been eliminated. Instead, JSPWiki assumes a "default-deny" security stance: principals are granted no permissions by default, and posesses only those that have been explicitly granted to them. And finally, the getPermissions() and checkPermission() methods have been eliminated due to the complexities associated with resolving Role principal membership.

  @since 2.3
• org.apache.zookeeper.data.ACL
• org.apache.zookeeper_voltpatches.data.ACL
• org.glite.authz.pap.authz.ACL
  This class represents an Access Control List for the PAP authorization engine. PAP ACLs assign permissions (ie, {@link PAPPermission} objects) to PAP administrators(ie, {@link PAPAdmin} objects). @author andrea
• org.intalio.tempo.workflow.auth.ACL
• org.jboss.security.acl.ACL

  This interface represents an Access Control List (ACL), a data structure used to protect access to resources. It is composed of entries, where each entry is represented by the ALCEntry class and represents the permissions assigned to a given identity.

  When a client attempts to perform an operation on a resource, the ACL associated to the resource is used to verify if the client has enough permissions to perform that operation. In order to do that, the ACLEntry corresponding to the client's identity is retrieved and then the permission set contained in the entry is verified to decide if access should be granted or not.

  @author Stefan Guilhen
• org.jmanage.core.auth.ACL
  Date: Apr 8, 2005 @author Rakesh Kalra
• org.modeshape.web.shared.Acl
  @author kulikov
• org.nuxeo.ecm.core.api.security.ACL
• org.openntf.domino.ACL
  The Interface that represents the access control list (ACL) of an IBM Domino database.
• org.springframework.security.acls.model.Acl
  Represents an access control list (ACL) for a domain object.

  An Acl represents all ACL entries for a given domain object. In order to avoid needing references to the domain object itself, this interface handles indirection between a domain object and an ACL object identity via the {@link org.springframework.security.acls.model.ObjectIdentity} interface.

  Implementing classes may elect to return instances that represent {@link org.springframework.security.acls.model.Permission} information for eithersome OR all {@link org.springframework.security.acls.model.Sid}instances. Therefore, an instance may NOT necessarily contain ALL Sids for a given domain object.

  @author Ben Alex

Examples of com.github.sardine.model.Acl

    {
      return null;
    }
    for (Propstat propstat : list)
    {
      Acl a = propstat.getProp().getAcl();
      if (a != null && a.getAce() != null)
      {
        for (Ace ace : a.getAce())
        {
          result.add(new DavAce(ace));
        }
      }
    }

Examples of com.google.code.com.sun.mail.imap.ACL

        String name = null;
        while ((name = ir.readAtomString()) != null) {
      String rights = ir.readAtomString();
      if (rights == null)
          break;
      ACL acl = new ACL(name, new Rights(rights));
      v.addElement(acl);
        }
        r[i] = null;
    }
      }

Examples of com.google.feedserver.resource.Acl

  /**
   * Empty authorized entities.  Add one principal with one operation.  Should get one authorized
   * entity with one principal.
   */
  public void testAddAcl0() {
    Acl acl = new Acl("acl0", new ResourceInfo("resourceRule0", ResourceInfo.RESOURCE_TYPE_FEED), null);
    aclTool.addAcl(Arrays.asList(acl), 'r', USER9);

    assertEquals(1, acl.getAuthorizedEntities().length);
    assertAuthorizedEntityEquals(authorizedEntity_r_9, acl.getAuthorizedEntities()[0]);
  }

Examples of com.googlecode.sardine.model.Acl

    {
      return null;
    }
    for (Propstat propstat : list)
    {
      Acl a = propstat.getProp().getAcl();
      if (a != null && a.getAce() != null)
      {
        for (Ace ace : a.getAce())
        {
          result.add(new DavAce(ace));
        }
      }
    }

Examples of com.intridea.io.vfs.operations.Acl

   *
   * @return Current Access control list for a file
   * @throws FileSystemException
   */
  public Acl getAcl() throws FileSystemException {
    Acl myAcl = new Acl();
    AccessControlList s3Acl;
    try {
      s3Acl = getS3Acl();
    } catch (Exception e) {
      throw new FileSystemException(e);
    }

    // Get S3 file owner
    Owner owner = s3Acl.getOwner();
    fileOwner = owner;

    // Read S3 ACL list and build VFS ACL.
    Set<Grant> grants = s3Acl.getGrants();

    for (Grant item : grants) {
      // Map enums to jets3t ones
      Permission perm = item.getPermission();
      Acl.Permission[] rights;
      if (perm.equals(Permission.FullControl)) {
        rights = Acl.Permission.values();
      } else if (perm.equals(Permission.Read)) {
        rights = new Acl.Permission[1];
        rights[0] = Acl.Permission.READ;
      } else if (perm.equals(Permission.Write)) {
        rights = new Acl.Permission[1];
        rights[0] = Acl.Permission.WRITE;
      } else {
        // Skip unknown permission
        logger.error(String.format("Skip unknown permission %s", perm));
        continue;
      }

      // Set permissions for groups
      if (item.getGrantee() instanceof GroupGrantee) {
        GroupGrantee grantee = (GroupGrantee) item.getGrantee();
        if (GroupGrantee.AllUsers.equals(grantee)) {
          // Allow rights to GUEST
          myAcl.allow(Acl.Group.EVERYONE, rights);
        } else if (GroupGrantee.AuthenticatedUsers.equals(grantee)) {
          // Allow rights to AUTHORIZED
          myAcl.allow(Acl.Group.AUTHORIZED, rights);
        }
      } else if (item.getGrantee() instanceof CanonicalGrantee) {
        CanonicalGrantee grantee = (CanonicalGrantee) item.getGrantee();
        if (grantee.getIdentifier().equals(owner.getId())) {
          // The same owner and grantee understood as OWNER group
          myAcl.allow(Acl.Group.OWNER, rights);
        }
      }

    }

Examples of com.sun.jna.examples.win32.WinNT.ACL

    } while (repeat);

    SECURITY_DESCRIPTOR_RELATIVE sdr = new WinNT.SECURITY_DESCRIPTOR_RELATIVE(
        memory);
    memory.clear();
    ACL dacl = sdr.getDiscretionaryACL();
    ACCESS_ACEStructure[] aceStructures = dacl.getACEStructures();

    if (compact) {
      Map<String, ACCESS_ACEStructure> aceMap = new HashMap<String, ACCESS_ACEStructure>();
      for (ACCESS_ACEStructure aceStructure : aceStructures) {
        boolean inherted = ((aceStructure.AceFlags & WinNT.VALID_INHERIT_FLAGS) != 0);

Examples of com.sun.jna.platform.win32.WinNT.ACL

    } while (repeat);

    SECURITY_DESCRIPTOR_RELATIVE sdr = new WinNT.SECURITY_DESCRIPTOR_RELATIVE(
        memory);
    memory.clear();
    ACL dacl = sdr.getDiscretionaryACL();
    ACCESS_ACEStructure[] aceStructures = dacl.getACEStructures();

    if (compact) {
      Map<String, ACCESS_ACEStructure> aceMap = new HashMap<String, ACCESS_ACEStructure>();
      for (ACCESS_ACEStructure aceStructure : aceStructures) {
        boolean inherted = ((aceStructure.AceFlags & WinNT.VALID_INHERIT_FLAGS) != 0);

Examples of com.sun.mail.imap.ACL

        String name = null;
        while ((name = ir.readAtomString()) != null) {
      String rights = ir.readAtomString();
      if (rights == null)
          break;
      ACL acl = new ACL(name, new Rights(rights));
      v.addElement(acl);
        }
        r[i] = null;
    }
      }

Examples of de.iritgo.aktera.permissions.security.Acl

    if (principal == null)
    {
      return false;
    }

    Acl acl = aclByDomainObject.get(new Tuple2(objectType, objectId));
    if (acl != null && acl.checkPermission(principal, new SimplePermission(permission)))
    {
      return true;
    }

    return false;

Examples of gabriel.acl.Acl

    boolean negative = false;

    Principal principal = null;
    List permissions = new ArrayList();

    Acl acl = new Acl(owner, name);

    int PERMISSIONS = 1;
    int PRINCIPAL = 2;

    int state = PRINCIPAL;

    for (StringTokenizer stringTokenizer = new StringTokenizer(input, " \n{}", true);
         stringTokenizer.hasMoreTokens();) {

      String t = stringTokenizer.nextToken();

      if (" ".equals(t) || "\n".equals(t)) {
        // do nothing
      } else if ("{".equals(t)) {
        state = PERMISSIONS;
         } else if ("}".equals(t)) {
        state = PRINCIPAL;

        AclEntry entry = new AclEntry(principal);
        Iterator iterator = permissions.iterator();
        while (iterator.hasNext()) {
          Permission permission = (Permission) iterator.next();
          entry.addPermission(permission);
        }
        if (negative) {
          entry.setNegativePermissions();
          negative = false;
        }
        acl.addEntry(owner, entry);
        permissions = new ArrayList();
        principal = null;
      } else if (state == PRINCIPAL) {
        if (t.startsWith("-")) {
          negative = true;