This package contains the fortress implementation classes for data persistence with the LDAP server.
This package contain the classes that are the three layers of processing of fortress:
(1) Manager layer - e.g. AdminMgrImpl, AccessMgrImpl, ReviewMgrImpl
(2) Process layer - e.g. UserP, RoleP, PermP
(3) DAO layer - e.g. UserDAO, RoleDAO, PermDAO
- This package provides apis that adhere to standards like RBAC
- This package provides apis that adhere to ARBAC02 model to provide delegated
administration capabilities.
- This package provides apis to interrogate OpenLDAP's slapd access log to
obtain fortress audit trail and historical events.
- This package provides CRUD apis for storing config data on the ldap server.
- This package contains apis to perform create and teardown the ldap group node.
- This package uses JGraphT to provide hierarchical functionality that is
reused within several other packages in the fortress system.
The org.apache.directory.fortress.core.impl package data entities may be manipulated by outside
programs but the apis contained within this package are for internal use only.
The entities include {@link org.apache.directory.fortress.core.model.User User},{@link
org.apache.directory.fortress.core.model.Role Role}, {@link org.apache.directory.fortress.core.model.PermObj
PermObj}, {@link org.apache.directory.fortress.core.model.Permission Permission}, and more.
See the corresponding javadoc contained with this package for more info.
Fortress Manager APIs implemented in this package
- AccessMgrImpl - This implements using LDAP the runtime access control
operations on objects that are provisioned RBAC
entities that reside in LDAP directory.
- AdminMgrImpl - This implements using LDAP the administrative functions to
provision Fortress RBAC
entities into the LDAP directory.
- ReviewMgrImpl - This implements using LDAP the administrative review functions
on already provisioned Fortress RBAC
entities that reside in LDAP directory.
- DelegatedAccessMgrImpl - This implements using LDAP the APIs for
performing runtime delegated access control operations on objects that are provisioned Fortress ARBAC02 entities that reside in LDAP
directory.
- DelegatedAdminMgrImpl - This implements using LDAP the ARBAC02 DelegatedAdminMgr interface for
performing policy administration of Fortress ARBAC entities that reside in LDAP directory.
- DelegatedReviewMgrImpl - This implements using LDAP the ARBAC02 DelegatedReviewMgr interface for
performing policy interrogation of provisioned Fortress ARBAC02 entities that reside in LDAP directory.
- PwPolicyMgrImpl - Performs CRUD on password policies stored in
directory.
- AuditMgrImpl - Interrogates Fortress audit data stored in OpenLDAP.
- ConfigMgrImpl - CRUD for Fortress config parameters.
- GroupMgrImpl - CRUD for LDAP group objects.