org.globus.gsi.gssapi.auth
Class SelfAuthorization

java.lang.Object
  extended byorg.globus.gsi.gssapi.auth.Authorization
      extended byorg.globus.gsi.gssapi.auth.GSSAuthorization
          extended byorg.globus.gsi.gssapi.auth.SelfAuthorization

public class SelfAuthorization
extends GSSAuthorization

Performs the identity authorization check. The identity is obtained from specified Globus credentials.


Constructor Summary
SelfAuthorization()
           
 
Method Summary
 void authorize(GSSContext context, String host)
          Performs self authorization.
 GSSName getExpectedName(GSSCredential cred, String host)
          Returns expected GSSName used for authorization purposes.
static SelfAuthorization getInstance()
          Returns a single instance of this class.
 
Methods inherited from class org.globus.gsi.gssapi.auth.Authorization
generateAuthorizationException
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SelfAuthorization

public SelfAuthorization()
Method Detail

getInstance

public static SelfAuthorization getInstance()
Returns a single instance of this class.

Returns:
the instance of this class.

getExpectedName

public GSSName getExpectedName(GSSCredential cred,
                               String host)
                        throws GSSException
Description copied from class: GSSAuthorization
Returns expected GSSName used for authorization purposes. Can returns null for self authorization.

Specified by:
getExpectedName in class GSSAuthorization
Parameters:
cred - credentials used
host - host address of the peer.
Throws:
GSSException - if unable to create the name.

authorize

public void authorize(GSSContext context,
                      String host)
               throws AuthorizationException
Performs self authorization.

Specified by:
authorize in class Authorization
Parameters:
context - the securit context
host - host address of the peer.
Throws:
AuthorizationException - if the peer is not authorized to access/use the resource.