public class AuditedSecurityOperation extends SecurityOperation
authenticator, authorizor, context, isKerberos, permHandle| Constructor and Description |
|---|
AuditedSecurityOperation(AccumuloServerContext context,
Authorizor author,
Authenticator authent,
PermissionHandler pm) |
| Modifier and Type | Method and Description |
|---|---|
protected void |
authenticate(TCredentials credentials) |
boolean |
canBulkImport(TCredentials c,
String tableId,
String tableName,
String dir,
String failDir,
String namespaceId) |
boolean |
canCloneTable(TCredentials c,
String tableId,
String tableName,
String destinationNamespaceId,
String sourceNamespaceId) |
boolean |
canCreateTable(TCredentials c,
String tableName,
String namespaceId) |
boolean |
canDeleteRange(TCredentials c,
String tableId,
String tableName,
org.apache.hadoop.io.Text startRow,
org.apache.hadoop.io.Text endRow,
String namespaceId) |
boolean |
canDeleteTable(TCredentials c,
String tableId,
String namespaceId) |
boolean |
canExport(TCredentials credentials,
String tableId,
String tableName,
String exportDir,
String namespaceId) |
boolean |
canImport(TCredentials credentials,
String tableName,
String importDir,
String namespaceId) |
boolean |
canObtainDelegationToken(TCredentials credentials) |
boolean |
canOnlineOfflineTable(TCredentials credentials,
String tableId,
FateOperation op,
String namespaceId) |
boolean |
canRenameTable(TCredentials c,
String tableId,
String oldTableName,
String newTableName,
String namespaceId) |
boolean |
canScan(TCredentials credentials,
String tableId,
String namespaceId,
Map<TKeyExtent,List<TRange>> tbatch,
List<TColumn> tcolumns,
List<IterInfo> ssiList,
Map<String,Map<String,String>> ssio,
List<ByteBuffer> authorizations) |
boolean |
canScan(TCredentials credentials,
String tableId,
String namespaceId,
TRange range,
List<TColumn> columns,
List<IterInfo> ssiList,
Map<String,Map<String,String>> ssio,
List<ByteBuffer> authorizations) |
void |
changeAuthorizations(TCredentials credentials,
String user,
Authorizations authorizations) |
void |
changePassword(TCredentials credentials,
Credentials newInfo) |
void |
createUser(TCredentials credentials,
Credentials newUser,
Authorizations authorizations) |
void |
dropUser(TCredentials credentials,
String user) |
static StringBuilder |
getAuthString(List<ByteBuffer> authorizations) |
static SecurityOperation |
getInstance(AccumuloServerContext context) |
static SecurityOperation |
getInstance(AccumuloServerContext context,
boolean initialize) |
void |
grantSystemPermission(TCredentials credentials,
String user,
SystemPermission permission) |
void |
grantTablePermission(TCredentials credentials,
String user,
String tableId,
TablePermission permission,
String namespaceId) |
void |
revokeSystemPermission(TCredentials credentials,
String user,
SystemPermission permission) |
void |
revokeTablePermission(TCredentials credentials,
String user,
String tableId,
TablePermission permission,
String namespaceId) |
_createUser, _hasNamespacePermission, _hasTablePermission, authenticateUser, canAlterNamespace, canAlterTable, canAskAboutUser, canBulkImport, canChangeAuthorizations, canChangePassword, canCompact, canConditionallyUpdate, canCreateNamespace, canCreateUser, canDeleteNamespace, canDropUser, canFlush, canGrantNamespace, canGrantSystem, canGrantTable, canMerge, canPerformSystemActions, canRenameNamespace, canRevokeNamespace, canRevokeSystem, canRevokeTable, canScan, canSplitTablet, canWrite, deleteNamespace, deleteTable, getAuthenticator, getAuthorizor, getPermHandler, getRootUsername, getUserAuthorizations, getUserAuthorizations, grantNamespacePermission, hasNamespacePermission, hasSystemPermission, hasTablePermission, hasTablePermission, initializeSecurity, isSystemUser, listUsers, revokeNamespacePermission, userHasAuthorizationspublic static final String AUDITLOG
public static final org.apache.log4j.Logger audit
public static final String CAN_SCAN_AUDIT_TEMPLATE
public static final String CAN_SCAN_BATCH_AUDIT_TEMPLATE
public static final String CHANGE_AUTHORIZATIONS_AUDIT_TEMPLATE
public static final String CHANGE_PASSWORD_AUDIT_TEMPLATE
public static final String CREATE_USER_AUDIT_TEMPLATE
public static final String CAN_CREATE_TABLE_AUDIT_TEMPLATE
public static final String CAN_DELETE_TABLE_AUDIT_TEMPLATE
public static final String CAN_RENAME_TABLE_AUDIT_TEMPLATE
public static final String CAN_CLONE_TABLE_AUDIT_TEMPLATE
public static final String CAN_DELETE_RANGE_AUDIT_TEMPLATE
public static final String CAN_BULK_IMPORT_AUDIT_TEMPLATE
public static final String CAN_IMPORT_AUDIT_TEMPLATE
public static final String CAN_EXPORT_AUDIT_TEMPLATE
public static final String DROP_USER_AUDIT_TEMPLATE
public static final String GRANT_SYSTEM_PERMISSION_AUDIT_TEMPLATE
public static final String GRANT_TABLE_PERMISSION_AUDIT_TEMPLATE
public static final String REVOKE_SYSTEM_PERMISSION_AUDIT_TEMPLATE
public static final String REVOKE_TABLE_PERMISSION_AUDIT_TEMPLATE
public static final String CAN_ONLINE_OFFLINE_TABLE_AUDIT_TEMPLATE
public static final String AUTHENICATE_AUDIT_TEMPLATE
public static final String DELEGATION_TOKEN_AUDIT_TEMPLATE
public AuditedSecurityOperation(AccumuloServerContext context, Authorizor author, Authenticator authent, PermissionHandler pm)
public static SecurityOperation getInstance(AccumuloServerContext context)
public static SecurityOperation getInstance(AccumuloServerContext context, boolean initialize)
public static StringBuilder getAuthString(List<ByteBuffer> authorizations)
public boolean canScan(TCredentials credentials, String tableId, String namespaceId, TRange range, List<TColumn> columns, List<IterInfo> ssiList, Map<String,Map<String,String>> ssio, List<ByteBuffer> authorizations) throws ThriftSecurityException
canScan in class SecurityOperationThriftSecurityExceptionpublic boolean canScan(TCredentials credentials, String tableId, String namespaceId, Map<TKeyExtent,List<TRange>> tbatch, List<TColumn> tcolumns, List<IterInfo> ssiList, Map<String,Map<String,String>> ssio, List<ByteBuffer> authorizations) throws ThriftSecurityException
canScan in class SecurityOperationThriftSecurityExceptionpublic void changeAuthorizations(TCredentials credentials, String user, Authorizations authorizations) throws ThriftSecurityException
changeAuthorizations in class SecurityOperationThriftSecurityExceptionpublic void changePassword(TCredentials credentials, Credentials newInfo) throws ThriftSecurityException
changePassword in class SecurityOperationThriftSecurityExceptionpublic void createUser(TCredentials credentials, Credentials newUser, Authorizations authorizations) throws ThriftSecurityException
createUser in class SecurityOperationThriftSecurityExceptionpublic boolean canCreateTable(TCredentials c, String tableName, String namespaceId) throws ThriftSecurityException
canCreateTable in class SecurityOperationThriftSecurityExceptionpublic boolean canDeleteTable(TCredentials c, String tableId, String namespaceId) throws ThriftSecurityException
canDeleteTable in class SecurityOperationThriftSecurityExceptionpublic boolean canRenameTable(TCredentials c, String tableId, String oldTableName, String newTableName, String namespaceId) throws ThriftSecurityException
canRenameTable in class SecurityOperationThriftSecurityExceptionpublic boolean canCloneTable(TCredentials c, String tableId, String tableName, String destinationNamespaceId, String sourceNamespaceId) throws ThriftSecurityException
canCloneTable in class SecurityOperationThriftSecurityExceptionpublic boolean canDeleteRange(TCredentials c, String tableId, String tableName, org.apache.hadoop.io.Text startRow, org.apache.hadoop.io.Text endRow, String namespaceId) throws ThriftSecurityException
canDeleteRange in class SecurityOperationThriftSecurityExceptionpublic boolean canBulkImport(TCredentials c, String tableId, String tableName, String dir, String failDir, String namespaceId) throws ThriftSecurityException
canBulkImport in class SecurityOperationThriftSecurityExceptionpublic boolean canImport(TCredentials credentials, String tableName, String importDir, String namespaceId) throws ThriftSecurityException
canImport in class SecurityOperationThriftSecurityExceptionpublic boolean canExport(TCredentials credentials, String tableId, String tableName, String exportDir, String namespaceId) throws ThriftSecurityException
canExport in class SecurityOperationThriftSecurityExceptionpublic void dropUser(TCredentials credentials, String user) throws ThriftSecurityException
dropUser in class SecurityOperationThriftSecurityExceptionpublic void grantSystemPermission(TCredentials credentials, String user, SystemPermission permission) throws ThriftSecurityException
grantSystemPermission in class SecurityOperationThriftSecurityExceptionpublic void grantTablePermission(TCredentials credentials, String user, String tableId, TablePermission permission, String namespaceId) throws ThriftSecurityException
grantTablePermission in class SecurityOperationThriftSecurityExceptionpublic void revokeSystemPermission(TCredentials credentials, String user, SystemPermission permission) throws ThriftSecurityException
revokeSystemPermission in class SecurityOperationThriftSecurityExceptionpublic void revokeTablePermission(TCredentials credentials, String user, String tableId, TablePermission permission, String namespaceId) throws ThriftSecurityException
revokeTablePermission in class SecurityOperationThriftSecurityExceptionpublic boolean canOnlineOfflineTable(TCredentials credentials, String tableId, FateOperation op, String namespaceId) throws ThriftSecurityException
canOnlineOfflineTable in class SecurityOperationThriftSecurityExceptionprotected void authenticate(TCredentials credentials) throws ThriftSecurityException
authenticate in class SecurityOperationThriftSecurityExceptionpublic boolean canObtainDelegationToken(TCredentials credentials) throws ThriftSecurityException
canObtainDelegationToken in class SecurityOperationThriftSecurityExceptionCopyright © 2015 Apache Accumulo Project. All rights reserved.