blob: 70a6c5d45de26f53170b8faee4adc920ac395e58 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
|
// -*- C++ -*-
// ===================================================================
/**
* @file InvocationCredentialsPolicy.h
*
* $Id$
*
* @author Ossama Othman <ossama@uci.edu>
*/
// ===================================================================
#ifndef TAO_INVOCATION_CREDENTIALS_POLICY_H
#define TAO_INVOCATION_CREDENTIALS_POLICY_H
#include /**/ "ace/pre.h"
#include "security_export.h"
#if !defined (ACE_LACKS_PRAGMA_ONCE)
# pragma once
#endif /* ACE_LACKS_PRAGMA_ONCE */
#include "orbsvcs/SecurityLevel2C.h"
#include "tao/LocalObject.h"
/**
* @class TAO_InvocationCredentialsPolicy
*
* @brief Implementation of the
* SecurityLevel2::InvocationCredentialsPolicy interface.
*
* This policy can be used to specify which credentials may be used
* for invocations on a per-object basis. For example, it can be set
* as a policy override using the standard
* CORBA::Object::_set_policy_overrides() method.
* @par
* If supported by the underlying security mechanism, multiple
* credentials can be associated with a given invocation in order
* to gain more privileges.
* @par
* This policy can be created by using the CORBA::ORB::create_policy()
* method by passing it the Security::SecInvocationCredentialsPolicy
* policy type, and the appropriate
* SecurityLevel2::CredentialsList (inserted into a CORBA::Any).
*/
class TAO_Security_Export TAO_InvocationCredentialsPolicy
: public virtual SecurityLevel2::InvocationCredentialsPolicy,
public virtual TAO_Local_RefCounted_Object
{
friend class TAO_Security_PolicyFactory;
public:
/**
* @name CORBA::Policy Methods
*/
//@{
virtual CORBA::PolicyType policy_type (
ACE_ENV_SINGLE_ARG_DECL_WITH_DEFAULTS)
ACE_THROW_SPEC ((CORBA::SystemException));
virtual CORBA::Policy_ptr copy (ACE_ENV_SINGLE_ARG_DECL_WITH_DEFAULTS)
ACE_THROW_SPEC ((CORBA::SystemException));
virtual void destroy (ACE_ENV_SINGLE_ARG_DECL_WITH_DEFAULTS)
ACE_THROW_SPEC ((CORBA::SystemException));
//@}
/// Return the list of invocation credentials associated with this
/// policy.
virtual SecurityLevel2::CredentialsList * creds (
ACE_ENV_SINGLE_ARG_DECL_WITH_DEFAULTS)
ACE_THROW_SPEC ((CORBA::SystemException));
protected:
/// Constructor
TAO_InvocationCredentialsPolicy (
const SecurityLevel2::CredentialsList &creds);
/// Destructor
/**
* Protected destructor to enforce the fact this class is reference
* counted, and should not be destroyed using delete() by anything
* other than the reference counting mechanism.
*/
~TAO_InvocationCredentialsPolicy (void);
private:
/// List of credentials that can be used for a given invocation.
/// Only one is used at any given time.
SecurityLevel2::CredentialsList creds_;
};
#include /**/ "ace/post.h"
#endif /* TAO_INVOCATION_CREDENTIALS_POLICY_H */
|
