blob: 2306bdd43c544cbddca41301f9e879842919f788 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
|
/** @file admin_access.h
*/
/**
* Copyright (C) 2010 10gen Inc.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License, version 3,
* as published by the Free Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
#pragma once
namespace mongo {
/*
* An AdminAccess is an interface class used to determine if certain users have
* priviledges to a given resource.
*
*/
class AdminAccess {
public:
virtual ~AdminAccess() { }
/** @return if there are any priviledge users. This should not
* block for long and throw if can't get a lock if needed.
*/
virtual bool haveAdminUsers() const = 0;
/** @return priviledged user with this name. This should not block
* for long and throw if can't get a lock if needed
*/
virtual BSONObj getAdminUser( const string& username ) const = 0;
};
class NoAdminAccess : public AdminAccess {
public:
virtual ~NoAdminAccess() { }
virtual bool haveAdminUsers() const { return false; }
virtual BSONObj getAdminUser( const string& username ) const { return BSONObj(); }
};
} // namespace mongo
|
