Interface SecurityLevel2::Current

interface Current
inherits from SecurityLevel1::Current, CORBA::PolicyCurrent

The Current interface has the ability while servicing an invocation to be able to get the correct received credentials object(s) possibly from a multithreaded environment. It contains access to all security level 2 relevant information.



Attribute Index

access_decision
This attribute supplies the current access decision object.
audit_decision
This attribute supplies the current AuditDecision object.
own_credentials
This attribute contains the credentials object(s) used by the application and authenticated by the principal authenticator using the Vault.
principal_authenticator
This attribute supplies the principal authenticator.
received_credentials
This attribute contains the credentials received while servicing an invocation from an remote client.
required_rights_object
This attribute supplies the current required rights object.
supported_mechanisms
This attribute contains the mechanisms and their options that are supplied by the SecurityReplaceable module that is installed.

Operation Index

get_policy
This method is supposed to retrieve default policies for making invocations on remote objects.
get_security_mechanisms
This operations is for use by security sophisticated applications.
get_target_credentials
This operations is for use by security sophisticated applications.
remove_own_credentials
This operation is used by applications that wish to remove credentials that were put on the own_credentials list by virtue of the PrincipalAuthenticator.

Attributes

access_decision
readonly attribute AccessDecision access_decision;

This attribute supplies the current access decision object. This object is not used by Orbasec, and accessing it returns a null object.


audit_decision
readonly attribute AuditDecision audit_decision;

This attribute supplies the current AuditDecision object. This object is not used by Orbasec and accessing it returns a null object.


own_credentials
readonly attribute CredentialsList own_credentials;

This attribute contains the credentials object(s) used by the application and authenticated by the principal authenticator using the Vault.


principal_authenticator
readonly attribute PrincipalAuthenticator principal_authenticator;

This attribute supplies the principal authenticator.


received_credentials
readonly attribute ReceivedCredentials received_credentials;

This attribute contains the credentials received while servicing an invocation from an remote client. If the the application is a pure client, then access this attribute raises an NO_RESOURCES exception.


required_rights_object
readonly attribute RequiredRights required_rights_object;

This attribute supplies the current required rights object. This object is not used by Orbasec, and accessing it returns a null object.


supported_mechanisms
readonly attribute Security::MechandOptionsList supported_mechanisms;

This attribute contains the mechanisms and their options that are supplied by the SecurityReplaceable module that is installed.



Operations

get_policy
CORBA::Policy get_policy(in CORBA::PolicyType policy_type);

This method is supposed to retrieve default policies for making invocations on remote objects. However, this is a semantic class with the get_policy operation on a a regular object. This method is not implemented by Orbasec and should be deprecated.


get_security_mechanisms
Security::SecurityMechanismDataList get_security_mechanisms(in Object obj_ref);

This operations is for use by security sophisticated applications. It is used by clients that wish to determine the security mechanisms, security names, and association options that are associated with the target. It is possible for different security names and association options to be used for the target, depending on the mechanism used for the target.


get_target_credentials
TargetCredentials get_target_credentials(in Object target);

This operations is for use by security sophisticated applications. It is used by clients that wish to examine the credentials of the target


remove_own_credentials
void remove_own_credentials(in Credentials creds);

This operation is used by applications that wish to remove credentials that were put on the own_credentials list by virtue of the PrincipalAuthenticator. This operation does not manipluate or destroy the objects in any way. The given Credentials object (as opposed to one produced by a copy operation) must reside on the list of the Current object's own_credentials, otherwise a CORBA::BAD_PARAM exception is raised.



Generated by the ORBacus IDL-to-HTML translator (non-commercial)