
Jeeves Access Control Lists (ACL)
control access to web pages or resources used
at the server (like servlets). The ACLs
allow the administrator to specify
privileges associated for particular
principals or groups in a particular realm.
When the Jeeves Administration web page is opened and the
"acls" section on the left side is slected, the right side
comes up with three sections:
- To the left, a list of acls in the particular realm;
- To the right, the entries in a particular acl.
- At the bottom, some buttons and a choice
which shows the realm whose acls are
being displayed.
Selecting a Jeeves Realm
All ACLs and ACL entries on the right side belong to a
particular realm.
The realm is listed in a choice box beneath the "Delete ACL"
and "Delete ACL entry" buttons.
To select a realm, choose it using that
choice box. The list of acls displayed will now correspond
to that realm.
In Jeeves Alpha1.2, adding new realms is not supported.
Adding Jeeves ACLs
A new Jeeves ACLs is created as follows:
- Choose the realm under which the ACL should be
created.
- Choose the Add Acl button.
- A pop up box appears. Type the acl name in the
box and press the OK button. When the
acl is successfully added, the acl name will be
seen in the list of acls.
Adding entries to Jeeves Acls that Restrict Access on Users/Groups
A new entry is added to Jeeves Acls as follows:
- Select the acl to which you wish to add an entry.
- Choose the "Add User Entry" entry to add an entry that
restricts access based on users or groups.
- A pop up dialog appears. This dialog box has 4
UI items lined up on the top and two buttons on
the bottom. The pop-up box UI items are to be
used as follows:
- The first item is a choice between a "+" and "-".
"+" is the default. This specifies whether the entry
is a positive entry or a negative
entry. Positive entries give permissions to the specified principal
or group. Negative permissions takes away permissions for the
specified principal or group.
- The second item is a chice between "User" and "Group".
It indicates whether this ACL entry is for a group or for a
principal.
- The third item is a text field. A valid user or group in
the realm of the ACL should be entered here. Without an entry,
the pop up dialog "OK" button does not work.
- The fourth item is a check box item which specifies the
permissions to be given (or taken away) to the user or group
specified in the text field. At least one of "GET", "POST" or
"PUT" should be checked for the "OK" button to work in the
dialog box.
- The "OK" button at the bottom of the pop up box is enabled
when atleast one permission is checked and there is an entry in
the text field. When all the ACL entry fields are entered, the
"OK" button must be pressed to submit the request to add the
entry to the ACL. Upon successful completion, the ACL entry
will appear on the left hand side of the panel along with existing
entries.
- The "Cancel" button can be used to abort the ACL entry dialog.
Adding entries to Jeeves Acls that Restrict Access on Hosts
A new entry is added to Jeeves Acls as follows:
- Select the acl to which you wish to add an entry.
- Choose the "Add Host Entry" entry to add an entry that
restricts access based on hosts.
- A pop up dialog appears. Enter the name of the host either
as a name or as an IP address to which access must be restricted.
A Wild card (*) is allowed in host names: For example (*.sun.com).
Deleting Jeeves ACLs
A Jeeves ACL can be deleted:
- Select the acl which must be deleted
- Press the button labeled Delete Acl
Deleting entries from Jeeves Acls
An entry in the Jeeves ACL can be deleted:
- Select the acl from which an entry must be deleted.
- Select the entry that must be deleted from the acl.
- Press the button labeled Delete Acl entry
jeeves@java.sun.com
Last modified: 14 Aug 1996