1. /*

  2.  * @(#)IdentityScope.java	1.45 01/11/29

  3.  *

  4.  * Copyright 2002 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7.  

  8. package java.security;

  9. 

  10. import java.io.Serializable;

  11. import java.util.Enumeration;

  12. import java.util.Properties;

  13. 

  14. /** 

  15.  * <p>This class represents a scope for identities. It is an Identity 

  16.  * itself, and therefore has a name and can have a scope. It can also 

  17.  * optionally have a public key and associated certificates.

  18.  *

  19.  * <p>An IdentityScope can contain Identity objects of all kinds, including

  20.  * Signers. All types of Identity objects can be retrieved, added, and 

  21.  * removed using the same methods. Note that it is possible, and in fact

  22.  * expected, that different types of identity scopes will

  23.  * apply different policies for their various operations on the

  24.  * various types of Identities.

  25.  *

  26.  * <p>There is a one-to-one mapping between keys and identities, and 

  27.  * there can only be one copy of one key per scope. For example, suppose

  28.  * <b>Acme Software, Inc</b> is a software publisher known to a user.

  29.  * Suppose it is an Identity, that is, it has a public key, and a set of

  30.  * associated certificates. It is named in the scope using the name 

  31.  * "Acme Software". No other named Identity in the scope has the same 

  32.  * public  key. Of course, none has the same name as well.

  33.  *

  34.  * @see Identity

  35.  * @see Signer

  36.  * @see Principal

  37.  * @see Key

  38.  *

  39.  * @version 1.45 01/11/29

  40.  * @author Benjamin Renaud

  41.  *

  42.  * @deprecated This class is no longer used. Its functionality has been

  43.  * replaced by <code>java.security.KeyStore</code>, the

  44.  * <code>java.security.cert</code> package, and

  45.  * <code>java.security.Principal</code>.

  46.  */

  47. 

  48. public abstract 

  49. class IdentityScope extends Identity {

  50. 

  51.     /* The system's scope */

  52.     private static IdentityScope scope;

  53. 

  54.     // initialize the system scope

  55.     private static void initializeSystemScope() {

  56. 

  57. 	String classname = (String) AccessController.doPrivileged(

  58. 						       new PrivilegedAction() {

  59. 	    public Object run() {

  60. 		return Security.getProperty("system.scope");

  61. 	    }

  62. 	});

  63. 

  64. 	if (classname == null) {

  65. 	    return;

  66. 

  67.         } else {

  68. 

  69. 	    try {

  70. 		Class.forName(classname);

  71. 	    } catch (ClassNotFoundException e) {

  72. 		Security.error("unable to establish a system scope from " +

  73. 			       classname);

  74. 		e.printStackTrace();

  75. 	    }

  76. 	}

  77.     }

  78. 

  79.     /**

  80.      * This constructor is used for serialization only and should not

  81.      * be used by subclasses.

  82.      */

  83.     protected IdentityScope() {

  84. 	this("restoring...");

  85.     }

  86. 

  87.     /**

  88.      * Constructs a new identity scope with the specified name.

  89.      *

  90.      * @param name the scope name.

  91.      */

  92.     public IdentityScope(String name) {

  93. 	super(name);

  94.     }

  95. 

  96.     /**

  97.      * Constructs a new identity scope with the specified name and scope.

  98.      * 

  99.      * @param name the scope name.

  100.      * @param scope the scope for the new identity scope.

  101.      * 

  102.      * @exception KeyManagementException if there is already an identity 

  103.      * with the same name in the scope.

  104.      */

  105.     public IdentityScope(String name, IdentityScope scope) 

  106.     throws KeyManagementException {

  107. 	super(name, scope);

  108.     }

  109. 

  110.     /**

  111.      * Returns the system's identity scope.

  112.      * 

  113.      * @return the system's identity scope.

  114.      */

  115.     public static IdentityScope getSystemScope() {

  116. 	if (scope == null) {

  117. 	    initializeSystemScope();

  118. 	}

  119. 	return scope;

  120.     }

  121. 

  122. 

  123.     /**

  124.      * Sets the system's identity scope.

  125.      *

  126.      * <p>First, if there is a security manager, its 

  127.      * <code>checkSecurityAccess</code> 

  128.      * method is called with <code>"setSystemScope"</code> 

  129.      * as its argument to see if it's ok to set the identity scope. 

  130.      * 

  131.      * @param scope the scope to set.

  132.      * 

  133.      * @exception  SecurityException  if a security manager exists and its  

  134.      * <code>checkSecurityAccess</code> method doesn't allow 

  135.      * setting the identity scope.

  136.      * 

  137.      * @see SecurityManager#checkSecurityAccess

  138.      */

  139.     protected static void setSystemScope(IdentityScope scope) {

  140. 	check("setSystemScope");

  141. 	IdentityScope.scope = scope;

  142.     }

  143. 

  144.     /**

  145.      * Returns the number of identities within this identity scope.

  146.      * 

  147.      * @return the number of identities within this identity scope.

  148.      */

  149.     public abstract int size();

  150. 

  151.     /**

  152.      * Returns the identity in this scope with the specified name (if any).

  153.      * 

  154.      * @param name the name of the identity to be retrieved.

  155.      * 

  156.      * @return the identity named <code>name</code>, or null if there are

  157.      * no identities named <code>name</code> in this scope.

  158.      */

  159.     public abstract Identity getIdentity(String name);

  160. 

  161.     /**

  162.      * Retrieves the identity whose name is the same as that of the 

  163.      * specified principal. (Note: Identity implements Principal.)

  164.      *

  165.      * @param principal the principal corresponding to the identity

  166.      * to be retrieved.

  167.      * 

  168.      * @return the identity whose name is the same as that of the 

  169.      * principal, or null if there are no identities of the same name 

  170.      * in this scope.

  171.      */

  172.     public Identity getIdentity(Principal principal) {

  173. 	return getIdentity(principal.getName());

  174.     }

  175. 

  176.     /**

  177.      * Retrieves the identity with the specified public key.

  178.      *

  179.      * @param key the public key for the identity to be returned.

  180.      *

  181.      * @return the identity with the given key, or null if there are

  182.      * no identities in this scope with that key.

  183.      */

  184.     public abstract Identity getIdentity(PublicKey key);

  185. 

  186.     /**

  187.      * Adds an identity to this identity scope.

  188.      *

  189.      * @param identity the identity to be added.

  190.      *

  191.      * @exception KeyManagementException if the identity is not

  192.      * valid, a name conflict occurs, another identity has the same

  193.      * public key as the identity being added, or another exception

  194.      * occurs. */

  195.     public abstract void addIdentity(Identity identity) 

  196.     throws KeyManagementException;

  197. 

  198.     /**

  199.      * Removes an identity from this identity scope.

  200.      *

  201.      * @param identity the identity to be removed.

  202.      *

  203.      * @exception KeyManagementException if the identity is missing,

  204.      * or another exception occurs.

  205.      */

  206.     public abstract void removeIdentity(Identity identity) 

  207.     throws KeyManagementException;

  208. 

  209.     /**

  210.      * Returns an enumeration of all identities in this identity scope.

  211.      * 

  212.      * @return an enumeration of all identities in this identity scope.

  213.      */

  214.     public abstract Enumeration identities();

  215. 

  216.     /**

  217.      * Returns a string representation of this identity scope, including

  218.      * its name, its scope name, and the number of identities in this

  219.      * identity scope.

  220.      *

  221.      * @return a string representation of this identity scope.

  222.      */

  223.     public String toString() {

  224. 	return super.toString() + "[" + size() + "]";

  225.     }

  226. 

  227.     private static void check(String directive) {

  228. 	SecurityManager security = System.getSecurityManager();

  229. 	if (security != null) {

  230. 	    security.checkSecurityAccess(directive);

  231. 	}

  232.     }

  233. 

  234. }