1. /*

  2.  * @(#)AclEntry.java	1.13 01/11/29

  3.  *

  4.  * Copyright 2002 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7. 

  8. package java.security.acl;

  9. 

  10. import java.util.Enumeration;

  11. import java.security.Principal;

  12. 

  13. /**

  14.  * This is the interface used for representing one entry in an Access

  15.  * Control List (ACL).<p>

  16.  *

  17.  * An ACL can be thought of as a data structure with multiple ACL entry

  18.  * objects. Each ACL entry object contains a set of permissions associated

  19.  * with a particular principal. (A principal represents an entity such as

  20.  * an individual user or a group). Additionally, each ACL entry is specified

  21.  * as being either positive or negative. If positive, the permissions are

  22.  * to be granted to the associated principal. If negative, the permissions

  23.  * are to be denied. Each principal can have at most one positive ACL entry

  24.  * and one negative entry; that is, multiple positive or negative ACL

  25.  * entries are not allowed for any principal.

  26.  *

  27.  * Note: ACL entries are by default positive. An entry becomes a

  28.  * negative entry only if the

  29.  * {@link setNegativePermissions() setNegativePermissions}

  30.  * method is called on it.

  31.  *

  32.  * @see java.security.acl.Acl

  33.  *

  34.  * @author 	Satish Dharmaraj

  35.  */

  36. public interface AclEntry extends Cloneable {

  37. 

  38.     /**

  39.      * Specifies the principal for which permissions are granted or denied

  40.      * by this ACL entry. If a principal was already set for this ACL entry,

  41.      * false is returned, otherwise true is returned.

  42.      *

  43.      * @param user the principal to be set for this entry.

  44.      *

  45.      * @return true if the principal is set, false if there was

  46.      * already a principal set for this entry.

  47.      */

  48.     public boolean setPrincipal(Principal user);

  49. 

  50.     /**

  51.      * Returns the principal for which permissions are granted or denied by

  52.      * this ACL entry. Returns null if there is no principal set for this

  53.      * entry yet.

  54.      *

  55.      * @return the principal associated with this entry.

  56.      */

  57.     public Principal getPrincipal();

  58. 

  59.     /**

  60.      * Sets this ACL entry to be a negative one. That is, the associated

  61.      * principal (e.g., a user or a group) will be denied the permission set

  62.      * specified in the entry.

  63.      *

  64.      * Note: ACL entries are by default positive. An entry becomes a

  65.      * negative entry only if this <code>setNegativePermissions</code>

  66.      * method is called on it.

  67.      */

  68.     public void setNegativePermissions();

  69. 

  70.     /**

  71.      * Returns true if this is a negative ACL entry (one denying the

  72.      * associated principal the set of permissions in the entry), false

  73.      * otherwise.

  74.      *

  75.      * @return true if this is a negative ACL entry, false if it's not.

  76.      */

  77.     public boolean isNegative();

  78. 

  79.     /**

  80.      * Adds the specified permission to this ACL entry. Note: An entry can

  81.      * have multiple permissions.

  82.      *

  83.      * @param permission the permission to be associated with

  84.      * the principal in this entry.

  85.      *

  86.      * @return true if the permission was added, false if the

  87.      * permission was already part of this entry's permission set.

  88.      */

  89.     public boolean addPermission(Permission permission);

  90. 

  91.     /**

  92.      * Removes the specified permission from this ACL entry.

  93.      *

  94.      * @param permission the permission to be removed from this entry.

  95.      *

  96.      * @return true if the permission is removed, false if the

  97.      * permission was not part of this entry's permission set.

  98.      */

  99.     public boolean removePermission(Permission permission);

  100. 

  101.     /**

  102.      * Checks if the specified permission is part of the

  103.      * permission set in this entry.

  104.      *

  105.      * @param permission the permission to be checked for.

  106.      *

  107.      * @return true if the permission is part of the

  108.      * permission set in this entry, false otherwise.

  109.      */

  110.     public boolean checkPermission(Permission permission);

  111. 

  112.     /**

  113.      * Returns an enumeration of the permissions in this ACL entry.

  114.      *

  115.      * @return an enumeration of the permissions in this ACL entry.

  116.      */

  117.     public Enumeration permissions();

  118. 

  119.     /**

  120.      * Returns a string representation of the contents of this ACL entry.

  121.      *

  122.      * @return a string representation of the contents.

  123.      */

  124.     public String toString();

  125. 

  126.     /**

  127.      * Clones this ACL entry.

  128.      *

  129.      * @return a clone of this ACL entry.

  130.      */

  131.     public Object clone();

  132. }

  133. 

  134.