1. /*

  2.  * @(#)IdentityScope.java	1.46 00/02/02

  3.  *

  4.  * Copyright 1996-2000 Sun Microsystems, Inc. All Rights Reserved.

  5.  * 

  6.  * This software is the proprietary information of Sun Microsystems, Inc.  

  7.  * Use is subject to license terms.

  8.  * 

  9.  */

  10.  

  11. package java.security;

  12. 

  13. import java.io.Serializable;

  14. import java.util.Enumeration;

  15. import java.util.Properties;

  16. 

  17. /** 

  18.  * <p>This class represents a scope for identities. It is an Identity 

  19.  * itself, and therefore has a name and can have a scope. It can also 

  20.  * optionally have a public key and associated certificates.

  21.  *

  22.  * <p>An IdentityScope can contain Identity objects of all kinds, including

  23.  * Signers. All types of Identity objects can be retrieved, added, and 

  24.  * removed using the same methods. Note that it is possible, and in fact

  25.  * expected, that different types of identity scopes will

  26.  * apply different policies for their various operations on the

  27.  * various types of Identities.

  28.  *

  29.  * <p>There is a one-to-one mapping between keys and identities, and 

  30.  * there can only be one copy of one key per scope. For example, suppose

  31.  * <b>Acme Software, Inc</b> is a software publisher known to a user.

  32.  * Suppose it is an Identity, that is, it has a public key, and a set of

  33.  * associated certificates. It is named in the scope using the name 

  34.  * "Acme Software". No other named Identity in the scope has the same 

  35.  * public  key. Of course, none has the same name as well.

  36.  *

  37.  * @see Identity

  38.  * @see Signer

  39.  * @see Principal

  40.  * @see Key

  41.  *

  42.  * @version 1.46 00/02/02

  43.  * @author Benjamin Renaud

  44.  *

  45.  * @deprecated This class is no longer used. Its functionality has been

  46.  * replaced by <code>java.security.KeyStore</code>, the

  47.  * <code>java.security.cert</code> package, and

  48.  * <code>java.security.Principal</code>.

  49.  */

  50. 

  51. public abstract 

  52. class IdentityScope extends Identity {

  53. 

  54.     /* The system's scope */

  55.     private static IdentityScope scope;

  56. 

  57.     // initialize the system scope

  58.     private static void initializeSystemScope() {

  59. 

  60. 	String classname = (String) AccessController.doPrivileged(

  61. 						       new PrivilegedAction() {

  62. 	    public Object run() {

  63. 		return Security.getProperty("system.scope");

  64. 	    }

  65. 	});

  66. 

  67. 	if (classname == null) {

  68. 	    return;

  69. 

  70.         } else {

  71. 

  72. 	    try {

  73. 		Class.forName(classname);

  74. 	    } catch (ClassNotFoundException e) {

  75. 		Security.error("unable to establish a system scope from " +

  76. 			       classname);

  77. 		e.printStackTrace();

  78. 	    }

  79. 	}

  80.     }

  81. 

  82.     /**

  83.      * This constructor is used for serialization only and should not

  84.      * be used by subclasses.

  85.      */

  86.     protected IdentityScope() {

  87. 	this("restoring...");

  88.     }

  89. 

  90.     /**

  91.      * Constructs a new identity scope with the specified name.

  92.      *

  93.      * @param name the scope name.

  94.      */

  95.     public IdentityScope(String name) {

  96. 	super(name);

  97.     }

  98. 

  99.     /**

  100.      * Constructs a new identity scope with the specified name and scope.

  101.      * 

  102.      * @param name the scope name.

  103.      * @param scope the scope for the new identity scope.

  104.      * 

  105.      * @exception KeyManagementException if there is already an identity 

  106.      * with the same name in the scope.

  107.      */

  108.     public IdentityScope(String name, IdentityScope scope) 

  109.     throws KeyManagementException {

  110. 	super(name, scope);

  111.     }

  112. 

  113.     /**

  114.      * Returns the system's identity scope.

  115.      * 

  116.      * @return the system's identity scope.

  117.      */

  118.     public static IdentityScope getSystemScope() {

  119. 	if (scope == null) {

  120. 	    initializeSystemScope();

  121. 	}

  122. 	return scope;

  123.     }

  124. 

  125. 

  126.     /**

  127.      * Sets the system's identity scope.

  128.      *

  129.      * <p>First, if there is a security manager, its 

  130.      * <code>checkSecurityAccess</code> 

  131.      * method is called with <code>"setSystemScope"</code> 

  132.      * as its argument to see if it's ok to set the identity scope. 

  133.      * 

  134.      * @param scope the scope to set.

  135.      * 

  136.      * @exception  SecurityException  if a security manager exists and its  

  137.      * <code>checkSecurityAccess</code> method doesn't allow 

  138.      * setting the identity scope.

  139.      * 

  140.      * @see SecurityManager#checkSecurityAccess

  141.      */

  142.     protected static void setSystemScope(IdentityScope scope) {

  143. 	check("setSystemScope");

  144. 	IdentityScope.scope = scope;

  145.     }

  146. 

  147.     /**

  148.      * Returns the number of identities within this identity scope.

  149.      * 

  150.      * @return the number of identities within this identity scope.

  151.      */

  152.     public abstract int size();

  153. 

  154.     /**

  155.      * Returns the identity in this scope with the specified name (if any).

  156.      * 

  157.      * @param name the name of the identity to be retrieved.

  158.      * 

  159.      * @return the identity named <code>name</code>, or null if there are

  160.      * no identities named <code>name</code> in this scope.

  161.      */

  162.     public abstract Identity getIdentity(String name);

  163. 

  164.     /**

  165.      * Retrieves the identity whose name is the same as that of the 

  166.      * specified principal. (Note: Identity implements Principal.)

  167.      *

  168.      * @param principal the principal corresponding to the identity

  169.      * to be retrieved.

  170.      * 

  171.      * @return the identity whose name is the same as that of the 

  172.      * principal, or null if there are no identities of the same name 

  173.      * in this scope.

  174.      */

  175.     public Identity getIdentity(Principal principal) {

  176. 	return getIdentity(principal.getName());

  177.     }

  178. 

  179.     /**

  180.      * Retrieves the identity with the specified public key.

  181.      *

  182.      * @param key the public key for the identity to be returned.

  183.      *

  184.      * @return the identity with the given key, or null if there are

  185.      * no identities in this scope with that key.

  186.      */

  187.     public abstract Identity getIdentity(PublicKey key);

  188. 

  189.     /**

  190.      * Adds an identity to this identity scope.

  191.      *

  192.      * @param identity the identity to be added.

  193.      *

  194.      * @exception KeyManagementException if the identity is not

  195.      * valid, a name conflict occurs, another identity has the same

  196.      * public key as the identity being added, or another exception

  197.      * occurs. */

  198.     public abstract void addIdentity(Identity identity) 

  199.     throws KeyManagementException;

  200. 

  201.     /**

  202.      * Removes an identity from this identity scope.

  203.      *

  204.      * @param identity the identity to be removed.

  205.      *

  206.      * @exception KeyManagementException if the identity is missing,

  207.      * or another exception occurs.

  208.      */

  209.     public abstract void removeIdentity(Identity identity) 

  210.     throws KeyManagementException;

  211. 

  212.     /**

  213.      * Returns an enumeration of all identities in this identity scope.

  214.      * 

  215.      * @return an enumeration of all identities in this identity scope.

  216.      */

  217.     public abstract Enumeration identities();

  218. 

  219.     /**

  220.      * Returns a string representation of this identity scope, including

  221.      * its name, its scope name, and the number of identities in this

  222.      * identity scope.

  223.      *

  224.      * @return a string representation of this identity scope.

  225.      */

  226.     public String toString() {

  227. 	return super.toString() + "[" + size() + "]";

  228.     }

  229. 

  230.     private static void check(String directive) {

  231. 	SecurityManager security = System.getSecurityManager();

  232. 	if (security != null) {

  233. 	    security.checkSecurityAccess(directive);

  234. 	}

  235.     }

  236. 

  237. }