1. /*

  2.  * @(#)AclEntry.java	1.15 00/02/02

  3.  *

  4.  * Copyright 1996-2000 Sun Microsystems, Inc. All Rights Reserved.

  5.  * 

  6.  * This software is the proprietary information of Sun Microsystems, Inc.  

  7.  * Use is subject to license terms.

  8.  * 

  9.  */

  10. 

  11. package java.security.acl;

  12. 

  13. import java.util.Enumeration;

  14. import java.security.Principal;

  15. 

  16. /**

  17.  * This is the interface used for representing one entry in an Access

  18.  * Control List (ACL).<p>

  19.  *

  20.  * An ACL can be thought of as a data structure with multiple ACL entry

  21.  * objects. Each ACL entry object contains a set of permissions associated

  22.  * with a particular principal. (A principal represents an entity such as

  23.  * an individual user or a group). Additionally, each ACL entry is specified

  24.  * as being either positive or negative. If positive, the permissions are

  25.  * to be granted to the associated principal. If negative, the permissions

  26.  * are to be denied. Each principal can have at most one positive ACL entry

  27.  * and one negative entry; that is, multiple positive or negative ACL

  28.  * entries are not allowed for any principal.

  29.  *

  30.  * Note: ACL entries are by default positive. An entry becomes a

  31.  * negative entry only if the

  32.  * {@link #setNegativePermissions() setNegativePermissions}

  33.  * method is called on it.

  34.  *

  35.  * @see java.security.acl.Acl

  36.  *

  37.  * @author 	Satish Dharmaraj

  38.  */

  39. public interface AclEntry extends Cloneable {

  40. 

  41.     /**

  42.      * Specifies the principal for which permissions are granted or denied

  43.      * by this ACL entry. If a principal was already set for this ACL entry,

  44.      * false is returned, otherwise true is returned.

  45.      *

  46.      * @param user the principal to be set for this entry.

  47.      *

  48.      * @return true if the principal is set, false if there was

  49.      * already a principal set for this entry.

  50.      */

  51.     public boolean setPrincipal(Principal user);

  52. 

  53.     /**

  54.      * Returns the principal for which permissions are granted or denied by

  55.      * this ACL entry. Returns null if there is no principal set for this

  56.      * entry yet.

  57.      *

  58.      * @return the principal associated with this entry.

  59.      */

  60.     public Principal getPrincipal();

  61. 

  62.     /**

  63.      * Sets this ACL entry to be a negative one. That is, the associated

  64.      * principal (e.g., a user or a group) will be denied the permission set

  65.      * specified in the entry.

  66.      *

  67.      * Note: ACL entries are by default positive. An entry becomes a

  68.      * negative entry only if this <code>setNegativePermissions</code>

  69.      * method is called on it.

  70.      */

  71.     public void setNegativePermissions();

  72. 

  73.     /**

  74.      * Returns true if this is a negative ACL entry (one denying the

  75.      * associated principal the set of permissions in the entry), false

  76.      * otherwise.

  77.      *

  78.      * @return true if this is a negative ACL entry, false if it's not.

  79.      */

  80.     public boolean isNegative();

  81. 

  82.     /**

  83.      * Adds the specified permission to this ACL entry. Note: An entry can

  84.      * have multiple permissions.

  85.      *

  86.      * @param permission the permission to be associated with

  87.      * the principal in this entry.

  88.      *

  89.      * @return true if the permission was added, false if the

  90.      * permission was already part of this entry's permission set.

  91.      */

  92.     public boolean addPermission(Permission permission);

  93. 

  94.     /**

  95.      * Removes the specified permission from this ACL entry.

  96.      *

  97.      * @param permission the permission to be removed from this entry.

  98.      *

  99.      * @return true if the permission is removed, false if the

  100.      * permission was not part of this entry's permission set.

  101.      */

  102.     public boolean removePermission(Permission permission);

  103. 

  104.     /**

  105.      * Checks if the specified permission is part of the

  106.      * permission set in this entry.

  107.      *

  108.      * @param permission the permission to be checked for.

  109.      *

  110.      * @return true if the permission is part of the

  111.      * permission set in this entry, false otherwise.

  112.      */

  113.     public boolean checkPermission(Permission permission);

  114. 

  115.     /**

  116.      * Returns an enumeration of the permissions in this ACL entry.

  117.      *

  118.      * @return an enumeration of the permissions in this ACL entry.

  119.      */

  120.     public Enumeration permissions();

  121. 

  122.     /**

  123.      * Returns a string representation of the contents of this ACL entry.

  124.      *

  125.      * @return a string representation of the contents.

  126.      */

  127.     public String toString();

  128. 

  129.     /**

  130.      * Clones this ACL entry.

  131.      *

  132.      * @return a clone of this ACL entry.

  133.      */

  134.     public Object clone();

  135. }

  136. 

  137.