1. /*

  2.  * @(#)IdentityScope.java	1.49 03/01/23

  3.  *

  4.  * Copyright 2003 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7.  

  8. package java.security;

  9. 

  10. import java.io.Serializable;

  11. import java.util.Enumeration;

  12. import java.util.Properties;

  13. 

  14. /** 

  15.  * <p>This class represents a scope for identities. It is an Identity 

  16.  * itself, and therefore has a name and can have a scope. It can also 

  17.  * optionally have a public key and associated certificates.

  18.  *

  19.  * <p>An IdentityScope can contain Identity objects of all kinds, including

  20.  * Signers. All types of Identity objects can be retrieved, added, and 

  21.  * removed using the same methods. Note that it is possible, and in fact

  22.  * expected, that different types of identity scopes will

  23.  * apply different policies for their various operations on the

  24.  * various types of Identities.

  25.  *

  26.  * <p>There is a one-to-one mapping between keys and identities, and 

  27.  * there can only be one copy of one key per scope. For example, suppose

  28.  * <b>Acme Software, Inc</b> is a software publisher known to a user.

  29.  * Suppose it is an Identity, that is, it has a public key, and a set of

  30.  * associated certificates. It is named in the scope using the name 

  31.  * "Acme Software". No other named Identity in the scope has the same 

  32.  * public  key. Of course, none has the same name as well.

  33.  *

  34.  * @see Identity

  35.  * @see Signer

  36.  * @see Principal

  37.  * @see Key

  38.  *

  39.  * @version 1.49 03/01/23

  40.  * @author Benjamin Renaud

  41.  *

  42.  * @deprecated This class is no longer used. Its functionality has been

  43.  * replaced by <code>java.security.KeyStore</code>, the

  44.  * <code>java.security.cert</code> package, and

  45.  * <code>java.security.Principal</code>.

  46.  */

  47. 

  48. public abstract 

  49. class IdentityScope extends Identity {

  50. 

  51.     /* The system's scope */

  52.     private static IdentityScope scope;

  53. 

  54.     // initialize the system scope

  55.     private static void initializeSystemScope() {

  56. 

  57. 	String classname = (String) AccessController.doPrivileged(

  58. 						       new PrivilegedAction() {

  59. 	    public Object run() {

  60. 		return Security.getProperty("system.scope");

  61. 	    }

  62. 	});

  63. 

  64. 	if (classname == null) {

  65. 	    return;

  66. 

  67.         } else {

  68. 

  69. 	    try {

  70. 		Class.forName(classname);

  71. 	    } catch (ClassNotFoundException e) {

  72. 		Security.error("unable to establish a system scope from " +

  73. 			       classname);

  74. 		e.printStackTrace();

  75. 	    }

  76. 	}

  77.     }

  78. 

  79.     /**

  80.      * This constructor is used for serialization only and should not

  81.      * be used by subclasses.

  82.      */

  83.     protected IdentityScope() {

  84. 	this("restoring...");

  85.     }

  86. 

  87.     /**

  88.      * Constructs a new identity scope with the specified name.

  89.      *

  90.      * @param name the scope name.

  91.      */

  92.     public IdentityScope(String name) {

  93. 	super(name);

  94.     }

  95. 

  96.     /**

  97.      * Constructs a new identity scope with the specified name and scope.

  98.      * 

  99.      * @param name the scope name.

  100.      * @param scope the scope for the new identity scope.

  101.      * 

  102.      * @exception KeyManagementException if there is already an identity 

  103.      * with the same name in the scope.

  104.      */

  105.     public IdentityScope(String name, IdentityScope scope) 

  106.     throws KeyManagementException {

  107. 	super(name, scope);

  108.     }

  109. 

  110.     /**

  111.      * Returns the system's identity scope.

  112.      * 

  113.      * @return the system's identity scope.

  114.      * 

  115.      * @see #setSystemScope

  116.      */

  117.     public static IdentityScope getSystemScope() {

  118. 	if (scope == null) {

  119. 	    initializeSystemScope();

  120. 	}

  121. 	return scope;

  122.     }

  123. 

  124. 

  125.     /**

  126.      * Sets the system's identity scope.

  127.      *

  128.      * <p>First, if there is a security manager, its 

  129.      * <code>checkSecurityAccess</code> 

  130.      * method is called with <code>"setSystemScope"</code> 

  131.      * as its argument to see if it's ok to set the identity scope. 

  132.      * 

  133.      * @param scope the scope to set.

  134.      * 

  135.      * @exception  SecurityException  if a security manager exists and its  

  136.      * <code>checkSecurityAccess</code> method doesn't allow 

  137.      * setting the identity scope.

  138.      * 

  139.      * @see #getSystemScope

  140.      * @see SecurityManager#checkSecurityAccess

  141.      */

  142.     protected static void setSystemScope(IdentityScope scope) {

  143. 	check("setSystemScope");

  144. 	IdentityScope.scope = scope;

  145.     }

  146. 

  147.     /**

  148.      * Returns the number of identities within this identity scope.

  149.      * 

  150.      * @return the number of identities within this identity scope.

  151.      */

  152.     public abstract int size();

  153. 

  154.     /**

  155.      * Returns the identity in this scope with the specified name (if any).

  156.      * 

  157.      * @param name the name of the identity to be retrieved.

  158.      * 

  159.      * @return the identity named <code>name</code>, or null if there are

  160.      * no identities named <code>name</code> in this scope.

  161.      */

  162.     public abstract Identity getIdentity(String name);

  163. 

  164.     /**

  165.      * Retrieves the identity whose name is the same as that of the 

  166.      * specified principal. (Note: Identity implements Principal.)

  167.      *

  168.      * @param principal the principal corresponding to the identity

  169.      * to be retrieved.

  170.      * 

  171.      * @return the identity whose name is the same as that of the 

  172.      * principal, or null if there are no identities of the same name 

  173.      * in this scope.

  174.      */

  175.     public Identity getIdentity(Principal principal) {

  176. 	return getIdentity(principal.getName());

  177.     }

  178. 

  179.     /**

  180.      * Retrieves the identity with the specified public key.

  181.      *

  182.      * @param key the public key for the identity to be returned.

  183.      *

  184.      * @return the identity with the given key, or null if there are

  185.      * no identities in this scope with that key.

  186.      */

  187.     public abstract Identity getIdentity(PublicKey key);

  188. 

  189.     /**

  190.      * Adds an identity to this identity scope.

  191.      *

  192.      * @param identity the identity to be added.

  193.      *

  194.      * @exception KeyManagementException if the identity is not

  195.      * valid, a name conflict occurs, another identity has the same

  196.      * public key as the identity being added, or another exception

  197.      * occurs. */

  198.     public abstract void addIdentity(Identity identity) 

  199.     throws KeyManagementException;

  200. 

  201.     /**

  202.      * Removes an identity from this identity scope.

  203.      *

  204.      * @param identity the identity to be removed.

  205.      *

  206.      * @exception KeyManagementException if the identity is missing,

  207.      * or another exception occurs.

  208.      */

  209.     public abstract void removeIdentity(Identity identity) 

  210.     throws KeyManagementException;

  211. 

  212.     /**

  213.      * Returns an enumeration of all identities in this identity scope.

  214.      * 

  215.      * @return an enumeration of all identities in this identity scope.

  216.      */

  217.     public abstract Enumeration identities();

  218. 

  219.     /**

  220.      * Returns a string representation of this identity scope, including

  221.      * its name, its scope name, and the number of identities in this

  222.      * identity scope.

  223.      *

  224.      * @return a string representation of this identity scope.

  225.      */

  226.     public String toString() {

  227. 	return super.toString() + "[" + size() + "]";

  228.     }

  229. 

  230.     private static void check(String directive) {

  231. 	SecurityManager security = System.getSecurityManager();

  232. 	if (security != null) {

  233. 	    security.checkSecurityAccess(directive);

  234. 	}

  235.     }

  236. 

  237. }