io.confluent.security.auth.store.cache

Interface AccessRuleStore

All Known Implementing Classes:

ScopeAccessRuleStore, ScopePrincipalAccessRuleStore

public interface AccessRuleStore

Method Summary

Modifier and Type	Method and Description
void	add(io.confluent.security.authorizer.Scope scope, org.apache.kafka.common.security.auth.KafkaPrincipal principal, Map<io.confluent.security.authorizer.ResourcePattern,Set<io.confluent.security.authorizer.AccessRule>> rules)
void	addMatchingRules(io.confluent.security.authorizer.provider.ResourceAuthorizeRules matchingRules, io.confluent.security.authorizer.Scope resourceScope, Set<org.apache.kafka.common.security.auth.KafkaPrincipal> principals, String host, io.confluent.security.roledefinitions.Operation operation, io.confluent.security.roledefinitions.ResourceType resourceType)
io.confluent.security.authorizer.provider.AuthorizeRule	findMatchingRule(Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals, String host, io.confluent.security.authorizer.Action action)
NavigableMap<io.confluent.security.authorizer.ResourcePattern,Set<io.confluent.security.authorizer.AccessRule>>	get(io.confluent.security.authorizer.Scope scope)
Set<io.confluent.security.authorizer.Scope>	knownScopes()
Set<io.confluent.security.authorizer.AccessRule>	remove(io.confluent.security.authorizer.Scope scope, io.confluent.security.authorizer.ResourcePattern resourcePattern)
void	removeDeletedAccessRules(io.confluent.security.authorizer.Scope scope, org.apache.kafka.common.security.auth.KafkaPrincipal principal, Map<io.confluent.security.authorizer.ResourcePattern,Set<io.confluent.security.authorizer.AccessRule>> keepRules)
long	ruleCount()
void	update(io.confluent.security.authorizer.Scope scope, io.confluent.security.authorizer.ResourcePattern resourcePattern, Set<io.confluent.security.authorizer.AccessRule> rules)

Method Detail

knownScopes

Set<io.confluent.security.authorizer.Scope> knownScopes()

get

NavigableMap<io.confluent.security.authorizer.ResourcePattern,Set<io.confluent.security.authorizer.AccessRule>> get(io.confluent.security.authorizer.Scope scope)

add

void add(io.confluent.security.authorizer.Scope scope,
         org.apache.kafka.common.security.auth.KafkaPrincipal principal,
         Map<io.confluent.security.authorizer.ResourcePattern,Set<io.confluent.security.authorizer.AccessRule>> rules)

update

void update(io.confluent.security.authorizer.Scope scope,
            io.confluent.security.authorizer.ResourcePattern resourcePattern,
            Set<io.confluent.security.authorizer.AccessRule> rules)

remove

Set<io.confluent.security.authorizer.AccessRule> remove(io.confluent.security.authorizer.Scope scope,
                                                        io.confluent.security.authorizer.ResourcePattern resourcePattern)

findMatchingRule

io.confluent.security.authorizer.provider.AuthorizeRule findMatchingRule(Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals,
                                                                         String host,
                                                                         io.confluent.security.authorizer.Action action)

addMatchingRules

void addMatchingRules(io.confluent.security.authorizer.provider.ResourceAuthorizeRules matchingRules,
                      io.confluent.security.authorizer.Scope resourceScope,
                      Set<org.apache.kafka.common.security.auth.KafkaPrincipal> principals,
                      String host,
                      io.confluent.security.roledefinitions.Operation operation,
                      io.confluent.security.roledefinitions.ResourceType resourceType)

ruleCount

long ruleCount()

removeDeletedAccessRules

void removeDeletedAccessRules(io.confluent.security.authorizer.Scope scope,
                              org.apache.kafka.common.security.auth.KafkaPrincipal principal,
                              Map<io.confluent.security.authorizer.ResourcePattern,Set<io.confluent.security.authorizer.AccessRule>> keepRules)