Interface AccessRuleStore

All Known Implementing Classes:

ScopeAccessRuleStore, ScopePrincipalAccessRuleStore

public interface AccessRuleStore

Method Summary

Modifier and Type	Method	Description
void	add(io.confluent.security.authorizer.Scope scope, org.apache.kafka.common.security.auth.KafkaPrincipal principal, Map<io.confluent.security.authorizer.ResourcePattern, Set<io.confluent.security.authorizer.AccessRule>> rules)
void	addMatchingRules(io.confluent.security.authorizer.provider.ResourceAuthorizeRules matchingRules, io.confluent.security.authorizer.Scope resourceScope, Set<org.apache.kafka.common.security.auth.KafkaPrincipal> principals, String host, io.confluent.security.roledefinitions.Operation operation, io.confluent.security.roledefinitions.ResourceType resourceType)
io.confluent.security.authorizer.provider.AuthorizeRule	findMatchingRule(Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals, String host, io.confluent.security.authorizer.Action action)
NavigableMap<io.confluent.security.authorizer.ResourcePattern, Set<io.confluent.security.authorizer.AccessRule>>	get(io.confluent.security.authorizer.Scope scope)
Set<io.confluent.security.authorizer.Scope>	knownScopes()
Set<io.confluent.security.authorizer.AccessRule>	remove(io.confluent.security.authorizer.Scope scope, io.confluent.security.authorizer.ResourcePattern resourcePattern)
void	removeDeletedAccessRules(io.confluent.security.authorizer.Scope scope, org.apache.kafka.common.security.auth.KafkaPrincipal principal, Map<io.confluent.security.authorizer.ResourcePattern, Set<io.confluent.security.authorizer.AccessRule>> keepRules)
long	ruleCount()
void	update(io.confluent.security.authorizer.Scope scope, io.confluent.security.authorizer.ResourcePattern resourcePattern, Set<io.confluent.security.authorizer.AccessRule> rules)

Method Details

knownScopes

Set<io.confluent.security.authorizer.Scope> knownScopes()

get

NavigableMap<io.confluent.security.authorizer.ResourcePattern, Set<io.confluent.security.authorizer.AccessRule>> get(io.confluent.security.authorizer.Scope scope)

add

void add(io.confluent.security.authorizer.Scope scope,
 org.apache.kafka.common.security.auth.KafkaPrincipal principal,
 Map<io.confluent.security.authorizer.ResourcePattern, Set<io.confluent.security.authorizer.AccessRule>> rules)

update

void update(io.confluent.security.authorizer.Scope scope,
 io.confluent.security.authorizer.ResourcePattern resourcePattern,
 Set<io.confluent.security.authorizer.AccessRule> rules)

remove

Set<io.confluent.security.authorizer.AccessRule> remove(io.confluent.security.authorizer.Scope scope,
 io.confluent.security.authorizer.ResourcePattern resourcePattern)

findMatchingRule

io.confluent.security.authorizer.provider.AuthorizeRule findMatchingRule(Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals,
 String host,
 io.confluent.security.authorizer.Action action)

addMatchingRules

void addMatchingRules(io.confluent.security.authorizer.provider.ResourceAuthorizeRules matchingRules,
 io.confluent.security.authorizer.Scope resourceScope,
 Set<org.apache.kafka.common.security.auth.KafkaPrincipal> principals,
 String host,
 io.confluent.security.roledefinitions.Operation operation,
 io.confluent.security.roledefinitions.ResourceType resourceType)

ruleCount

long ruleCount()

removeDeletedAccessRules

void removeDeletedAccessRules(io.confluent.security.authorizer.Scope scope,
 org.apache.kafka.common.security.auth.KafkaPrincipal principal,
 Map<io.confluent.security.authorizer.ResourcePattern, Set<io.confluent.security.authorizer.AccessRule>> keepRules)