public abstract class AccessRule extends Object implements AuthorizePolicy
AuthorizePolicy.BrokerUser, AuthorizePolicy.NoMatchingRule, AuthorizePolicy.PolicyType, AuthorizePolicy.SuperUser
Modifier and Type | Field and Description |
---|---|
static String |
ALL_HOSTS |
static String |
GROUP_PRINCIPAL_TYPE |
static org.apache.kafka.common.security.auth.KafkaPrincipal |
WILDCARD_GROUP_PRINCIPAL |
static org.apache.kafka.common.security.auth.KafkaPrincipal |
WILDCARD_USER_PRINCIPAL |
ALLOW_ON_NO_RULE, DENY_ON_NO_RULE, NO_MATCHING_RULE
Constructor and Description |
---|
AccessRule(ResourcePattern resourcePattern,
org.apache.kafka.common.security.auth.KafkaPrincipal principal,
PermissionType permissionType,
String host,
Operation operation,
AuthorizePolicy.PolicyType policyType) |
AccessRule(ResourcePattern resourcePattern,
org.apache.kafka.common.security.auth.KafkaPrincipal principal,
PermissionType permissionType,
String host,
Operation operation,
AuthorizePolicy.PolicyType policyType,
Collection<org.apache.kafka.common.Uuid> clusterLinkIds) |
Modifier and Type | Method and Description |
---|---|
static org.apache.kafka.common.security.auth.KafkaPrincipal |
asBaseKafkaPrincipal(org.apache.kafka.common.security.auth.KafkaPrincipal principal) |
Collection<org.apache.kafka.common.Uuid> |
clusterLinkIds() |
boolean |
equals(Object o) |
int |
hashCode() |
String |
host() |
static boolean |
matches(org.apache.kafka.common.security.auth.KafkaPrincipal rulePrincipal,
String ruleHost,
Operation ruleOperation,
PermissionType rulePermissionType,
Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals,
String host,
Operation requestedOperation,
PermissionType permissionType) |
boolean |
matches(Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals,
String host,
Operation requestedOperation,
PermissionType permissionType) |
boolean |
matches(String host,
Operation requestedOperation,
PermissionType permissionType) |
static boolean |
matches(String ruleHost,
Operation ruleOperation,
PermissionType rulePermissionType,
String host,
Operation requestedOperation,
PermissionType permissionType) |
static Set<org.apache.kafka.common.security.auth.KafkaPrincipal> |
matchingPrincipals(org.apache.kafka.common.security.auth.KafkaPrincipal userPrincipal,
Collection<org.apache.kafka.common.security.auth.KafkaPrincipal> groupPrincipals,
org.apache.kafka.common.security.auth.KafkaPrincipal wildcardUserPrincipal,
org.apache.kafka.common.security.auth.KafkaPrincipal wildcardGroupPrincipal) |
Operation |
operation() |
PermissionType |
permissionType() |
AuthorizePolicy.PolicyType |
policyType() |
org.apache.kafka.common.security.auth.KafkaPrincipal |
principal() |
ResourcePattern |
resourcePattern() |
String |
toString() |
public static final String ALL_HOSTS
public static final org.apache.kafka.common.security.auth.KafkaPrincipal WILDCARD_USER_PRINCIPAL
public static final String GROUP_PRINCIPAL_TYPE
public static final org.apache.kafka.common.security.auth.KafkaPrincipal WILDCARD_GROUP_PRINCIPAL
public AccessRule(ResourcePattern resourcePattern, org.apache.kafka.common.security.auth.KafkaPrincipal principal, PermissionType permissionType, String host, Operation operation, AuthorizePolicy.PolicyType policyType)
public AccessRule(ResourcePattern resourcePattern, org.apache.kafka.common.security.auth.KafkaPrincipal principal, PermissionType permissionType, String host, Operation operation, AuthorizePolicy.PolicyType policyType, Collection<org.apache.kafka.common.Uuid> clusterLinkIds)
public ResourcePattern resourcePattern()
public org.apache.kafka.common.security.auth.KafkaPrincipal principal()
public PermissionType permissionType()
public String host()
public Operation operation()
public AuthorizePolicy.PolicyType policyType()
policyType
in interface AuthorizePolicy
public Collection<org.apache.kafka.common.Uuid> clusterLinkIds()
public boolean matches(Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals, String host, Operation requestedOperation, PermissionType permissionType)
public boolean matches(String host, Operation requestedOperation, PermissionType permissionType)
public static Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals(org.apache.kafka.common.security.auth.KafkaPrincipal userPrincipal, Collection<org.apache.kafka.common.security.auth.KafkaPrincipal> groupPrincipals, org.apache.kafka.common.security.auth.KafkaPrincipal wildcardUserPrincipal, org.apache.kafka.common.security.auth.KafkaPrincipal wildcardGroupPrincipal)
public static org.apache.kafka.common.security.auth.KafkaPrincipal asBaseKafkaPrincipal(org.apache.kafka.common.security.auth.KafkaPrincipal principal)
public static boolean matches(org.apache.kafka.common.security.auth.KafkaPrincipal rulePrincipal, String ruleHost, Operation ruleOperation, PermissionType rulePermissionType, Set<org.apache.kafka.common.security.auth.KafkaPrincipal> matchingPrincipals, String host, Operation requestedOperation, PermissionType permissionType)
public static boolean matches(String ruleHost, Operation ruleOperation, PermissionType rulePermissionType, String host, Operation requestedOperation, PermissionType permissionType)