WebLogic Server 6.0 Code Examples, BEA Systems, Inc.

examples.security.audit
Class LogAuditProvider

java.lang.Object
  |
  +--examples.security.audit.LogAuditProvider
All Implemented Interfaces:
weblogic.security.audit.AuditProvider

public class LogAuditProvider
extends java.lang.Object
implements weblogic.security.audit.AuditProvider

Simple implementation of the audit SPI. This class just dumps the pertinent information in the server log file. It should be straightforward to write an alternate implementation that logs events to an RDBMS.

Author:
Copyright (c) 1999-2000 by BEA Systems, Inc. All Rights Reserved.

Field Summary
protected  weblogic.logging.LogOutputStream log
           
 
Constructor Summary
LogAuditProvider()
          No-arg constructor, as required by the audit SPI.
 
Method Summary
 void authenticateUser(java.lang.String subsystem, weblogic.security.acl.UserInfo info, weblogic.security.acl.User result)
           
 void certificateInvalid(java.lang.String subsystem, java.lang.Object source, weblogic.security.X509 cert)
           
 void checkPermission(java.lang.String subsystem, java.security.acl.Acl acl, java.security.Principal principal, java.security.acl.Permission permission, boolean result)
           
protected  void dump(java.lang.String subsystem, java.lang.String op, java.lang.String message)
           
protected  boolean filterAuthenticateUser(java.lang.String subsystem, weblogic.security.acl.UserInfo info, weblogic.security.acl.User result)
          You can override this method in a subclass if you want to conditionally filter authenticateUser events.
protected  boolean filterCertificateInvalid(java.lang.String subsystem, java.lang.Object source, weblogic.security.X509 cert)
          You can override this method in a subclass if you want to conditionally filter certificateInvalid events.
protected  boolean filterCheckPermission(java.lang.String subsystem, java.security.acl.Acl acl, java.security.Principal principal, java.security.acl.Permission permission, boolean result)
          You can override this method in a subclass if you want to conditionally filter checkPermission events.
protected  boolean filterRootCAInvalid(java.lang.String subsystem, java.lang.Object source, weblogic.security.X509 cert)
          You can override this method in a subclass if you want to conditionally filter rootCAInvalid events.
 void rootCAInvalid(java.lang.String subsystem, java.lang.Object source, weblogic.security.X509 cert)
           
 
Methods inherited from class java.lang.Object
, clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

log

protected weblogic.logging.LogOutputStream log
Constructor Detail

LogAuditProvider

public LogAuditProvider()
No-arg constructor, as required by the audit SPI.
Method Detail

authenticateUser

public void authenticateUser(java.lang.String subsystem,
                             weblogic.security.acl.UserInfo info,
                             weblogic.security.acl.User result)
Specified by:
authenticateUser in interface weblogic.security.audit.AuditProvider

certificateInvalid

public void certificateInvalid(java.lang.String subsystem,
                               java.lang.Object source,
                               weblogic.security.X509 cert)
Specified by:
certificateInvalid in interface weblogic.security.audit.AuditProvider

checkPermission

public void checkPermission(java.lang.String subsystem,
                            java.security.acl.Acl acl,
                            java.security.Principal principal,
                            java.security.acl.Permission permission,
                            boolean result)
Specified by:
checkPermission in interface weblogic.security.audit.AuditProvider

dump

protected void dump(java.lang.String subsystem,
                    java.lang.String op,
                    java.lang.String message)

filterAuthenticateUser

protected boolean filterAuthenticateUser(java.lang.String subsystem,
                                         weblogic.security.acl.UserInfo info,
                                         weblogic.security.acl.User result)
You can override this method in a subclass if you want to conditionally filter authenticateUser events.
Returns:
Whether to log this event

filterCertificateInvalid

protected boolean filterCertificateInvalid(java.lang.String subsystem,
                                           java.lang.Object source,
                                           weblogic.security.X509 cert)
You can override this method in a subclass if you want to conditionally filter certificateInvalid events.
Returns:
Whether to log this event

filterCheckPermission

protected boolean filterCheckPermission(java.lang.String subsystem,
                                        java.security.acl.Acl acl,
                                        java.security.Principal principal,
                                        java.security.acl.Permission permission,
                                        boolean result)
You can override this method in a subclass if you want to conditionally filter checkPermission events.
Returns:
Whether to log this event

filterRootCAInvalid

protected boolean filterRootCAInvalid(java.lang.String subsystem,
                                      java.lang.Object source,
                                      weblogic.security.X509 cert)
You can override this method in a subclass if you want to conditionally filter rootCAInvalid events.
Returns:
Whether to log this event

rootCAInvalid

public void rootCAInvalid(java.lang.String subsystem,
                          java.lang.Object source,
                          weblogic.security.X509 cert)
Specified by:
rootCAInvalid in interface weblogic.security.audit.AuditProvider

Documentation is available at
http://e-docs.bea.com/wls/docs60

Copyright © 2000 BEA Systems, Inc. All Rights Reserved.