external-software/github_OpenIdentityPlatform_OpenDJ.git

			@@ -230,24 +230,8 @@



			/*
			* TODO Rename this method. Needs to be changed in SearchOperation. I
			* find the name of the filterEntry method to be misleading because it
			* works on a search operation but has nothing to do with the search
			* filter. Something like "removeDisallowedAttributes" would be
			* clearer.
			*/

			/**
			* Checks access on each attribute in an entry. It removes those
			* attributes that fail access check.
			*
			* @param operation
			* The search operation class containing information to check
			* access on.
			* @param entry
			* The entry containing the attributes.
			* @return The entry to return minus filtered attributes.
			* {@inheritDoc}
			*/
			@Override
			public SearchResultEntry filterEntry(SearchOperation operation,
			@@ -284,6 +268,19 @@
			/**
			* {@inheritDoc}
			*/
			@Override
			public SearchResultEntry filterEntry(Operation operation, Entry entry)
			{
			AciLDAPOperationContainer operationContainer =
			new AciLDAPOperationContainer(operation, (ACI_READ), entry);
			return accessAllowedAttrs(operationContainer);
			}



			/**
			* {@inheritDoc}
			*/
			@Override()
			public void finalizeAccessControlHandler()
			{
			@@ -561,6 +558,20 @@
			* {@inheritDoc}
			*/
			@Override
			public boolean isAllowed(Operation operation, Entry entry,
			SearchFilter filter) throws DirectoryException
			{
			AciLDAPOperationContainer operationContainer =
			new AciLDAPOperationContainer(operation, (ACI_READ), entry);
			return testFilter(operationContainer, filter);
			}



			/**
			* {@inheritDoc}
			*/
			@Override
			public boolean mayProxy(Entry proxyUser, Entry proxiedUser,
			Operation op)
			{