From 139c40de1bc595ccd4b8ca952da9e2a37bc8a18e Mon Sep 17 00:00:00 2001
From: dugan <dugan@localhost>
Date: Wed, 05 Nov 2008 13:22:43 +0000
Subject: [PATCH] These fixes add confidentiality/integrity to the SASL GSSAPI and DIGEST-MD5 mechanisms. The issue links:

---
 opends/src/server/org/opends/server/api/AccessControlHandler.java |   17 +++++++++++++++++
 1 files changed, 17 insertions(+), 0 deletions(-)

diff --git a/opends/src/server/org/opends/server/api/AccessControlHandler.java b/opends/src/server/org/opends/server/api/AccessControlHandler.java
index b1a1d63..d0cb74e 100644
--- a/opends/src/server/org/opends/server/api/AccessControlHandler.java
+++ b/opends/src/server/org/opends/server/api/AccessControlHandler.java
@@ -331,5 +331,22 @@
                              SearchOperation searchOperation,
                              SearchResultReference searchReference);
 
+  /**
+   * Indicates if the specified proxy user entry can proxy, or act on
+   * the behalf of the specified proxied user entry. The operation
+   * parameter is used in the evaluation.
+   *
+   * @param proxyUser The entry to use as the proxy user.
+   * @param proxiedUser The entry to be proxied by the proxy user.
+   * @param operation The operation to use in the evaluation.
+   *
+   * @return  {@code true} if the access control configuration allows
+   *          the proxy user to proxy the proxied user, or
+   *          {@code false} if not.
+   */
+  public abstract boolean mayProxy(Entry proxyUser,
+                                   Entry proxiedUser,
+                                   Operation operation);
+
 }
 

--
Gitblit v1.10.0