This is archived documentation for an older version of Nirvana (v3.1). Please refer to documentation for the latest version if required.

Glossary:

Realm Access Control List (nACL)

Realm Access Control

When you have connected to a realm, and have a reference to an nRealmNode object, you can access an the realm's acl object. This object contains a list of nRealmACLEntry objects that represent a subject and a set permissions for various operations on a realm.

You can also, add, delete and modify acl entry objects. To obtain the realm acl object, simply call the following method from a realm node:

nACL acl = realm.getACLs();

Once you have the acl object, you can then add, remove or modify acl entries:

nRealmACLEntry

To find a specific acl entry from the realm acl, you can search the acl using the subject. For example, if I wished to change the default permissions for the *@* subject (i.e. the default permission for a realm), I could use the following code:

nRealmACLEntry entry = acl.find("*@*");
entry.setFullPrivileges(false);
acl.replace(entry);
realm.setACLs(acl);

which would set the full privileges flag to false for the default subject.

For more information on the Nirvana Administration, please see the API documentation, and the administrator guide.

developers » nirvana » nirvana_3_1_archive » documentation » guide » adminapi » security

Realm Access Control List (nACL)