Borland VisiBroker® 7.0 - Borland Technical Publications
Borland VisiBroker® 7.0 - Borland Technical Publications Borland VisiBroker® 7.0 - Borland Technical Publications
Authorization APIclass csiv2::ObjectAccessPolicyThis class represents the access policy from AccessPolicyManager.Include FileThe CSIV2Policies.h file should be included when you use this class.MethodsCORBA::StringSequence* getRequiredRoles (const char* method)Returned the list of required roles to access the method.ParametermethodDescriptionThe method name of interest.ReturnsA list of required roles to access the method.char* getRunAsRole (const char* method)Return the run-as role for the method. This method is not used in this release.ParametermethodDescriptionThe method name of interest.ReturnsThe run-as role configured to access the method.116 VisiBroker Security Guide
ChapterChapter12Security SPIfor C++Plugin Mechanism and SPIsThis section describes the Service Provider Interface (SPI) classes as defined forVisiSecure for C++. These SPI classes provide advanced security functionality andallow other security providers to plug their own implementation of security services intoVisiSecure for use within the Borland Deployment Platform.VisiSecure for C++ provides interfaces for you to plug in your own securityimplementations. In order for the ORB to find your implementation, all plugins must usethe REGISTER_CLASS macro provided by VisiSecure to register your classes. The name ofthe class must be specified in full together with its namespace upon registration.Namespace must be specified in a normalized form supported by VisiSecure, usingeither a '.' or '::' separated-string starting from the outer namespace. For example:MyNameSpace {class MyLoginModule {......}}Thus MyLoginModule shall be specified as either MyNameSpace.MyLoginModule orMyNameSpace::MyLoginModule.There are six pluggable components:■LoginModules: You can implement their own login models by extendingvbsec::LoginModule. To use the login module, you need to set it in the authenticationconfiguration file, just like any other login module.■■Callback handlers: You can implement their own callback by extendingvbsec::CallbackHandler. To use the callback, you need to set it in the authenticationconfiguration file, just like any other callback handler.Identity adapters, Mechanism adapters, and Authentication Mechanisms:these interfaces are provided for users to implement their own authenticationmechanisms and identity interpretations. IdentityAdaptor is to interpret identities,MechanismAdaptor is a specialized identity adaptor which also changes targetinformation. AuthenticationMechanism is a pluggable service to authenticate users.Chapter 12: Security SPI for C++ 117
- Page 71 and 72: Chapter6Making Secure Connections (
- Page 73 and 74: Steps to secure clients and servers
- Page 75 and 76: Examining SSL related informationEx
- Page 77 and 78: Chapter7Making Secure Connections (
- Page 79 and 80: Steps to secure clients and servers
- Page 81 and 82: Creating Custom PluginsLoginModules
- Page 83 and 84: ChapterChapter8Security for the Web
- Page 85 and 86: Security for the Apache web serverC
- Page 87 and 88: Enabling certificate passthrough to
- Page 89 and 90: Security for the Borland web contai
- Page 91 and 92: Three-tier authorization schemeNote
- Page 93 and 94: Chapter9Security Properties for Jav
- Page 95 and 96: Security Properties for JavaPropert
- Page 97 and 98: Chapter10Security Properties for C+
- Page 99 and 100: Security Properties for C++Property
- Page 101 and 102: Chapter11VisiSecure for C++ APIsCha
- Page 103 and 104: General APIUse this to login to the
- Page 105 and 106: General APISets the cipher suites t
- Page 107 and 108: General APIReturnsA set of the publ
- Page 109 and 110: SSL APISSL APIThis section explains
- Page 111 and 112: SSL APIclass CipherSuiteNameThis cl
- Page 113 and 114: SSL APIExceptionsCORBA::BAD_OPERATI
- Page 115 and 116: Certificate APICertificate APIThis
- Page 117 and 118: Certificate APIclass CORBAsec::X509
- Page 119 and 120: QoP APIQoP APIThe following section
- Page 121: Authorization APIAuthorization APIT
- Page 125 and 126: ProvidersProvidersTable 12.1Each pr
- Page 127 and 128: vbsec::CallbackHandlervbsec::Callba
- Page 129 and 130: vbsec::AuthenticationMechanismsMeth
- Page 131 and 132: vbsec::TargetReturnsExceptionsArgum
- Page 133 and 134: vbsec::Resourcevbsec::ResourceThe R
- Page 135 and 136: vbsec::AttributeCodecFor the provid
- Page 137 and 138: vbsec::PermissionCollectionvbsec::P
- Page 139 and 140: vbsec::InitOptionsvbsec::InitOption
- Page 141 and 142: IndexSymbols... ellipsis 4.defaultA
- Page 143 and 144: Iidentitiessetting up 36setting up
- Page 145 and 146: security (C++)AttributeCodec 119, 1
- Page 147 and 148: VisiSecure APIs (C++) 95VisiSecure
ChapterChapter12Security SPIfor C++Plugin Mechanism and SPIsThis section describes the Service Provider Interface (SPI) classes as defined forVisiSecure for C++. These SPI classes provide advanced security functionality andallow other security providers to plug their own implementation of security services intoVisiSecure for use within the <strong>Borland</strong> Deployment Platform.VisiSecure for C++ provides interfaces for you to plug in your own securityimplementations. In order for the ORB to find your implementation, all plugins must usethe REGISTER_CLASS macro provided by VisiSecure to register your classes. The name ofthe class must be specified in full together with its namespace upon registration.Namespace must be specified in a normalized form supported by VisiSecure, usingeither a '.' or '::' separated-string starting from the outer namespace. For example:MyNameSpace {class MyLoginModule {......}}Thus MyLoginModule shall be specified as either MyNameSpace.MyLoginModule orMyNameSpace::MyLoginModule.There are six pluggable components:■LoginModules: You can implement their own login models by extendingvbsec::LoginModule. To use the login module, you need to set it in the authenticationconfiguration file, just like any other login module.■■Callback handlers: You can implement their own callback by extendingvbsec::CallbackHandler. To use the callback, you need to set it in the authenticationconfiguration file, just like any other callback handler.Identity adapters, Mechanism adapters, and Authentication Mechanisms:these interfaces are provided for users to implement their own authenticationmechanisms and identity interpretations. IdentityAdaptor is to interpret identities,MechanismAdaptor is a specialized identity adaptor which also changes targetinformation. AuthenticationMechanism is a pluggable service to authenticate users.Chapter 12: Security SPI for C++ 117