|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Objectorg.apache.hadoop.io.VersionedWritable
org.apache.hadoop.hbase.security.access.Permission
org.apache.hadoop.hbase.security.access.TablePermission
public class TablePermission
Represents an authorization for access for the given actions, optionally
restricted to the given column family or column qualifier, over the
given table. If the family property is null, it implies
full table access.
| Nested Class Summary |
|---|
| Nested classes/interfaces inherited from class org.apache.hadoop.hbase.security.access.Permission |
|---|
Permission.Action |
| Field Summary |
|---|
| Fields inherited from class org.apache.hadoop.hbase.security.access.Permission |
|---|
ACTION_BY_CODE, actions, VERSION |
| Constructor Summary | |
|---|---|
TablePermission()
Nullary constructor for Writable, do not use |
|
TablePermission(String namespace,
byte[] actionCodes)
Creates a new permission for the given namespace, allowing the actions matching the provided byte codes to be performed. |
|
TablePermission(String namespace,
Permission.Action... assigned)
Create a new permission for the given namespace, allowing the given actions. |
|
TablePermission(String namespace,
TableName table,
byte[] family,
byte[] qualifier,
byte[] actionCodes)
Creates a new permission for the given namespace or table, family and column qualifier, allowing the actions matching the provided byte codes to be performed. |
|
TablePermission(String namespace,
TableName table,
byte[] family,
byte[] qualifier,
Permission.Action... assigned)
Creates a new permission for the given namespace or table, restricted to the given column family and qualifer, allowing the assigned actions to be performed. |
|
TablePermission(TableName table,
byte[] family,
byte[] qualifier,
byte[] actionCodes)
Creates a new permission for the given table, family and column qualifier, allowing the actions matching the provided byte codes to be performed. |
|
TablePermission(TableName table,
byte[] family,
byte[] qualifier,
Permission.Action... assigned)
Creates a new permission for the given table, restricted to the given column family and qualifer, allowing the assigned actions to be performed. |
|
TablePermission(TableName table,
byte[] family,
Permission.Action... assigned)
Create a new permission for the given table and (optionally) column family, allowing the given actions. |
|
| Method Summary | |
|---|---|
boolean |
equals(Object obj)
|
byte[] |
getFamily()
|
String |
getNamespace()
|
byte[] |
getQualifier()
|
TableName |
getTable()
|
boolean |
hasFamily()
|
int |
hashCode()
|
boolean |
hasNamespace()
|
boolean |
hasQualifier()
|
boolean |
hasTable()
|
boolean |
implies(String namespace,
Permission.Action action)
Checks that a given table operation is authorized by this permission instance. |
boolean |
implies(TableName table,
byte[] family,
byte[] qualifier,
Permission.Action action)
Checks that a given table operation is authorized by this permission instance. |
boolean |
implies(TableName table,
KeyValue kv,
Permission.Action action)
Checks if this permission grants access to perform the given action on the given table and key value. |
boolean |
matchesFamily(TableName table,
byte[] family,
Permission.Action action)
Returns true if this permission matches the given column
family at least. |
boolean |
matchesFamilyQualifier(TableName table,
byte[] family,
byte[] qualifier,
Permission.Action action)
Returns if the given permission matches the given qualifier. |
void |
readFields(DataInput in)
|
String |
toString()
|
void |
write(DataOutput out)
|
| Methods inherited from class org.apache.hadoop.hbase.security.access.Permission |
|---|
getActions, getVersion, implies |
| Methods inherited from class java.lang.Object |
|---|
clone, finalize, getClass, notify, notifyAll, wait, wait, wait |
| Constructor Detail |
|---|
public TablePermission()
public TablePermission(TableName table,
byte[] family,
Permission.Action... assigned)
table - the tablefamily - the family, can be null if a global permission on the tableassigned - the list of allowed actions
public TablePermission(TableName table,
byte[] family,
byte[] qualifier,
Permission.Action... assigned)
table - the tablefamily - the family, can be null if a global permission on the tableassigned - the list of allowed actions
public TablePermission(TableName table,
byte[] family,
byte[] qualifier,
byte[] actionCodes)
table - the tablefamily - the family, can be null if a global permission on the tableactionCodes - the list of allowed action codes
public TablePermission(String namespace,
TableName table,
byte[] family,
byte[] qualifier,
Permission.Action... assigned)
namespace - table - the tablefamily - the family, can be null if a global permission on the tableassigned - the list of allowed actions
public TablePermission(String namespace,
TableName table,
byte[] family,
byte[] qualifier,
byte[] actionCodes)
namespace - table - the tablefamily - the family, can be null if a global permission on the tableactionCodes - the list of allowed action codes
public TablePermission(String namespace,
byte[] actionCodes)
namespace - actionCodes - the list of allowed action codes
public TablePermission(String namespace,
Permission.Action... assigned)
namespace - assigned - the list of allowed actions| Method Detail |
|---|
public boolean hasTable()
public TableName getTable()
public boolean hasFamily()
public byte[] getFamily()
public boolean hasQualifier()
public byte[] getQualifier()
public boolean hasNamespace()
public String getNamespace()
public boolean implies(String namespace,
Permission.Action action)
namespace - the namespace where the operation is being performedaction - the action being requested
true if the action within the given scope is allowed
by this permission, false
public boolean implies(TableName table,
byte[] family,
byte[] qualifier,
Permission.Action action)
table - the table where the operation is being performedfamily - the column family to which the operation is restricted,
if null implies "all"qualifier - the column qualifier to which the action is restricted,
if null implies "all"action - the action being requested
true if the action within the given scope is allowed
by this permission, false
public boolean implies(TableName table,
KeyValue kv,
Permission.Action action)
table - the table on which the operation is being performedkv - the KeyValue on which the operation is being requestedaction - the action requested
true if the action is allowed over the given scope
by this permission, otherwise false
public boolean matchesFamily(TableName table,
byte[] family,
Permission.Action action)
true if this permission matches the given column
family at least. This only indicates a partial match against the table
and column family, however, and does not guarantee that implies() for the
column same family would return true. In the case of a
column-qualifier specific permission, for example, implies() would still
return false.
public boolean matchesFamilyQualifier(TableName table,
byte[] family,
byte[] qualifier,
Permission.Action action)
table - the table name to matchfamily - the column family to matchqualifier - the qualifier name to matchaction - the action requested
true if the table, family and qualifier match,
otherwise falsepublic boolean equals(Object obj)
equals in class Permissionpublic int hashCode()
hashCode in class Permissionpublic String toString()
toString in class Permission
public void readFields(DataInput in)
throws IOException
readFields in interface org.apache.hadoop.io.WritablereadFields in class PermissionIOException
public void write(DataOutput out)
throws IOException
write in interface org.apache.hadoop.io.Writablewrite in class PermissionIOException
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||