| Package | Description |
|---|---|
| org.apache.pulsar.broker.authentication |
Pulsar Client API.
|
| org.apache.pulsar.broker.authorization |
Pulsar Client API.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AuthenticationDataCommand |
class |
AuthenticationDataHttp |
class |
AuthenticationDataHttps |
| Modifier and Type | Method and Description |
|---|---|
AuthenticationDataSource |
OneStageAuthenticationState.getAuthDataSource() |
AuthenticationDataSource |
AuthenticationState.getAuthDataSource()
Return AuthenticationDataSource.
|
| Modifier and Type | Method and Description |
|---|---|
String |
AuthenticationProviderToken.authenticate(AuthenticationDataSource authData) |
String |
AuthenticationProviderBasic.authenticate(AuthenticationDataSource authData) |
String |
AuthenticationProviderTls.authenticate(AuthenticationDataSource authData) |
default String |
AuthenticationProvider.authenticate(AuthenticationDataSource authData)
Deprecated.
use and implement
AuthenticationProvider.authenticateAsync(AuthenticationDataSource) instead. |
String |
AuthenticationProviderList.authenticate(AuthenticationDataSource authData) |
default CompletableFuture<String> |
AuthenticationProvider.authenticateAsync(AuthenticationDataSource authData)
Validate the authentication for the given credentials with the specified authentication data.
|
String |
AuthenticationService.authenticateHttpRequest(javax.servlet.http.HttpServletRequest request,
AuthenticationDataSource authData) |
static String |
AuthenticationProviderToken.getToken(AuthenticationDataSource authData) |
| Modifier and Type | Method and Description |
|---|---|
CompletableFuture<Boolean> |
AuthorizationProvider.allowFunctionOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData)
Allow all function operations with in this namespace.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowFunctionOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
AuthorizationService.allowFunctionOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowFunctionOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
default Boolean |
AuthorizationProvider.allowNamespaceOperation(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
AuthenticationDataSource authData) |
default Boolean |
AuthorizationProvider.allowNamespaceOperation(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String originalRole,
String role,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
AuthenticationDataSource authData)
Deprecated.
|
CompletableFuture<Boolean> |
AuthorizationService.allowNamespaceOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
String role,
AuthenticationDataSource authData)
Grant authorization-action permission on a namespace to the given client.
|
CompletableFuture<Boolean> |
AuthorizationService.allowNamespaceOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.allowNamespaceOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
AuthenticationDataSource authData)
Check if a given role is allowed to execute a given operation on the namespace.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowNamespaceOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowNamespaceOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
AuthenticationDataSource authData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.allowNamespaceOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String originalRole,
String role,
org.apache.pulsar.common.policies.data.NamespaceOperation operation,
AuthenticationDataSource authData)
Deprecated.
|
default Boolean |
AuthorizationProvider.allowNamespacePolicyOperation(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String role,
AuthenticationDataSource authData) |
default Boolean |
AuthorizationProvider.allowNamespacePolicyOperation(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData)
Deprecated.
|
boolean |
AuthorizationService.allowNamespacePolicyOperation(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.allowNamespacePolicyOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String role,
AuthenticationDataSource authData)
Check if a given role is allowed to execute a given policy operation on the namespace.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowNamespacePolicyOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String role,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
AuthorizationService.allowNamespacePolicyOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String role,
AuthenticationDataSource authData)
Grant authorization-action permission on a namespace to the given client.
|
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowNamespacePolicyOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String role,
AuthenticationDataSource authData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.allowNamespacePolicyOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData)
Deprecated.
|
CompletableFuture<Boolean> |
AuthorizationService.allowNamespacePolicyOperationAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
AuthorizationProvider.allowSinkOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData)
Allow all sink operations with in this namespace.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowSinkOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
AuthorizationService.allowSinkOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowSinkOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
AuthorizationProvider.allowSourceOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData)
Allow all source operations with in this namespace.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowSourceOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
AuthorizationService.allowSourceOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowSourceOpsAsync(org.apache.pulsar.common.naming.NamespaceName namespaceName,
String role,
AuthenticationDataSource authenticationData) |
default Boolean |
AuthorizationProvider.allowTenantOperation(String tenantName,
String originalRole,
String role,
org.apache.pulsar.common.policies.data.TenantOperation operation,
AuthenticationDataSource authData)
Deprecated.
|
default Boolean |
AuthorizationProvider.allowTenantOperation(String tenantName,
String role,
org.apache.pulsar.common.policies.data.TenantOperation operation,
AuthenticationDataSource authData) |
boolean |
AuthorizationService.allowTenantOperation(String tenantName,
org.apache.pulsar.common.policies.data.TenantOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.allowTenantOperationAsync(String tenantName,
String originalRole,
String role,
org.apache.pulsar.common.policies.data.TenantOperation operation,
AuthenticationDataSource authData)
Deprecated.
|
default CompletableFuture<Boolean> |
AuthorizationProvider.allowTenantOperationAsync(String tenantName,
String role,
org.apache.pulsar.common.policies.data.TenantOperation operation,
AuthenticationDataSource authData)
Check if a given role is allowed to execute a given operation on the tenant.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowTenantOperationAsync(String tenantName,
String role,
org.apache.pulsar.common.policies.data.TenantOperation operation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowTenantOperationAsync(String tenantName,
String role,
org.apache.pulsar.common.policies.data.TenantOperation operation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
AuthorizationService.allowTenantOperationAsync(String tenantName,
org.apache.pulsar.common.policies.data.TenantOperation operation,
String role,
AuthenticationDataSource authData)
Grant authorization-action permission on a tenant to the given client.
|
CompletableFuture<Boolean> |
AuthorizationService.allowTenantOperationAsync(String tenantName,
org.apache.pulsar.common.policies.data.TenantOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
default Boolean |
AuthorizationProvider.allowTopicOperation(org.apache.pulsar.common.naming.TopicName topicName,
String originalRole,
String role,
org.apache.pulsar.common.policies.data.TopicOperation operation,
AuthenticationDataSource authData)
Deprecated.
|
default Boolean |
AuthorizationProvider.allowTopicOperation(org.apache.pulsar.common.naming.TopicName topicName,
String role,
org.apache.pulsar.common.policies.data.TopicOperation operation,
AuthenticationDataSource authData) |
Boolean |
AuthorizationService.allowTopicOperation(org.apache.pulsar.common.naming.TopicName topicName,
org.apache.pulsar.common.policies.data.TopicOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.allowTopicOperationAsync(org.apache.pulsar.common.naming.TopicName topic,
String originalRole,
String role,
org.apache.pulsar.common.policies.data.TopicOperation operation,
AuthenticationDataSource authData)
Deprecated.
|
default CompletableFuture<Boolean> |
AuthorizationProvider.allowTopicOperationAsync(org.apache.pulsar.common.naming.TopicName topic,
String role,
org.apache.pulsar.common.policies.data.TopicOperation operation,
AuthenticationDataSource authData)
Check if a given role is allowed to execute a given topic operation on the topic.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowTopicOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
org.apache.pulsar.common.policies.data.TopicOperation operation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowTopicOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
org.apache.pulsar.common.policies.data.TopicOperation operation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
AuthorizationService.allowTopicOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
org.apache.pulsar.common.policies.data.TopicOperation operation,
String role,
AuthenticationDataSource authData)
Grant authorization-action permission on a topic to the given client.
|
CompletableFuture<Boolean> |
AuthorizationService.allowTopicOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
org.apache.pulsar.common.policies.data.TopicOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
Boolean |
AuthorizationService.allowTopicPolicyOperation(org.apache.pulsar.common.naming.TopicName topicName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
default Boolean |
AuthorizationProvider.allowTopicPolicyOperation(org.apache.pulsar.common.naming.TopicName topicName,
String role,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
AuthorizationService.allowTopicPolicyOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String role,
AuthenticationDataSource authData)
Grant authorization-action permission on a topic to the given client.
|
CompletableFuture<Boolean> |
AuthorizationService.allowTopicPolicyOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
String originalRole,
String role,
AuthenticationDataSource authData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.allowTopicPolicyOperationAsync(org.apache.pulsar.common.naming.TopicName topic,
String role,
org.apache.pulsar.common.policies.data.PolicyName policy,
org.apache.pulsar.common.policies.data.PolicyOperation operation,
AuthenticationDataSource authData)
Check if a given role is allowed to execute a given topic operation on topic's policy.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.allowTopicPolicyOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
org.apache.pulsar.common.policies.data.PolicyName policyName,
org.apache.pulsar.common.policies.data.PolicyOperation policyOperation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.allowTopicPolicyOperationAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
org.apache.pulsar.common.policies.data.PolicyName policyName,
org.apache.pulsar.common.policies.data.PolicyOperation policyOperation,
AuthenticationDataSource authData) |
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.authorize(AuthenticationDataSource authenticationData,
Function<String,CompletableFuture<Boolean>> authorizeFunc) |
boolean |
AuthorizationService.canConsume(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData,
String subscription) |
CompletableFuture<Boolean> |
AuthorizationProvider.canConsumeAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData,
String subscription)
Check if the specified role has permission to receive messages from the specified fully qualified topic name.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.canConsumeAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData,
String subscription)
Check if the specified role has permission to receive messages from the specified fully qualified topic
name.
|
CompletableFuture<Boolean> |
AuthorizationService.canConsumeAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData,
String subscription)
Check if the specified role has permission to receive messages from the specified fully qualified topic name.
|
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.canConsumeAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData,
String subscription)
Check if the specified role has permission to receive messages from the specified fully qualified topic
name.
|
boolean |
AuthorizationService.canLookup(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check whether the specified role can perform a lookup for the specified topic.
|
CompletableFuture<Boolean> |
AuthorizationProvider.canLookupAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check whether the specified role can perform a lookup for the specified topic.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.canLookupAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check whether the specified role can perform a lookup for the specified topic.
|
CompletableFuture<Boolean> |
AuthorizationService.canLookupAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check whether the specified role can perform a lookup for the specified topic.
|
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.canLookupAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check whether the specified role can perform a lookup for the specified topic.
|
boolean |
AuthorizationService.canProduce(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
AuthorizationProvider.canProduceAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check if the specified role has permission to send messages to the specified fully qualified topic name.
|
CompletableFuture<Boolean> |
MultiRolesTokenAuthorizationProvider.canProduceAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check if the specified role has permission to send messages to the specified fully qualified topic name.
|
CompletableFuture<Boolean> |
AuthorizationService.canProduceAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check if the specified role has permission to send messages to the specified fully qualified topic name.
|
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.canProduceAsync(org.apache.pulsar.common.naming.TopicName topicName,
String role,
AuthenticationDataSource authenticationData)
Check if the specified role has permission to send messages to the specified fully qualified topic name.
|
CompletableFuture<Boolean> |
AuthorizationService.isSuperUser(String user,
AuthenticationDataSource authenticationData) |
default CompletableFuture<Boolean> |
AuthorizationProvider.isSuperUser(String role,
AuthenticationDataSource authenticationData,
ServiceConfiguration serviceConfiguration)
Check if specified role is a super user.
|
default CompletableFuture<Boolean> |
AuthorizationProvider.isTenantAdmin(String tenant,
String role,
org.apache.pulsar.common.policies.data.TenantInfo tenantInfo,
AuthenticationDataSource authenticationData)
Check if specified role is an admin of the tenant.
|
CompletableFuture<Boolean> |
AuthorizationService.isTenantAdmin(String tenant,
String role,
org.apache.pulsar.common.policies.data.TenantInfo tenantInfo,
AuthenticationDataSource authenticationData) |
CompletableFuture<Boolean> |
PulsarAuthorizationProvider.validateTenantAdminAccess(String tenantName,
String role,
AuthenticationDataSource authData) |
Copyright © 2017–2022 Apache Software Foundation. All rights reserved.