Fortress Identity and Access Management LDAP SDK for Java 1.0.0-rc9

A standards based and open source Identity Access Management Java SDK for LDAP v3 compliant systems.

See:
          Description

Packages
com.jts.fortress This package contains public APIs that are used by Java programs to provide Identity and Access Management functionality.
com.jts.fortress.ant This package use Apache Ant to provide utility to provision fortress entities and policies using XML files.
com.jts.fortress.arbac This package provides data entities and APIs that adhere to ARBAC02 model to provide delegated administration capabilities.
com.jts.fortress.audit This package provides data entities and APIs to interrogate OpenLDAP's slapd access log to obtain fortress audit trail and historical events.
com.jts.fortress.cli Click here for Reference Manual which shows how the Command Line Interpreter drives the Fortress APIs from a command prompt.
com.jts.fortress.configuration This package uses Apache Commons Configuration APIs to provide configuration data to fortress along with CRUD APIs for storing config data on the ldap server.
com.jts.fortress.constants This package contains data element names and error ids that are globally visible within the fortress system.
com.jts.fortress.hier This package uses JGraphT to provide hierarchical functionality that is reused within several other packages in the fortress system.
com.jts.fortress.ldap This package uses UnboundID LDAP SDK for Java to provide ldap data access along with a custom, hybrid connection pooling mechanism to maintain connections with the ldap server.
com.jts.fortress.ldap.container This package contains APIs to perform CRUD on fortress container objects in ldap.
com.jts.fortress.ldap.suffix This package contains APIs to perform create and teardown the ldap suffix node.
com.jts.fortress.pwpolicy This package provides CRUD to ldap password policy entities and interrogation of password control objects.
com.jts.fortress.pwpolicy.openldap This package provides CRUD for policy and interrogation of password control objects stored in OpenLDAP.
com.jts.fortress.rbac This package provides data entities and apis that adhere to RBAC specification to provide role based access control capabilities.
com.jts.fortress.rest This package uses Commons HTTP to provide HTTP functionality that is reused across several components in this package.
com.jts.fortress.util This package contains miscellaneous utilities used by internal fortress procedures.
com.jts.fortress.util.attr This package contains utilities used for data validation and formatting by fortress process modules.
com.jts.fortress.util.cache This package contains a caching facade used by internal Fortress functions.
com.jts.fortress.util.crypto This package uses Jasypt to provide basic encryption/decryption functionality of textual data.
com.jts.fortress.util.time This package contains utilities used to process fortress temporal constraint checks on entities being activated within the runtime system.

 

A standards based and open source Identity Access Management Java SDK for LDAP v3 compliant systems.

What can Fortress SDK do?

Contained within this SDK are APIs and utilities to perform authentication, authorization, administration, audit and password policies. The most important package in this system is com.jts.fortress which contains all of the public APIs that are called by outside programs.

Fortress Manager APIs

  1. AccessMgr - This object performs runtime access control operations on objects that are provisioned RBAC entities that reside in LDAP directory.
  2. AdminMgr - This object performs administrative functions to provision Fortress RBAC entities into the LDAP directory.
  3. AuditMgr - This interface prescribes methods used to search OpenLDAP's slapd access log.
  4. DelegatedAccessMgr - This interface prescribes the API for performing runtime delegated access control operations on objects that are provisioned Fortress ARBAC02 entities that reside in LDAP directory.
  5. DelegatedAdminMgr - This class prescribes the ARBAC02 DelegatedAdminMgr interface for performing policy administration of Fortress ARBAC entities that reside in LDAP directory.
  6. DelegatedReviewMgr - This class prescribes the ARBAC02 DelegatedReviewMgr interface for performing policy interrogation of provisioned Fortress ARBAC02 entities that reside in LDAP directory.
  7. PswdPolicyMgr - This object adheres to IETF PW policy draft and is used to perform administrative and review functions on the PWPOLICIES and USERS data sets within Fortress.
  8. ReviewMgr - This interface prescribes the administrative review functions on already provisioned Fortress RBAC entities that reside in LDAP directory.
Error Handling
These APIs throw checked exceptions defined in SecurityException

What technologies are used?

Fortress SDK runs on any platform that supports Java technology and LDAP v3 protocols. Functionality that extends beyond LDAP v3 is provided via OpenLDAP specific features. In other words Fortress was optimized to run on OpenLDAP.

What are the conditions of use?

This software development toolkit is open source, thus free to use and distribute via the BSD 3-Clause License. It was developed and tested on open systems like Ubuntu and Centos and was helped along by the following open source products:

  1. The OpenLDAP Project
  2. The Apache Software Foundation
  3. UnboundID
  4. The Eigenbase Project
  5. Ehcache

Check out these samples in the com.jts.fortress.samples package to show how Fortress APIs can be used by outside clients. The dist target in build.xml creates the samples package in the /dist folder of this project and is intended to be used for experimentation.



Copyright © 2009-2012 Joshua Tree Software, LLC. All Rights Reserved. Generated April 15 2012