Package com.strongdm.api

Class AccessRule

java.lang.Object

com.strongdm.api.AccessRule

public class AccessRule
extends Object

An AccessRule grants access to a set of Resources. There are two kinds of AccessRules: - Dynamic: a rule which identifies Resources based on their type or tags - Static: a rule which contains an explicit list of Resource IDs

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	AccessRule.EntraGroupsPrivileges
static class	AccessRule.K8sPrivileges
static class	AccessRule.Privileges

Constructor Summary

Constructors

Constructor	Description
AccessRule()

Method Summary

Modifier and Type	Method	Description
void	addAllIds(Collection<String> v)
void	addId(String v)
void	clearIds()
String	getId(int index)
List<String>	getIds()
int	getIdsCount()
AccessRule.Privileges	getPrivileges()
String	getQuery()	A boolean tag query that identifies the Resources granted by this AccessRule.
Map<String,String>	getTags()
String	getType()
void	removeId(int index)
void	setId(int index, String v)
void	setIds(Collection<String> in)	Sets a list of Resource IDs granted by this AccessRule.
void	setPrivileges(AccessRule.Privileges privileges)
void	setQuery(String query)	Sets the boolean tag query that identifies the Resources granted by this AccessRule.
void	setTags(Map<String,String> in)	Specifies a list of key/value pairs.
void	setType(String type)	Specifies a Resource type.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

AccessRule

public AccessRule()

Method Details

getTags

public Map<String,String> getTags()

setTags

public void setTags(Map<String,String> in)

Specifies a list of key/value pairs. You can set this field by itself to grant access to all Resources which have all the given tags. You can also use it in conjunction with the Type field to further narrow down the scope of Resources granted.

getIds

public List<String> getIds()

getId

public String getId(int index)

getIdsCount

public int getIdsCount()

setId

public void setId(int index,
 String v)

removeId

public void removeId(int index)

addId

public void addId(String v)

addAllIds

public void addAllIds(Collection<String> v)

setIds

public void setIds(Collection<String> in)

Sets a list of Resource IDs granted by this AccessRule. If this field is set, the rule is a static access rule. No other fields can be set on a static access rule.

clearIds

public void clearIds()

getType

public String getType()

setType

public void setType(String type)

Specifies a Resource type. You can set this field by itself to grant access to all Resources of a certain type. You can also use it in conjunction with the Tags field to further narrow down the scope of Resources granted. See the following link for a list of possible values for this field: https://docs.strongdm.com/references/cli/filters/#potential-resource-type-values

getQuery

public String getQuery()

A boolean tag query that identifies the Resources granted by this AccessRule. It combines tag conditions with the AND, OR, and NOT operators and parentheses for grouping, e.g. env=prod AND (region=us OR region=eu) AND NOT deprecated. Operator precedence, from highest to lowest, is: parentheses, NOT, AND, OR. A bare tag (env) matches any Resource carrying that tag regardless of value; env=prod matches a specific value. Query is mutually exclusive with the ids, type, and tags fields.

setQuery

public void setQuery(String query)

Sets the boolean tag query that identifies the Resources granted by this AccessRule. See getQuery() for the supported syntax. Query is mutually exclusive with the ids, type, and tags fields.

setPrivileges

public void setPrivileges(AccessRule.Privileges privileges)

getPrivileges

public AccessRule.Privileges getPrivileges()