com.yahoo.vespa.hosted.controller.api.integration.athenz.AccessControlService Maven / Gradle / Ivy

Go to download

Show more of this group Show more artifacts with this name
Show all versions of controller-api Show documentation

There is a newer version: 8.253.3

// Copyright Vespa.ai. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root.

package com.yahoo.vespa.hosted.controller.api.integration.athenz;

import com.yahoo.config.provision.TenantName;
import com.yahoo.vespa.athenz.api.AthenzRoleInformation;
import com.yahoo.vespa.athenz.api.AthenzUser;
import com.yahoo.vespa.athenz.api.OAuthCredentials;

import java.time.Instant;
import java.util.Collection;

/**
 * Manage operator data plane access control
 *
 * @author mortent
 */
public interface AccessControlService {
    boolean approveDataPlaneAccess(AthenzUser user, Instant expiry);
    boolean decideSshAccess(TenantName tenantName, Instant expiry, OAuthCredentials oAuthCredentials, boolean approve);
    boolean requestSshAccess(TenantName tenantName);
    AthenzRoleInformation getAccessRoleInformation(TenantName tenantName);
    void setManagedAccess(TenantName tenantName, boolean managedAccess);
    boolean getManagedAccess(TenantName tenantName);
    Collection listMembers();
}