Class ServerAclHandler

  • All Implemented Interfaces:

    public class ServerAclHandler
    implements io.grpc.ServerInterceptor
    Together with ServerStoreAclHandler, Server will allow two kinds of access pattern: 1. Access from Router, and Router request will be validated in ServerAclHandler, and ServerStoreAclHandler will be a quick pass-through. 2. Access from Client directly, and ServerAclHandler will deny the request, and ServerStoreAclHandler will validate the request in store-level, which is exactly same as the access control behavior in Router. If both of them fail, the request will be rejected.
    • Nested Class Summary

      • Nested classes/interfaces inherited from interface
    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      void channelRead0​( ctx, io.netty.handler.codec.http.HttpRequest req)
      Verify if client has permission to access one particular resource.
      interceptCall​(io.grpc.ServerCall<ReqT,​RespT> call, io.grpc.Metadata headers, io.grpc.ServerCallHandler<ReqT,​RespT> next)  
      • Methods inherited from class

        acceptInboundMessage, channelRead
      • Methods inherited from class

        channelActive, channelInactive, channelReadComplete, channelRegistered, channelUnregistered, channelWritabilityChanged, exceptionCaught, userEventTriggered
      • Methods inherited from class

        ensureNotSharable, handlerAdded, handlerRemoved, isSharable
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
      • Methods inherited from interface

        handlerAdded, handlerRemoved
    • Field Detail


        public static final java.lang.String SERVER_ACL_APPROVED
        See Also:
        Constant Field Values

        public static final io.netty.util.AttributeKey<java.lang.Boolean> SERVER_ACL_APPROVED_ATTRIBUTE_KEY
    • Method Detail

      • channelRead0

        public void channelRead0​( ctx,
                                 io.netty.handler.codec.http.HttpRequest req)
        Verify if client has permission to access one particular resource.
        Specified by:
        channelRead0 in class<io.netty.handler.codec.http.HttpRequest>
        ctx -
        req -
      • interceptCall

        public <ReqT,​RespT> io.grpc.ServerCall.Listener<ReqT> interceptCall​(io.grpc.ServerCall<ReqT,​RespT> call,
                                                                                  io.grpc.Metadata headers,
                                                                                  io.grpc.ServerCallHandler<ReqT,​RespT> next)
        Specified by:
        interceptCall in interface io.grpc.ServerInterceptor