RacfGroupFilterTranslator.java

/*
 * ====================
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
 * 
 * Copyright 2008-2009 Sun Microsystems, Inc. All rights reserved.     
 * 
 * The contents of this file are subject to the terms of the Common Development 
 * and Distribution License("CDDL") (the "License").  You may not use this file 
 * except in compliance with the License.
 * 
 * You can obtain a copy of the License at 
 * http://IdentityConnectors.dev.java.net/legal/license.txt
 * See the License for the specific language governing permissions and limitations 
 * under the License. 
 * 
 * When distributing the Covered Code, include this CDDL Header Notice in each file
 * and include the License file at identityconnectors/legal/license.txt.
 * If applicable, add the following below this CDDL Header, with the fields 
 * enclosed by brackets [] replaced by your own identifying information: 
 * "Portions Copyrighted [year] [name of copyright owner]"
 * ====================
 */
package org.identityconnectors.racf;

import org.identityconnectors.framework.common.objects.Attribute;
import org.identityconnectors.framework.common.objects.Name;
import org.identityconnectors.framework.common.objects.Uid;


/**
 * Create LDAP search Filter
 * <p>
 * Supported filters for "profileType=group,suffixDN" are:
 * <ul>
 *      <li>objectclass=*</li>
 *      <li>racfid=<any_value></li>
 *      <li>racfomvsgroupid=<number></li>
 * </ul>
 * <p>
 * Complex search filters that 
 * include NOT, AND, OR, LE, or GE constructs are not supported.
 * <p>
 * The values for the racfid filter can include 
 * the wild cards supported by RACF. These wild cards are '*' which represents 
 * any number of characters, and '%' which represents one character. For example:
 * <pre>
 * (racfid=grp*)
 * </pre> 
 * searches for all the groups whose names begin with grp.
 */
public class RacfGroupFilterTranslator extends RacfLdapFilterTranslatorBase {

    protected boolean isFilterAttribute(Attribute attribute) {
        if (attribute.is(Uid.NAME))
            return true;
        if (attribute.is(Name.NAME))
            return true;
        if (attribute.is(RacfConstants.ATTR_LDAP_OMVS_UID))
            return true;
        if (attribute.is(RacfConstants.ATTR_LDAP_ID))
            return true;
        return false;
    }
    

    protected String getFilterAttributeName(Attribute attribute) {
        if (attribute.is(Name.NAME))
            return "racfid";
        else if (attribute.is(Uid.NAME))
            return "racfid";
        else
            return attribute.getName();
    }
}