Return-Path: Delivered-To: apmail-directory-commits-archive@www.apache.org Received: (qmail 32037 invoked from network); 7 Jun 2010 00:47:38 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 7 Jun 2010 00:47:38 -0000 Received: (qmail 92261 invoked by uid 500); 7 Jun 2010 00:47:38 -0000 Delivered-To: apmail-directory-commits-archive@directory.apache.org Received: (qmail 92208 invoked by uid 500); 7 Jun 2010 00:47:38 -0000 Mailing-List: contact commits-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@directory.apache.org Delivered-To: mailing list commits@directory.apache.org Received: (qmail 92201 invoked by uid 99); 7 Jun 2010 00:47:38 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Jun 2010 00:47:38 +0000 X-ASF-Spam-Status: No, hits=-1519.5 required=10.0 tests=ALL_TRUSTED,AWL X-Spam-Check-By: apache.org Received: from [140.211.11.4] (HELO eris.apache.org) (140.211.11.4) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Jun 2010 00:47:37 +0000 Received: by eris.apache.org (Postfix, from userid 65534) id 52F6D23889BF; Mon, 7 Jun 2010 00:47:17 +0000 (UTC) Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Subject: svn commit: r952031 - /directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authz/DefaultAuthorizationInterceptor.java Date: Mon, 07 Jun 2010 00:47:17 -0000 To: commits@directory.apache.org From: elecharny@apache.org X-Mailer: svnmailer-1.0.8 Message-Id: <20100607004717.52F6D23889BF@eris.apache.org> Author: elecharny Date: Mon Jun 7 00:47:16 2010 New Revision: 952031 URL: http://svn.apache.org/viewvc?rev=952031&view=rev Log: Slight speed-ups by using a DN ref instead of a clone. Used DN instead of Strings. Modified: directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authz/DefaultAuthorizationInterceptor.java Modified: directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authz/DefaultAuthorizationInterceptor.java URL: http://svn.apache.org/viewvc/directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authz/DefaultAuthorizationInterceptor.java?rev=952031&r1=952030&r2=952031&view=diff ============================================================================== --- directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authz/DefaultAuthorizationInterceptor.java (original) +++ directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authz/DefaultAuthorizationInterceptor.java Mon Jun 7 00:47:16 2010 @@ -210,9 +210,9 @@ public class DefaultAuthorizationInterce } - private boolean isTheAdministrator( DN normalizedDn ) + private boolean isTheAdministrator( DN dn ) { - return normalizedDn.equals( ADMIN_SYSTEM_DN ); + return dn.equals( ADMIN_SYSTEM_DN ); } @@ -394,7 +394,7 @@ public class DefaultAuthorizationInterce return entry; } - protectLookUp( session.getEffectivePrincipal().getDN(), opContext.getDn() ); + protectLookUp( session.getEffectivePrincipal().getDNRef(), opContext.getDn() ); return entry; } @@ -422,7 +422,7 @@ public class DefaultAuthorizationInterce if ( normalizedDn.isChildOf( GROUP_BASE_DN ) ) { // allow for self reads - if ( normalizedDn.getNormName().equals( principalDn.getNormName() ) ) + if ( normalizedDn.equals( principalDn ) ) { return; } @@ -510,7 +510,7 @@ public class DefaultAuthorizationInterce } // Users reading their own entries should be allowed to see all - boolean isSelfRead = dn.getNormName().equals( principalDn.getNormName() ); + boolean isSelfRead = dn.equals( principalDn ); if ( isSelfRead ) { @@ -523,8 +523,7 @@ public class DefaultAuthorizationInterce // stuff this if in here instead of up in outer if to prevent // constant needless reexecution for all entries in other depths - if ( dn.getNormName().endsWith( ADMIN_SYSTEM_DN.getNormName() ) - || dn.getNormName().endsWith( GROUP_BASE_DN.getNormName() ) ) + if ( dn.isChildOf( ADMIN_SYSTEM_DN ) || dn.isChildOf( GROUP_BASE_DN ) ) { return false; }