directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From elecha...@apache.org
Subject directory-fortress-core git commit: Fixed the Javadoc
Date Tue, 05 Jan 2016 18:39:33 GMT
Repository: directory-fortress-core
Updated Branches:
  refs/heads/master 6f5243e69 -> eacfe5d31


Fixed the Javadoc

Project: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/repo
Commit: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/commit/eacfe5d3
Tree: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/tree/eacfe5d3
Diff: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/diff/eacfe5d3

Branch: refs/heads/master
Commit: eacfe5d31cb2108338b3b9ac993fd86f7cdd068b
Parents: 6f5243e
Author: Emmanuel L├ęcharny <elecharny@symas.com>
Authored: Tue Jan 5 19:39:14 2016 +0100
Committer: Emmanuel L├ęcharny <elecharny@symas.com>
Committed: Tue Jan 5 19:39:14 2016 +0100

----------------------------------------------------------------------
 .../directory/fortress/core/AdminMgr.java       | 820 ++++++++++++-------
 1 file changed, 513 insertions(+), 307 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/directory-fortress-core/blob/eacfe5d3/src/main/java/org/apache/directory/fortress/core/AdminMgr.java
----------------------------------------------------------------------
diff --git a/src/main/java/org/apache/directory/fortress/core/AdminMgr.java b/src/main/java/org/apache/directory/fortress/core/AdminMgr.java
index ca14c41..2eb56c9 100755
--- a/src/main/java/org/apache/directory/fortress/core/AdminMgr.java
+++ b/src/main/java/org/apache/directory/fortress/core/AdminMgr.java
@@ -36,30 +36,36 @@ import org.apache.directory.fortress.core.model.UserRole;
  * and maintenance of RBAC element sets and relations; administrative review functions for
  * performing administrative queries; and system functions for creating and managing
  * RBAC attributes on user sessions and making access control decisions.
- * <p/>
  * <hr>
+ * <h3></h3>
  * <h4>RBAC0 - Core</h4>
- * Many-to-many relationship between Users, Roles and Permissions. Selective role activation into sessions.  API to add, update, delete identity data and perform identity and access control decisions during runtime operations.
- * <p/>
- * <img src="./doc-files/RbacCore.png">
+ * Many-to-many relationship between Users, Roles and Permissions. Selective role activation into sessions.  API to add, 
+ * update, delete identity data and perform identity and access control decisions during runtime operations.
+ * <p>
+ * <img src="./doc-files/RbacCore.png" alt="">
  * <hr>
  * <h4>RBAC1 - General Hierarchical Roles</h4>
  * Simplifies role engineering tasks using inheritance of one or more parent roles.
- * <p/>
- * <img src="./doc-files/RbacHier.png">
+ * <p>
+ * <img src="./doc-files/RbacHier.png" alt="">
  * <hr>
  * <h4>RBAC2 - Static Separation of Duty (SSD) Relations</h4>
- * Enforce mutual membership exclusions across role assignments.  Facilitate dual control policies by restricting which roles may be assigned to users in combination.  SSD provide added granularity for authorization limits which help enterprises meet strict compliance regulations.
- * <p/>
- * <img src="./doc-files/RbacSSD.png">
+ * Enforce mutual membership exclusions across role assignments.  Facilitate dual control policies by restricting which 
+ * roles may be assigned to users in combination.  SSD provide added granularity for authorization limits which help 
+ * enterprises meet strict compliance regulations.
+ * <p>
+ * <img src="./doc-files/RbacSSD.png" alt="">
  * <hr>
  * <h4>RBAC3 - Dynamic Separation of Duty (DSD) Relations</h4>
- * Control allowed role combinations to be activated within an RBAC session.  DSD policies fine tune role policies that facilitate authorization dual control and two man policy restrictions during runtime security checks.
- * <p/>
- * <img src="./doc-files/RbacDSD.png">
+ * Control allowed role combinations to be activated within an RBAC session.  DSD policies fine tune role policies that 
+ * facilitate authorization dual control and two man policy restrictions during runtime security checks.
+ * <p>
+ * <img src="./doc-files/RbacDSD.png" alt="">
  * <hr>
- * <p/>
- * This interface's implementer will NOT be thread safe if parent instance variables ({@link Manageable#setContextId(String)} or {@link Manageable#setAdmin(org.apache.directory.fortress.core.model.Session)}) are set.
+ * <p>
+ * This interface's implementer will NOT be thread safe if parent instance variables 
+ * ({@link Manageable#setContextId(String)} or 
+ * {@link Manageable#setAdmin(org.apache.directory.fortress.core.model.Session)}) are set.
  *
  * @author <a href="mailto:dev@directory.apache.org">Apache Directory Project</a>
  */
@@ -69,38 +75,51 @@ public interface AdminMgr extends Manageable
      * This command creates a new RBAC user. The command is valid only if the new user is
      * not already a member of the USERS data set. The USER data set is updated. The new user
      * does not own any session at the time of its creation.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
-     * <li>{@link User#password} - used to authenticate the User</li>
-     * <li>{@link User#ou} - contains the name of an already existing User OU node</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>{@link User#password} - used to authenticate the User</li>
+     *   <li>{@link User#ou} - contains the name of an already existing User OU node</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link User#pwPolicy} - contains the name of an already existing OpenLDAP password policy node</li>
-     * <li>{@link User#cn} - maps to INetOrgPerson common name attribute</li>
-     * <li>{@link User#sn} - maps to INetOrgPerson surname attribute</li>
-     * <li>{@link User#description} - maps to INetOrgPerson description attribute</li>
-     * <li>{@link User#title} - maps to INetOrgPerson title attribute</li>
-     * <li>{@link User#employeeType} - maps to INetOrgPerson employeeType attribute</li>
-     * <li>{@link User#phones} * - multi-occurring attribute maps to organizationalPerson telephoneNumber  attribute</li>
-     * <li>{@link User#mobiles} * - multi-occurring attribute maps to INetOrgPerson mobile attribute</li>
-     * <li>{@link User#emails} * - multi-occurring attribute maps to INetOrgPerson mail attribute</li>
-     * <li>{@link User#address} * - multi-occurring attribute maps to organizationalPerson postalAddress, st, l, postalCode, postOfficeBox attributes</li>
-     * <li>{@link User#beginTime} - HHMM - determines begin hour user may activate session</li>
-     * <li>{@link User#endTime} - HHMM - determines end hour user may activate session.</li>
-     * <li>{@link User#beginDate} - YYYYMMDD - determines date when user may sign on</li>
-     * <li>{@link User#endDate} - YYYYMMDD - indicates latest date user may sign on</li>
-     * <li>{@link User#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
-     * <li>{@link User#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
-     * <li>{@link User#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day of user may sign on</li>
-     * <li>{@link User#timeout} - number in seconds of session inactivity time allowed</li>
-     * <li>{@link User#props} * - multi-occurring attribute contains property key and values are separated with a ':'.  e.g. mykey1:myvalue1</li>
-     * <li>{@link User#roles} * - multi-occurring attribute contains the name of already existing role to assign to user</li>
-     * <li>{@link User#adminRoles} * - multi-occurring attribute contains the name of already existing adminRole to assign to user</li>
+     *   <li>{@link User#pwPolicy} - contains the name of an already existing OpenLDAP password policy node</li>
+     *   <li>{@link User#cn} - maps to INetOrgPerson common name attribute</li>
+     *   <li>{@link User#sn} - maps to INetOrgPerson surname attribute</li>
+     *   <li>{@link User#description} - maps to INetOrgPerson description attribute</li>
+     *   <li>{@link User#title} - maps to INetOrgPerson title attribute</li>
+     *   <li>{@link User#employeeType} - maps to INetOrgPerson employeeType attribute</li>
+     *   <li>{@link User#phones} * - multi-occurring attribute maps to organizationalPerson telephoneNumber  attribute</li>
+     *   <li>{@link User#mobiles} * - multi-occurring attribute maps to INetOrgPerson mobile attribute</li>
+     *   <li>{@link User#emails} * - multi-occurring attribute maps to INetOrgPerson mail attribute</li>
+     *   <li>
+     *     {@link User#address} * - multi-occurring attribute maps to organizationalPerson postalAddress, st, 
+     *     l, postalCode, postOfficeBox attributes
+     *   </li>
+     *   <li>{@link User#beginTime} - HHMM - determines begin hour user may activate session</li>
+     *   <li>{@link User#endTime} - HHMM - determines end hour user may activate session.</li>
+     *   <li>{@link User#beginDate} - YYYYMMDD - determines date when user may sign on</li>
+     *   <li>{@link User#endDate} - YYYYMMDD - indicates latest date user may sign on</li>
+     *   <li>{@link User#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
+     *   <li>{@link User#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
+     *   <li>{@link User#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day of user may sign on</li>
+     *   <li>{@link User#timeout} - number in seconds of session inactivity time allowed</li>
+     *   <li>
+     *     {@link User#props} * - multi-occurring attribute contains property key and values are separated with a ':'.
+     *     e.g. mykey1:myvalue1
+     *   </li>
+     *   <li>
+     *     {@link User#roles} * - multi-occurring attribute contains the name of already existing role to assign to user
+     *   </li>
+     *   <li>
+     *     {@link User#adminRoles} * - multi-occurring attribute contains the name of already existing adminRole to assign 
+     *     to user
+     *   </li>
      * </ul>
      *
-     * @param user User entity must contain {@link User#userId} and {@link User#ou} (required) and optional {@link User#description},{@link User#roles} and many others.
+     * @param user User entity must contain {@link User#userId} and {@link User#ou} (required) and optional 
+     * {@link User#description},{@link User#roles} and many others.
      * @return Returns entity containing user data that was added.
      * @throws SecurityException thrown in the event of data validation or system error.
      */
@@ -113,13 +132,16 @@ public interface AdminMgr extends Manageable
      * if and only if the user to be deleted is a member of the USERS data set. The USERS and
      * UA data sets and the assigned_users function are updated.
      * Method performs a "soft" delete.  It performs the following:
-     * - sets the user status to "deleted"
-     * - deassigns all roles from the user
-     * - locks the user's password in LDAP
-     * - revokes all perms that have been granted to user entity.
+     * <ul>
+     *   <li>sets the user status to "deleted"</li>
+     *   <li>deassigns all roles from the user</li>
+     *   <li>locks the user's password in LDAP</li>
+     *   <li>revokes all perms that have been granted to user entity.</li>
+     * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
      * </ul>
      *
      * @param user Contains the {@link User#userId} of the User targeted for deletion.
@@ -135,9 +157,10 @@ public interface AdminMgr extends Manageable
      * UA data sets and the assigned_users function are updated.
      * This method performs a "hard" delete.  It completely removes all data associated with this user from the directory.
      * User entity must exist in directory prior to making this call else exception will be thrown.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
      * </ul>
      *
      * @param user Contains the {@link User#userId} of the User targeted for deletion.
@@ -150,38 +173,51 @@ public interface AdminMgr extends Manageable
     /**
      * This method performs an update on User entity in directory.  Prior to making this call the entity must exist in
      * directory.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link User#password} - used to authenticate the User</li>
-     * <li>{@link User#ou} - contains the name of an already existing User OU node</li>
-     * <li>{@link User#pwPolicy} - contains the name of an already existing OpenLDAP password policy node</li>
-     * <li>{@link User#cn} - maps to INetOrgPerson common name attribute</li>
-     * <li>{@link User#sn} - maps to INetOrgPerson surname attribute</li>
-     * <li>{@link User#description} - maps to INetOrgPerson description attribute</li>
-     * <li>{@link User#title} - maps to INetOrgPerson title attribute</li>
-     * <li>{@link User#employeeType} - maps to INetOrgPerson employeeType attribute</li>
-     * <li>{@link User#phones} * - multi-occurring attribute maps to organizationalPerson telephoneNumber  attribute</li>
-     * <li>{@link User#mobiles} * - multi-occurring attribute maps to INetOrgPerson mobile attribute</li>
-     * <li>{@link User#emails} * - multi-occurring attribute maps to INetOrgPerson mail attribute</li>
-     * <li>{@link User#address} * - multi-occurring attribute maps to organizationalPerson postalAddress, st, l, postalCode, postOfficeBox attributes</li>
-     * <li>{@link User#beginTime} - HHMM - determines begin hour user may activate session</li>
-     * <li>{@link User#endTime} - HHMM - determines end hour user may activate session.</li>
-     * <li>{@link User#beginDate} - YYYYMMDD - determines date when user may sign on</li>
-     * <li>{@link User#endDate} - YYYYMMDD - indicates latest date user may sign on</li>
-     * <li>{@link User#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
-     * <li>{@link User#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
-     * <li>{@link User#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day of user may sign on</li>
-     * <li>{@link User#timeout} - number in seconds of session inactivity time allowed</li>
-     * <li>{@link User#props} * - multi-occurring attribute contains property key and values are separated with a ':'.  e.g. mykey1:myvalue1</li>
-     * <li>{@link User#roles} * - multi-occurring attribute contains the name of already existing role to assign to user</li>
-     * <li>{@link User#adminRoles} * - multi-occurring attribute contains the name of already existing adminRole to assign to user</li>
+     *   <li>{@link User#password} - used to authenticate the User</li>
+     *   <li>{@link User#ou} - contains the name of an already existing User OU node</li>
+     *   <li>{@link User#pwPolicy} - contains the name of an already existing OpenLDAP password policy node</li>
+     *   <li>{@link User#cn} - maps to INetOrgPerson common name attribute</li>
+     *   <li>{@link User#sn} - maps to INetOrgPerson surname attribute</li>
+     *   <li>{@link User#description} - maps to INetOrgPerson description attribute</li>
+     *   <li>{@link User#title} - maps to INetOrgPerson title attribute</li>
+     *   <li>{@link User#employeeType} - maps to INetOrgPerson employeeType attribute</li>
+     *   <li>{@link User#phones} * - multi-occurring attribute maps to organizationalPerson telephoneNumber  attribute</li>
+     *   <li>{@link User#mobiles} * - multi-occurring attribute maps to INetOrgPerson mobile attribute</li>
+     *   <li>{@link User#emails} * - multi-occurring attribute maps to INetOrgPerson mail attribute</li>
+     *   <li>
+     *     {@link User#address} * - multi-occurring attribute maps to organizationalPerson postalAddress, st, l, 
+     *     postalCode, postOfficeBox attributes
+     *   </li>
+     *   <li>{@link User#beginTime} - HHMM - determines begin hour user may activate session</li>
+     *   <li>{@link User#endTime} - HHMM - determines end hour user may activate session.</li>
+     *   <li>{@link User#beginDate} - YYYYMMDD - determines date when user may sign on</li>
+     *   <li>{@link User#endDate} - YYYYMMDD - indicates latest date user may sign on</li>
+     *   <li>{@link User#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
+     *   <li>{@link User#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
+     *   <li>{@link User#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day of user may sign on</li>
+     *   <li>{@link User#timeout} - number in seconds of session inactivity time allowed</li>
+     *   <li>
+     *     {@link User#props} * - multi-occurring attribute contains property key and values are separated with a ':'.  
+     *     e.g. mykey1:myvalue1
+     *   </li>
+     *   <li>
+     *     {@link User#roles} * - multi-occurring attribute contains the name of already existing role to assign to user
+     *   </li>
+     *   <li>
+     *     {@link User#adminRoles} * - multi-occurring attribute contains the name of already existing adminRole to assign 
+     *     to user
+     *   </li>
      * </ul>
      *
-     * @param user must contain {@link User#userId} and optional entity data to update i.e. desc, ou, properties, all attributes that are not set will be ignored.
+     * @param user must contain {@link User#userId} and optional entity data to update i.e. desc, ou, properties, all 
+     * attributes that are not set will be ignored.
      * @return Updated user entity data.
      * @throws SecurityException thrown in the event of validation or system error.
      */
@@ -191,11 +227,12 @@ public interface AdminMgr extends Manageable
 
     /**
      * Method will change user's password.  This method will evaluate user's password policies.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
-     * <li>{@link User#password} - contains the User's old password</li>
-     * <li>newPassword - contains the User's new password</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>{@link User#password} - contains the User's old password</li>
+     *   <li>newPassword - contains the User's new password</li>
      * </ul>
      *
      * @param user        contains {@link User#userId} and old user password {@link User#password}.
@@ -208,10 +245,10 @@ public interface AdminMgr extends Manageable
 
     /**
      * Method will lock user's password which will prevent the user from authenticating with directory.
-     * <p/>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
      * </ul>
      *
      * @param user entity contains {@link User#userId} of User to be locked.
@@ -223,10 +260,10 @@ public interface AdminMgr extends Manageable
 
     /**
      * Method will unlock user's password which will enable user to authenticate with directory.
-     * <p/>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
      * </ul>
      *
      * @param user entity contains {@link User#userId} of User to be unlocked.
@@ -237,16 +274,18 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * Method will reset user's password which will require user to change password before successful authentication with directory.
+     * Method will reset user's password which will require user to change password before successful authentication with 
+     * directory.
      * This method will not evaluate password policies on the new user password as it must be changed before use.
-     * <p/>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
-     * <li>newPassword - contains the User's new password</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>newPassword - contains the User's new password</li>
      * </ul>
      *
      * @param user entity contains {@link User#userId} of User to be reset.
+     * @param newPassword The new password to set
      * @throws SecurityException will be thrown in the event of pw policy violation or system error.
      */
     void resetPassword( User user, char[] newPassword )
@@ -255,10 +294,11 @@ public interface AdminMgr extends Manageable
 
     /**
      * Method will delete user's password policy designation.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link User#userId} - maps to INetOrgPerson uid</li>
-     * <li>newPassword - contains the User's new password</li>
+     *   <li>{@link User#userId} - maps to INetOrgPerson uid</li>
+     *   <li>newPassword - contains the User's new password</li>
      * </ul>
      *
      * @param user  contains {@link User#userId}.
@@ -272,23 +312,28 @@ public interface AdminMgr extends Manageable
      * This command creates a new role. The command is valid if and only if the new role is not
      * already a member of the ROLES data set. The ROLES data set is updated.
      * Initially, no user or permission is assigned to the new role.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Role#name} - contains the name to use for the Role to be created.</li>
+     *   <li>{@link Role#name} - contains the name to use for the Role to be created.</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link Role#description} - maps to description attribute on organizationalRole object class</li>
-     * <li>{@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session</li>
-     * <li>{@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session.</li>
-     * <li>{@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session</li>
-     * <li>{@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session</li>
-     * <li>{@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
-     * <li>{@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
-     * <li>{@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into user's RBAC session</li>
+     *   <li>{@link Role#description} - maps to description attribute on organizationalRole object class</li>
+     *   <li>{@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session</li>
+     *   <li>{@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session.</li>
+     *   <li>{@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session</li>
+     *   <li>{@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session</li>
+     *   <li>{@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
+     *   <li>{@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
+     *   <li>
+     *     {@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into 
+     *     user's RBAC session
+     *   </li>
      * </ul>
      *
      * @param role must contains {@link Role#name} (required) and optional {@link Role#description}.
+     * @return copy of the added Role 
      * @throws SecurityException thrown in the event of data validation or system error.
      */
     Role addRole( Role role )
@@ -299,9 +344,10 @@ public interface AdminMgr extends Manageable
      * This command deletes an existing role from the RBAC database. The command is valid
      * if and only if the role to be deleted is a member of the ROLES data set.  This command will
      * also deassign role from all users.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Role#name} - contains the name to use for the Role to be deleted.</li>
+     *   <li>{@link Role#name} - contains the name to use for the Role to be deleted.</li>
      * </ul>
      * @param role Must contain {@link Role#name} for Role to delete.
      * @throws SecurityException thrown in the event of data validation or system error.
@@ -312,23 +358,27 @@ public interface AdminMgr extends Manageable
 
     /**
      * Method will update a Role entity in the directory.  The role must exist in role container prior to this call.
-     *
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Role#name} - contains the name to use for the Role to be updated.</li>
+     *   <li>{@link Role#name} - contains the name to use for the Role to be updated.</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link Role#description} - maps to description attribute on organizationalRole object class</li>
-     * <li>{@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session</li>
-     * <li>{@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session.</li>
-     * <li>{@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session</li>
-     * <li>{@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session</li>
-     * <li>{@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
-     * <li>{@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
-     * <li>{@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into user's RBAC session</li>
-     * </ul>
-     * @param role Must contains {@link Role#name} and may contain new description or {@link org.apache.directory.fortress.core.model.Constraint}
+     *   <li>{@link Role#description} - maps to description attribute on organizationalRole object class</li>
+     *   <li>{@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session</li>
+     *   <li>{@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session.</li>
+     *   <li>{@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session</li>
+     *   <li>{@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session</li>
+     *   <li>{@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
+     *   <li>{@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
+     *   <li>
+     *     {@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into 
+     *     user's RBAC session
+     *   </li>
+     * </ul>
+     * @param role Must contains {@link Role#name} and may contain new description or
+     *  {@link org.apache.directory.fortress.core.model.Constraint}
      * @return Role contains reference to entity operated on.
      * @throws SecurityException in the event of validation or system error.
      */
@@ -338,47 +388,57 @@ public interface AdminMgr extends Manageable
 
     /**
      * This command assigns a user to a role.
-     * <p>
      * <ul>
-     * <li> The command is valid if and only if:
-     * <li> The user is a member of the USERS data set
-     * <li> The role is a member of the ROLES data set
-     * <li> The user is not already assigned to the role
-     * <li> The SSD constraints are satisfied after assignment.
+     *   <li> The command is valid if and only if:</li>
+     *   <li>
+     *     <ul>
+     *       <li> The user is a member of the USERS data set</li>
+     *       <li> The role is a member of the ROLES data set</li>
+     *       <li> The user is not already assigned to the role</li>
+     *       <li> The SSD constraints are satisfied after assignment.</li>
+     *     </ul>
+     *   </li>
      * </ul>
      * <p>
-     * <p>
      * Successful completion of this op, the following occurs:
-     * <p>
-     * <ul>
-     * <li> User entity (resides in people container) has role assignment added to aux object class attached to actual user record.
-     * <li> Role entity (resides in role container) has userId added as role occupant.
-     * <li> (optional) Temporal constraints may be associated with <code>ftUserAttrs</code> aux object class based on:
      * <ul>
-     * <li> timeout - number in seconds of session inactivity time allowed.
-     * <li> beginDate - YYYYMMDD - determines date when role may be activated.
-     * <li> endDate - YYMMDD - indicates latest date role may be activated.
-     * <li> beginLockDate - YYYYMMDD - determines beginning of enforced inactive status
-     * <li> endLockDate - YYMMDD - determines end of enforced inactive status.
-     * <li> beginTime - HHMM - determines begin hour role may be activated in user's session.
-     * <li> endTime - HHMM - determines end hour role may be activated in user's session.*
-     * <li> dayMask - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day of week role may be activated.
-     * </ul>
-     * </ul>
+     *   <li> 
+     *     User entity (resides in people container) has role assignment added to aux object class attached to actual 
+     *     user record.
+     *   </li>
+     *   <li> Role entity (resides in role container) has userId added as role occupant.</li>
+     *   <li> (optional) Temporal constraints may be associated with <code>ftUserAttrs</code> aux object class based on:</li>
+     *   <li>
+     *     <ul>
+     *       <li> timeout - number in seconds of session inactivity time allowed.</li>
+     *       <li> beginDate - YYYYMMDD - determines date when role may be activated.</li>
+     *       <li> endDate - YYMMDD - indicates latest date role may be activated.</li>
+     *       <li> beginLockDate - YYYYMMDD - determines beginning of enforced inactive status</li>
+     *       <li> endLockDate - YYMMDD - determines end of enforced inactive status.</li>
+     *       <li> beginTime - HHMM - determines begin hour role may be activated in user's session.</li>
+     *       <li> endTime - HHMM - determines end hour role may be activated in user's session.*</li>
+     *       <li> dayMask - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day of week role may be activated.</li>
+     *     </ul>
+     *   </li>
+     * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link UserRole#name} - contains the name for already existing Role to be assigned</li>
-     * <li>{@link UserRole#userId} - contains the userId for existing User</li>
+     *   <li>{@link UserRole#name} - contains the name for already existing Role to be assigned</li>
+     *   <li>{@link UserRole#userId} - contains the userId for existing User</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link UserRole#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session</li>
-     * <li>{@link UserRole#endTime} - HHMM - determines end hour role may be activated into user's RBAC session.</li>
-     * <li>{@link UserRole#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session</li>
-     * <li>{@link UserRole#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session</li>
-     * <li>{@link UserRole#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
-     * <li>{@link UserRole#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
-     * <li>{@link UserRole#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into user's RBAC session</li>
+     *   <li>{@link UserRole#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session</li>
+     *   <li>{@link UserRole#endTime} - HHMM - determines end hour role may be activated into user's RBAC session.</li>
+     *   <li>{@link UserRole#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session</li>
+     *   <li>{@link UserRole#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session</li>
+     *   <li>{@link UserRole#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status</li>
+     *   <li>{@link UserRole#endLockDate} - YYYYMMDD - determines end of enforced inactive status</li>
+     *   <li>
+     *     {@link UserRole#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into 
+     *     user's RBAC session
+     *   </li>
      * </ul>
      *
      * @param uRole must contain {@link UserRole#userId} and {@link UserRole#name} and optional {@code Constraints}.
@@ -394,13 +454,16 @@ public interface AdminMgr extends Manageable
      * the ROLES data set, and the user is assigned to the role.
      * Any sessions that currently have this role activated will not be effected.
      * Successful completion includes:
-     * User entity in USER data set has role assignment removed.
-     * Role entity in ROLE data set has userId removed as role occupant.
-     * (optional) Temporal constraints will be removed from user aux object if set prior to call.
+     * <ul>
+     *   <li>User entity in USER data set has role assignment removed.</li>
+     *   <li>Role entity in ROLE data set has userId removed as role occupant.</li>
+     *   <li>(optional) Temporal constraints will be removed from user aux object if set prior to call.</li>
+     * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link UserRole#name} - contains the name for already existing Role to be deassigned</li>
-     * <li>{@link UserRole#userId} - contains the userId for existing User</li>
+     *   <li>{@link UserRole#name} - contains the name for already existing Role to be deassigned</li>
+     *   <li>{@link UserRole#userId} - contains the userId for existing User</li>
      * </ul>
      * @param uRole must contain {@link org.apache.directory.fortress.core.model.UserRole#userId} and {@link UserRole#name}.
      * @throws SecurityException - in the event data error in user or role objects or system error.
@@ -410,20 +473,34 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This method will add permission operation to an existing permission object which resides under {@code ou=Permissions,ou=RBAC,dc=yourHostName,dc=com} container in directory information tree.
-     * The perm operation entity may have {@link org.apache.directory.fortress.core.model.Role} or {@link org.apache.directory.fortress.core.model.User} associations.  The target {@link Permission} must not exist prior to calling.
-     * A Fortress Permission instance exists in a hierarchical, one-many relationship between its parent and itself as stored in ldap tree: ({@link PermObj}*->{@link Permission}).
+     * This method will add permission operation to an existing permission object which resides under 
+     * {@code ou=Permissions,ou=RBAC,dc=yourHostName,dc=com} container in directory information tree.
+     * The perm operation entity may have {@link org.apache.directory.fortress.core.model.Role} or 
+     * {@link org.apache.directory.fortress.core.model.User} associations.  The target {@link Permission} must not exist 
+     * prior to calling.
+     * A Fortress Permission instance exists in a hierarchical, one-many relationship between its parent and itself as 
+     * stored in ldap tree: ({@link PermObj}*-&gt;{@link Permission}).
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Permission#objName} - contains the name of existing object being targeted for the permission add</li>
-     * <li>{@link Permission#opName} - contains the name of new permission operation being added</li>
+     *   <li>{@link Permission#objName} - contains the name of existing object being targeted for the permission add</li>
+     *   <li>{@link Permission#opName} - contains the name of new permission operation being added</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link Permission#roles} * - multi occurring attribute contains RBAC Roles that permission operation is being granted to</li>
-     * <li>{@link Permission#users} * - multi occurring attribute contains Users that permission operation is being granted to</li>
-     * <li>{@link Permission#props} * - multi-occurring property key and values are separated with a ':'.  e.g. mykey1:myvalue1</li>
-     * <li>{@link Permission#type} - any safe text</li>
+     *   <li>
+     *     {@link Permission#roles} * - multi occurring attribute contains RBAC Roles that permission operation is being 
+     *     granted to
+     *   </li>
+     *   <li>
+     *     {@link Permission#users} * - multi occurring attribute contains Users that permission operation is being granted 
+     *     to
+     *   </li>
+     *   <li>
+     *     {@link Permission#props} * - multi-occurring property key and values are separated with a ':'.  e.g. 
+     *     mykey1:myvalue1
+     *   </li>
+     *   <li>{@link Permission#type} - any safe text</li>
      * </ul>
      *
      * @param perm must contain the object, {@link org.apache.directory.fortress.core.model.Permission#objName}, and operation, {@link Permission#opName}, that identifies target along with optional other attributes..
@@ -435,23 +512,36 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This method will update permission operation pre-existing in target directory under {@code ou=Permissions,ou=RBAC,dc=yourHostName,dc=com} container in directory information tree.
-     * The perm operation entity may also contain {@link org.apache.directory.fortress.core.model.Role} or {@link org.apache.directory.fortress.core.model.User} associations to add or remove using this function.
+     * This method will update permission operation pre-existing in target directory under 
+     * {@code ou=Permissions,ou=RBAC,dc=yourHostName,dc=com} container in directory information tree.
+     * The perm operation entity may also contain {@link org.apache.directory.fortress.core.model.Role} or 
+     * {@link org.apache.directory.fortress.core.model.User} associations to add or remove using this function.
      * The perm operation must exist before making this call.  Only non-null attributes will be updated.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Permission#objName} - contains the name of existing object being targeted for the permission update</li>
-     * <li>{@link Permission#opName} - contains the name of existing permission operation being updated</li>
+     *   <li>{@link Permission#objName} - contains the name of existing object being targeted for the permission update</li>
+     *   <li>{@link Permission#opName} - contains the name of existing permission operation being updated</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link Permission#roles} * - multi occurring attribute contains RBAC Roles that permission operation is being granted to</li>
-     * <li>{@link Permission#users} * - multi occurring attribute contains Users that permission operation is being granted to</li>
-     * <li>{@link Permission#props} * - multi-occurring property key and values are separated with a ':'.  e.g. mykey1:myvalue1</li>
-     * <li>{@link Permission#type} - any safe text</li>
+     *   <li>
+     *     {@link Permission#roles} * - multi occurring attribute contains RBAC Roles that permission operation is being 
+     *     granted to
+     *   </li>
+     *   <li>
+     *     {@link Permission#users} * - multi occurring attribute contains Users that permission operation is being granted 
+     *     to
+     *   </li>
+     *   <li>
+     *     {@link Permission#props} * - multi-occurring property key and values are separated with a ':'.  e.g. 
+     *     mykey1:myvalue1
+     *   </li>
+     *   <li>{@link Permission#type} - any safe text</li>
      * </ul>
      *
-     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that identifies target and any optional data to update.  Null or empty attributes will be ignored.
+     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that 
+     * identifies target and any optional data to update.  Null or empty attributes will be ignored.
      * @return copy of Permission entity.
      * @throws SecurityException
      *          - thrown in the event of perm object data or system error.
@@ -461,15 +551,18 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This method will remove permission operation entity from permission object. A Fortress permission is (object->operation).
+     * This method will remove permission operation entity from permission object. A Fortress permission is 
+     * (object-&gt;operation).
      * The perm operation must exist before making this call.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Permission#objName} - contains the name of existing object being targeted for the permission delete</li>
-     * <li>{@link Permission#opName} - contains the name of existing permission operation being removed</li>
+     *   <li>{@link Permission#objName} - contains the name of existing object being targeted for the permission delete</li>
+     *   <li>{@link Permission#opName} - contains the name of existing permission operation being removed</li>
      * </ul>
      *
-     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that identifies target.
+     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that 
+     * identifies target.
      * @throws SecurityException - thrown in the event of perm object data or system error.
      */
     void deletePermission( Permission perm )
@@ -477,18 +570,23 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This method will add permission object to perms container in directory. The perm object must not exist before making this call.
-     * A {@link PermObj} instance exists in a hierarchical, one-many relationship between itself and children as stored in ldap tree: ({@link PermObj}*->{@link Permission}).
+     * This method will add permission object to perms container in directory. The perm object must not exist before making 
+     * this call.
+     * A {@link PermObj} instance exists in a hierarchical, one-many relationship between itself and children as stored in 
+     * ldap tree: ({@link PermObj}*-&gt;{@link Permission}).
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link PermObj#objName} - contains the name of new object being added</li>
-     * <li>{@link PermObj#ou} - contains the name of an existing PERMS OrgUnit this object is associated with</li>
+     *   <li>{@link PermObj#objName} - contains the name of new object being added</li>
+     *   <li>{@link PermObj#ou} - contains the name of an existing PERMS OrgUnit this object is associated with</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link PermObj#description} - any safe text</li>
-     * <li>{@link PermObj#type} - contains any safe text</li>
-     * <li>{@link PermObj#props} * - multi-occurring property key and values are separated with a ':'.  e.g. mykey1:myvalue1</li>
+     *   <li>{@link PermObj#description} - any safe text</li>
+     *   <li>{@link PermObj#type} - contains any safe text</li>
+     *   <li>
+     *     {@link PermObj#props} * - multi-occurring property key and values are separated with a ':'.  e.g. mykey1:myvalue1
+     *   </li>
      * </ul>
      *
      * @param pObj must contain the {@link PermObj#objName} and {@link PermObj#ou}.  The other attributes are optional.
@@ -500,18 +598,23 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This method will update permission object in perms container in directory.  The perm object must exist before making this call.
-     * A {@link PermObj} instance exists in a hierarchical, one-many relationship between itself and children as stored in ldap tree: ({@link PermObj}*->{@link Permission}).
+     * This method will update permission object in perms container in directory.  The perm object must exist before making 
+     * this call.
+     * A {@link PermObj} instance exists in a hierarchical, one-many relationship between itself and children as stored in 
+     * ldap tree: ({@link PermObj}*-&gt;{@link Permission}).
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link PermObj#objName} - contains the name of existing object being updated</li>
+     *   <li>{@link PermObj#objName} - contains the name of existing object being updated</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link PermObj#ou} - contains the name of an existing PERMS OrgUnit this object is associated with</li>
-     * <li>{@link PermObj#description} - any safe text</li>
-     * <li>{@link PermObj#type} - contains any safe text</li>
-     * <li>{@link PermObj#props} * - multi-occurring property key and values are separated with a ':'.  e.g. mykey1:myvalue1</li>
+     *   <li>{@link PermObj#ou} - contains the name of an existing PERMS OrgUnit this object is associated with</li>
+     *   <li>{@link PermObj#description} - any safe text</li>
+     *   <li>{@link PermObj#type} - contains any safe text</li>
+     *   <li>
+     *     {@link PermObj#props} * - multi-occurring property key and values are separated with a ':'.  e.g. mykey1:myvalue1
+     *   </li>
      * </ul>
      *
      * @param pObj must contain the {@link PermObj#objName}. Only non-null attributes will be updated.
@@ -526,9 +629,10 @@ public interface AdminMgr extends Manageable
     /**
      * This method will remove permission object to perms container in directory.  This method will also remove
      * in associated permission objects that are attached to this object.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link PermObj#objName} - contains the name of existing object targeted for removal</li>
+     *   <li>{@link PermObj#objName} - contains the name of existing object targeted for removal</li>
      * </ul>
      *
      * @param pObj must contain the {@link PermObj#objName} of object targeted for removal.
@@ -544,14 +648,16 @@ public interface AdminMgr extends Manageable
      * the object involved.
      * The command is valid if and only if the pair (operation, object) represents a permission,
      * and the role is a member of the ROLES data set.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Permission#objName} - contains the object name</li>
-     * <li>{@link Permission#opName} - contains the operation name</li>
-     * <li>{@link Role#name} - contains the role name</li>
+     *   <li>{@link Permission#objName} - contains the object name</li>
+     *   <li>{@link Permission#opName} - contains the operation name</li>
+     *   <li>{@link Role#name} - contains the role name</li>
      * </ul>
      *
-     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that identifies target.
+     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that 
+     * identifies target.
      * @param role must contains {@link Role#name}.
      * @throws SecurityException Thrown in the event of data validation or system error.
      */
@@ -565,14 +671,16 @@ public interface AdminMgr extends Manageable
      * list of the object involved.
      * The command is valid if and only if the pair (operation, object) represents a permission,
      * the role is a member of the ROLES data set, and the permission is assigned to that role.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Permission#objName} - contains the object name</li>
-     * <li>{@link Permission#opName} - contains the operation name</li>
-     * <li>{@link Role#name} - contains the role name</li>
+     *   <li>{@link Permission#objName} - contains the object name</li>
+     *   <li>{@link Permission#opName} - contains the operation name</li>
+     *   <li>{@link Role#name} - contains the role name</li>
      * </ul>
      *
-     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that identifies target.
+     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that 
+     * identifies target.
      * @param role must contains {@link Role#name}.
      * @throws SecurityException Thrown in the event of data validation or system error.
      */
@@ -586,14 +694,16 @@ public interface AdminMgr extends Manageable
      * the object involved.
      * The command is valid if and only if the pair (operation, object) represents a permission,
      * and the user is a member of the USERS data set.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Permission#objName} - contains the object name</li>
-     * <li>{@link Permission#opName} - contains the operation name</li>
-     * <li>{@link User#userId} - contains the userId</li>
+     *   <li>{@link Permission#objName} - contains the object name</li>
+     *   <li>{@link Permission#opName} - contains the operation name</li>
+     *   <li>{@link User#userId} - contains the userId</li>
      * </ul>
      *
-     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that identifies target.
+     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, 
+     * that identifies target.
      * @param user must contain {@link User#userId} of target User entity.
      * @throws SecurityException Thrown in the event of data validation or system error.
      */
@@ -607,14 +717,16 @@ public interface AdminMgr extends Manageable
      * list of the object involved.
      * The command is valid if and only if the pair (operation, object) represents a permission,
      * the user is a member of the USERS data set, and the permission is assigned to that user.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link Permission#objName} - contains the object name</li>
-     * <li>{@link Permission#opName} - contains the operation name</li>
-     * <li>{@link User#userId} - contains the userId</li>
+     *   <li>{@link Permission#objName} - contains the object name</li>
+     *   <li>{@link Permission#opName} - contains the operation name</li>
+     *   <li>{@link User#userId} - contains the userId</li>
      * </ul>
      *
-     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that identifies target.
+     * @param perm must contain the object, {@link Permission#objName}, and operation, {@link Permission#opName}, that
+     * identifies target.
      * @param user must contain {@link User#userId} of target User entity.
      * @throws SecurityException Thrown in the event of data validation or system error.
      */
@@ -628,34 +740,59 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The childRole is not a member of the ROLES data set.
-     * <li> The parentRole is a member of the ROLES data set.
+     *   <li>The childRole is not a member of the ROLES data set.</li>
+     *   <li>The parentRole is a member of the ROLES data set.</li>
      * </ul>
      * <p>
-     * <p> This method:
+     * This method:
      * <ul>
-     * <li> Adds new role.
-     * <li> Assigns role relationship between new childRole and pre-existing parentRole.
+     *   <li>Adds new role.</li>
+     *   <li>Assigns role relationship between new childRole and pre-existing parentRole.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>parentRole - {@link Role#name} - contains the name of existing Role to be parent</li>
-     * <li>childRole - {@link Role#name} - contains the name of new Role to be child</li>
+     *   <li>parentRole - {@link Role#name} - contains the name of existing Role to be parent</li>
+     *   <li>childRole - {@link Role#name} - contains the name of new Role to be child</li>
      * </ul>
      * <h4>optional parameters childRole</h4>
      * <ul>
-     * <li>childRole - {@link Role#description} - maps to description attribute on organizationalRole object class for new child</li>
-     * <li>childRole - {@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session for new child</li>
-     * <li>childRole - {@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session for new child</li>
-     * <li>childRole - {@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session for new child</li>
-     * <li>childRole - {@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session for new child</li>
-     * <li>childRole - {@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status for new child</li>
-     * <li>childRole - {@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status for new child</li>
-     * <li>childRole - {@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into user's RBAC session for new child</li>
+     *   <li>
+     *     childRole - {@link Role#description} - maps to description attribute on organizationalRole object class for new 
+     *     child
+     *   </li>
+     *   <li>
+     *     childRole - {@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session 
+     *     for new child
+     *   </li>
+     *   <li>
+     *     childRole - {@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session for 
+     *     new child
+     *   </li>
+     *   <li>
+     *     childRole - {@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC 
+     *     session for new child
+     *   </li>
+     *   <li>
+     *     childRole - {@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC 
+     *     session for new child
+     *   </li>
+     *   <li>
+     *     childRole - {@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status for new 
+     *     child
+     *   </li>
+     *   <li>
+     *     childRole - {@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status for new child
+     *   </li>
+     *   <li>
+     *     childRole - {@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be 
+     *     activated into user's RBAC session for new child
+     *   </li>
      * </ul>
      *
      * @param parentRole This entity must be present in ROLE data set.  Success will add role rel with childRole.
-     * @param childRole  This entity must not be present in ROLE data set.  Success will add the new role entity to ROLE data set.
+     * @param childRole  This entity must not be present in ROLE data set.  Success will add the new role entity to ROLE
+     * data set.
      * @throws SecurityException
      *          thrown in the event of data validation or system error.
      */
@@ -669,30 +806,54 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The parentRole is not a member of the ROLES data set.
-     * <li> The childRole is a member of the ROLES data set.
+     *   <li>The parentRole is not a member of the ROLES data set.</li>
+     *   <li>The childRole is a member of the ROLES data set.</li>
      * </ul>
      * <p>
-     * <p> This method:
+     * This method:
      * <ul>
-     * <li> Adds new role.
-     * <li> Assigns role relationship between new parentRole and pre-existing childRole.
+     *   <li>Adds new role.</li>
+     *   <li>Assigns role relationship between new parentRole and pre-existing childRole.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>childRole - {@link Role#name} - contains the name of existing child Role</li>
-     * <li>parentRole - {@link Role#name} - contains the name of new Role to be parent</li>
+     *   <li>childRole - {@link Role#name} - contains the name of existing child Role</li>
+     *   <li>parentRole - {@link Role#name} - contains the name of new Role to be parent</li>
      * </ul>
      * <h4>optional parameters parentRole</h4>
      * <ul>
-     * <li>parentRole - {@link Role#description} - maps to description attribute on organizationalRole object class for new parent</li>
-     * <li>parentRole - {@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC session for new parent</li>
-     * <li>parentRole - {@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session for new parent</li>
-     * <li>parentRole - {@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC session for new parent</li>
-     * <li>parentRole - {@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC session for new parent</li>
-     * <li>parentRole - {@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status for new parent</li>
-     * <li>parentRole - {@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status for new parent</li>
-     * <li>parentRole - {@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be activated into user's RBAC session for new parent</li>
+     *   <li>
+     *     parentRole - {@link Role#description} - maps to description attribute on organizationalRole object class for 
+     *     new parent
+     *   </li>
+     *   <li>
+     *     parentRole - {@link Role#beginTime} - HHMM - determines begin hour role may be activated into user's RBAC 
+     *     session for new parent
+     *   </li>
+     *   <li>
+     *     parentRole - {@link Role#endTime} - HHMM - determines end hour role may be activated into user's RBAC session 
+     *     for new parent
+     *   </li>
+     *   <li>
+     *     parentRole - {@link Role#beginDate} - YYYYMMDD - determines date when role may be activated into user's RBAC 
+     *     session for new parent
+     *   </li>
+     *   <li>
+     *     parentRole - {@link Role#endDate} - YYYYMMDD - indicates latest date role may be activated into user's RBAC 
+     *     session for new parent
+     *   </li>
+     *   <li>
+     *     parentRole - {@link Role#beginLockDate} - YYYYMMDD - determines beginning of enforced inactive status for new 
+     *     parent
+     *   </li>
+     *   <li>
+     *     parentRole - {@link Role#endLockDate} - YYYYMMDD - determines end of enforced inactive status for new parent
+     *   </li>
+     *   <li>
+     *     parentRole - {@link Role#dayMask} - 1234567, 1 = Sunday, 2 = Monday, etc - specifies which day role may be 
+     *     activated into user's RBAC session for new parent
+     *   </li>
      * </ul>
      *
      * @param parentRole completion of op assigns new child relationship with childRole.
@@ -704,19 +865,20 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This command establishes a new immediate inheritance relationship parentRole <<-- childRole between existing
+     * This command establishes a new immediate inheritance relationship parentRole &lt;&lt;-- childRole between existing
      * roles parentRole, childRole.
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The parentRole and childRole are members of the ROLES data set.
-     * <li> The parentRole is not an immediate ascendant of childRole.
-     * <li> The childRole does not properly inherit parentRole (in order to avoid cycle creation).
+     *   <li>The parentRole and childRole are members of the ROLES data set.</li>
+     *   <li>The parentRole is not an immediate ascendant of childRole.</li>
+     *   <li>The childRole does not properly inherit parentRole (in order to avoid cycle creation).</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>parentRole - {@link Role#name} - contains the name of existing Role to be parent</li>
-     * <li>childRole - {@link Role#name} - contains the name of existing Role to be child</li>
+     *   <li>parentRole - {@link Role#name} - contains the name of existing Role to be parent</li>
+     *   <li>childRole - {@link Role#name} - contains the name of existing Role to be child</li>
      * </ul>
      *
      * @param parentRole completion of op deassigns child relationship with childRole.
@@ -728,19 +890,22 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This command deletes an existing immediate inheritance relationship parentRole <<-- childRole.
+     * This command deletes an existing immediate inheritance relationship parentRole &lt;&lt;-- childRole.
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The roles parentRole and childRole are members of the ROLES data set.
-     * <li> The parentRole is an immediate ascendant of childRole.
-     * <li> The new inheritance relation is computed as the reflexive-transitive closure of the immediate inheritance
-     * relation resulted after deleting the relationship parentRole <<-- childRole.
+     *   <li>The roles parentRole and childRole are members of the ROLES data set.</li>
+     *   <li>The parentRole is an immediate ascendant of childRole.</li>
+     *   <li>
+     *     The new inheritance relation is computed as the reflexive-transitive closure of the immediate inheritance
+     *     relation resulted after deleting the relationship parentRole &lt;&lt;-- childRole.
+     *   </li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>parentRole - {@link Role#name} - contains the name of existing Role to remove parent relationship</li>
-     * <li>childRole - {@link Role#name} - contains the name of existing Role to remove child relationship</li>
+     *   <li>parentRole - {@link Role#name} - contains the name of existing Role to remove parent relationship</li>
+     *   <li>childRole - {@link Role#name} - contains the name of existing Role to remove child relationship</li>
      * </ul>
      *
      * @param parentRole completion of op removes child relationship with childRole.
@@ -757,20 +922,26 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li>The name of the SSD set is not already in use.
-     * <li> All the roles in the SSD set are members of the ROLES data set.
-     * <li> n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the SSD role set.
-     * <li> The SSD constraint for the new role set is satisfied.
+     *   <li>The name of the SSD set is not already in use.</li>
+     *   <li>All the roles in the SSD set are members of the ROLES data set.</li>
+     *   <li>
+     *     n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the SSD role set.
+     *   </li>
+     *   <li>The SSD constraint for the new role set is satisfied.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of new SSD role set to be added</li>
+     *   <li>{@link SDSet#name} - contains the name of new SSD role set to be added</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
-     * <li>{@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned to User from a particular set</li>
-     * <li>{@link SDSet#description} - contains any safe text</li>
+     *   <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
+     *   <li>
+     *     {@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned to
+     *      User from a particular set
+     *    </li>
+     *   <li>{@link SDSet#description} - contains any safe text</li>
      * </ul>
      *
      * @param ssdSet contains an instantiated reference to new SSD set containing, name, members, and cardinality (default 2)
@@ -787,23 +958,30 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li>The name of the SSD set already exists.
-     * <li> All the roles in the SSD set are members of the ROLES data set.
-     * <li> n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the SSD role set.
-     * <li> The SSD constraint for the new role set is satisfied.
+     *   <li>The name of the SSD set already exists.</li>
+     *   <li>All the roles in the SSD set are members of the ROLES data set.</li>
+     *   <li>
+     *     n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the SSD role set.
+     *   </li>
+     *   <li>The SSD constraint for the new role set is satisfied.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of existing SSD role set to be updated</li>
+     *   <li>{@link SDSet#name} - contains the name of existing SSD role set to be updated</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
-     * <li>{@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned to User from a particular set</li>
-     * <li>{@link SDSet#description} - contains any safe text</li>
+     *   <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
+     *   <li>
+     *     {@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned to 
+     *     User from a particular set
+     *   </li>
+     *   <li>{@link SDSet#description} - contains any safe text</li>
      * </ul>
      *
-     * @param ssdSet contains an instantiated reference to existing SSD set containing, name, members, and cardinality (default 2)
+     * @param ssdSet contains an instantiated reference to existing SSD set containing, name, members, and cardinality 
+     * (default 2)
      * @return reference to SSDSet object targeted for update.
      * @throws SecurityException in the event of data validation or system error.
      */
@@ -816,14 +994,15 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The SSD role set exists.
-     * <li> The role to be added is a member of the ROLES data set but not of a member of the SSD role set.
-     * <li> The SSD constraint is satisfied after the addition of the role to the SSD role set.
+     *   <li>The SSD role set exists.</li>
+     *   <li>The role to be added is a member of the ROLES data set but not of a member of the SSD role set.</li>
+     *   <li>The SSD constraint is satisfied after the addition of the role to the SSD role set.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of SSD role set to be modified</li>
-     * <li>{@link Role#name} - contains the name of new {@link SDSet#members} to be added</li>
+     *   <li>{@link SDSet#name} - contains the name of SSD role set to be modified</li>
+     *   <li>{@link Role#name} - contains the name of new {@link SDSet#members} to be added</li>
      * </ul>
      *
      * @param ssdSet contains an instantiated reference to new SSD set containing, name
@@ -837,19 +1016,21 @@ public interface AdminMgr extends Manageable
 
 
     /**
-     * This command removes a role from a named SSD set of roles. The cardinality associated with the role set remains unchanged.
+     * This command removes a role from a named SSD set of roles. The cardinality associated with the role set remains 
+     * unchanged.
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The SSD role set exists.
-     * <li> The role to be removed is a member of the SSD role set.
-     * <li> The cardinality associated with the SSD role set is less than the number of elements of the SSD role set.
+     *   <li>The SSD role set exists.</li>
+     *   <li>The role to be removed is a member of the SSD role set.</li>
+     *   <li>The cardinality associated with the SSD role set is less than the number of elements of the SSD role set.</li>
      * </ul>
      * Note that the SSD constraint should be satisfied after the removal of the role from the SSD role set.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of SSD role set to be modified</li>
-     * <li>{@link Role#name} - contains the name of existing {@link SDSet#members} to be removed</li>
+     *   <li>{@link SDSet#name} - contains the name of SSD role set to be modified</li>
+     *   <li>{@link Role#name} - contains the name of existing {@link SDSet#members} to be removed</li>
      * </ul>
      *
      * @param ssdSet contains an instantiated reference to new SSD set containing name.
@@ -863,9 +1044,10 @@ public interface AdminMgr extends Manageable
 
     /**
      * This command deletes a SSD role set completely. The command is valid if and only if the SSD role set exists.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of SSD role set to be removed</li>
+     *   <li>{@link SDSet#name} - contains the name of SSD role set to be removed</li>
      * </ul>
      *
      * @param ssdSet contains an instantiated reference to SSD set targeted for removal.
@@ -881,14 +1063,18 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The SSD role set exists.
-     * <li> The new cardinality is a natural number greater than or equal to 2 and less than or equal to the number of elements of the SSD role set.
-     * <li> The SSD constraint is satisfied after setting the new cardinality.
+     *   <li>The SSD role set exists.</li>
+     *   <li>
+     *     The new cardinality is a natural number greater than or equal to 2 and less than or equal to the number of 
+     *     elements of the SSD role set.
+     *   </li>
+     *   <li>The SSD constraint is satisfied after setting the new cardinality.
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of SSD role set to be modified</li>
-     * <li>cardinality - contains new cardinality setting for SSD</li>
+     *   <li>{@link SDSet#name} - contains the name of SSD role set to be modified</li>
+     *   <li>cardinality - contains new cardinality setting for SSD</li>
      * </ul>
      *
      * @param ssdSet      contains an instantiated reference to new SSD set containing, name
@@ -908,23 +1094,30 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The name of the DSD set is not already in use.
-     * <li> All the roles in the DSD set are members of the ROLES data set.
-     * <li> n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the DSD role set.
-     * <li> The DSD constraint for the new role set is satisfied.
+     *   <li>The name of the DSD set is not already in use.</li>
+     *   <li>All the roles in the DSD set are members of the ROLES data set.</li>
+     *   <li>
+     *     n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the DSD role set.
+     *   </li>
+     *   <li> The DSD constraint for the new role set is satisfied.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of new DSD role set to be added</li>
+     *   <li>{@link SDSet#name} - contains the name of new DSD role set to be added</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
-     * <li>{@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned to User from a particular set</li>
-     * <li>{@link SDSet#description} - contains any safe text</li>
+     *   <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
+     *   <li>
+     *     {@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned to 
+     *     User from a particular set
+     *   </li>
+     *   <li>{@link SDSet#description} - contains any safe text</li>
      * </ul>
      *
-     * @param dsdSet contains an instantiated reference to new DSD set containing, name, members, and cardinality (default 2)
+     * @param dsdSet contains an instantiated reference to new DSD set containing, name, members, and cardinality 
+     * (default 2)
      * @return reference to newly created SSDSet object.
      * @throws SecurityException in the event of data validation or system error.
      */
@@ -938,23 +1131,30 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li>The name of the DSD set already exists.
-     * <li> All the roles in the DSD set are members of the ROLES data set.
-     * <li> n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the DSD role set.
-     * <li> The DSD constraint for the new role set is satisfied.
+     *   <li>The name of the DSD set already exists.</li>
+     *   <li>All the roles in the DSD set are members of the ROLES data set.</li>
+     *   <li>
+     *     n is a natural number greater than or equal to 2 and less than or equal to the cardinality of the DSD role set.
+     *   </li>
+     *   <li>The DSD constraint for the new role set is satisfied.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of existing DSD role set to be updated</li>
+     *   <li>{@link SDSet#name} - contains the name of existing DSD role set to be updated</li>
      * </ul>
      * <h4>optional parameters</h4>
      * <ul>
-     * <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
-     * <li>{@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned to User from a particular set</li>
-     * <li>{@link SDSet#description} - contains any safe text</li>
+     *   <li>{@link SDSet#members} * - multi-occurring attribute contains the RBAC Role names to be added to this set</li>
+     *   <li>
+     *     {@link SDSet#cardinality} - default is 2 which is one more than maximum number of Roles that may be assigned 
+     *     to User from a particular set
+     *   </li>
+     *   <li>{@link SDSet#description} - contains any safe text</li>
      * </ul>
      *
-     * @param dsdSet contains an instantiated reference to existing DSD set containing, name, members, and cardinality (default 2)
+     * @param dsdSet contains an instantiated reference to existing DSD set containing, name, members, and cardinality 
+     * (default 2)
      * @return reference to DSDSet object targeted for update.
      * @throws SecurityException in the event of data validation or system error.
      */
@@ -968,15 +1168,15 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The DSD role set exists.
-     * <li> The role to be added is a member of the ROLES data set but not of a member of the DSD role set.
-     * <li> The DSD constraint is satisfied after the addition of the role to the SSD role set.
+     *   <li>The DSD role set exists.</li>
+     *   <li>The role to be added is a member of the ROLES data set but not of a member of the DSD role set.</li>
+     *   <li>The DSD constraint is satisfied after the addition of the role to the SSD role set.</li>
      * </ul>
-     * <p>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of DSD role set to be modified</li>
-     * <li>{@link Role#name} - contains the name of new {@link SDSet#members} to be added</li>
+     *   <li>{@link SDSet#name} - contains the name of DSD role set to be modified</li>
+     *   <li>{@link Role#name} - contains the name of new {@link SDSet#members} to be added</li>
      * </ul>
      * @param dsdSet contains an instantiated reference to new DSD set containing, name
      * @param role   contains instantiated Role object with role name field set.
@@ -993,15 +1193,16 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The DSD role set exists
-     * <li> The role to be removed is a member of the DSD role set.
-     * <li> The cardinality associated with the DSD role set is less than the number of elements of the DSD role set.
+     *   <li>The DSD role set exists</li>
+     *   <li>The role to be removed is a member of the DSD role set.</li>
+     *   <li>The cardinality associated with the DSD role set is less than the number of elements of the DSD role set.</li>
      * </ul>
      * Note that the DSD constraint should be satisfied after the removal of the role from the DSD role set.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of DSD role set to be modified</li>
-     * <li>{@link Role#name} - contains the name of existing {@link SDSet#members} to be removed</li>
+     *   <li>{@link SDSet#name} - contains the name of DSD role set to be modified</li>
+     *   <li>{@link Role#name} - contains the name of existing {@link SDSet#members} to be removed</li>
      * </ul>
      *
      * @param dsdSet contains an instantiated reference to new DSD set containing name.
@@ -1015,9 +1216,10 @@ public interface AdminMgr extends Manageable
 
     /**
      * This command deletes a DSD role set completely. The command is valid if and only if the DSD role set exists.
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of DSD role set to be removed</li>
+     *   <li>{@link SDSet#name} - contains the name of DSD role set to be removed</li>
      * </ul>
      *
      * @param dsdSet contains an instantiated reference to DSD set targeted for removal.
@@ -1033,14 +1235,18 @@ public interface AdminMgr extends Manageable
      * <p>
      * The command is valid if and only if:
      * <ul>
-     * <li> The SSD role set exists.
-     * <li> The new cardinality is a natural number greater than or equal to 2 and less than or equal to the number of elements of the SSD role set.
-     * <li> The SSD constraint is satisfied after setting the new cardinality.
+     *   <li>The SSD role set exists.</li>
+     *   <li>
+     *     The new cardinality is a natural number greater than or equal to 2 and less than or equal to the number of 
+     *     elements of the SSD role set.
+     *   </li>
+     *   <li>The SSD constraint is satisfied after setting the new cardinality.</li>
      * </ul>
+     * <h3></h3>
      * <h4>required parameters</h4>
      * <ul>
-     * <li>{@link SDSet#name} - contains the name of DSD role set to be modified</li>
-     * <li>cardinality - contains new cardinality setting for SSD</li>
+     *   <li>{@link SDSet#name} - contains the name of DSD role set to be modified</li>
+     *   <li>cardinality - contains new cardinality setting for SSD</li>
      * </ul>
      *
      * @param dsdSet      contains an instantiated reference to new DSD set containing, name


Mime
View raw message