#ifndef Authentication
#define Authentication

#include "01-base.idl"

module com {
	module vci {
		module corba{
			module auth2 {
				module data {
					// 鉴权
					struct CheckValue{
						wstring users;
						wstring roles;
						wstring userGroups;
						wstring paramValues;
						wstring businesstype;
						wstring opname;
						wstring objectoid;
						wstring objectroid;
						wstring objectmoid;
					};

					// 授权
					struct GrandValue{
						wstring ID;
						wstring users;
						wstring roles;
						wstring userGroups;
						wstring identifier;
						wstring expToSQL;
						char isGrand;
						wstring ruleText;
						wstring seniorRuleText;
						wstring ruleName;
						wstring ruleType;
						wstring lexpToSQL;
						wstring lruleText;
						wstring lseniorRuleText;
					};//Value
					typedef sequence<GrandValue> GrandValueArray;
				};

				//授权服务
				interface Auth2Service {
					//保存授权
					boolean saveGrand(in data::GrandValueArray values) raises (com::vci::corba::common::VCIError);
					//查询授权
					data::GrandValueArray queryGrand(in wstring identifier) raises (com::vci::corba::common::VCIError);
					//删除授权
					boolean deleteGrand(in wstring ruleName)raises (com::vci::corba::common::VCIError);
					//删除授权
					boolean deleteTypeRuleGrand(in wstring identifier,in wstring ruleName)raises (com::vci::corba::common::VCIError);

					//鉴权
					wstring checkRight(in data::CheckValue value) raises (com::vci::corba::common::VCIError);
					//过滤用户密级
					wstring checkUserSecret(in data::CheckValue value) raises (com::vci::corba::common::VCIError);
					//过滤IP密级
					wstring checkIPSecret(in data::CheckValue value) raises (com::vci::corba::common::VCIError);
				};
			}; // auth2
    	};//corba
	}; //vci
};//com

#endif