/*
  GRANITE DATA SERVICES
  Copyright (C) 2011 GRANITE DATA SERVICES S.A.S.

  This file is part of Granite Data Services.

  Granite Data Services is free software; you can redistribute it and/or modify
  it under the terms of the GNU Library General Public License as published by
  the Free Software Foundation; either version 2 of the License, or (at your
  option) any later version.

  Granite Data Services is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
  FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public License
  for more details.

  You should have received a copy of the GNU Library General Public License
  along with this library; if not, see <http://www.gnu.org/licenses/>.
*/

package org.granite.messaging.amf.io;

/**
 * Implementations of this interface are used at deserialization time in
 * order to control arbitrary class instantiation that can result in potential
 * security exploits.
 * 
 * @author Franck WOLFF
 */
public interface AMF3DeserializerSecurizer {

        /**
         * Check if it safe to instantiate the class denoted by the <code>className</code>
         * parameter.
         * 
         * @param className the class name to check.
         * @return <code>true</code> if it is safe to instantiate the given class,
         *              <code>false</code> otherwise.
         */
        public boolean allowInstantiation(String className);
        
        /**
         * An arbitrary string that may be used in order to configure this securizer.
         * 
         * @param param a string used in configuring this securizer.
         */
        public void setParam(String param);
        
        /**
         * Returns the string that is currently used for this securizer configuration.
         * 
         * @return the string that is currently used for this securizer configuration.
         */
        public String getParam();
}