* A Data Router API that requires authorization of incoming requests creates an instance of a class that implements\r
* the <code>Authorizer</code> interface. The class implements all of the logic necessary to determine if an API\r
* request is permitted. In Data Router R1, the classes that implement the <code>Authorizer</code> interface will have\r
- * local logic that makes the authorization decision. After R1, these classes will instead have logic that creates XACML\r
+ * local logic that makes the authorization decision. After R1,these classes will instead have logic that creates XACML\r
* authorization requests, sends these requests to a Policy Decision Point (PDP), and parses the XACML responses.\r
*\r
* @author J. F. Lucas\r
public AuthorizationResponse decide(HttpServletRequest request);\r
\r
/**\r
- * Determine if the API request carried in the <code>request</code> parameter, with additional attributes provided in\r
+ * Determine if the API request carried in the <code>request</code> parameter,with additional attributes provided in\r
* the <code>additionalAttrs</code> parameter, is permitted.\r
*\r
* @param request the HTTP request for which an authorization decision is needed\r
- * @param additionalAttrs additional attributes that the <code>Authorizer</code> can in making an authorization decision\r
+ * @param additionalAttrs additional attributes that the <code>Authorizer</code> can in making a decision\r
* @return an object implementing the <code>AuthorizationResponse</code> interface. This object includes the\r
- * permit/deny decision for the request and (after R1) supplemental information related to the response in the form\r
- * of advice and obligations.\r
+ * permit/deny decision for the request and (after R1) supplemental information related to the response\r
+ * in the form of advice and obligations.\r
*/\r
public AuthorizationResponse decide(HttpServletRequest request, Map<String,String> additionalAttrs);\r
}\r