Package com.atlassian.confluence.user

Class DefaultUserAccessor

    • Field Detail

      • BULK_FETCH_USERS_BATCH_SIZE

        public static final int BULK_FETCH_USERS_BATCH_SIZE

      • BULK_FETCH_GROUP_BATCH_SIZE

        public static final int BULK_FETCH_GROUP_BATCH_SIZE

    • Method Detail

      • getUserByName

        public @Nullable ConfluenceUser getUserByName​(String name)
        Description copied from interface: UserAccessor
        Returns the ConfluenceUser with the supplied user name or null if the user doesn't exist or the supplied name is null.

        Note that user name lookups are case-insensitive, so the user you get back may not have exactly the same name as the name passed to this method.

        Specified by:
        getUserByName in interface ConfluenceUserResolver
        Specified by:
        getUserByName in interface UserAccessor
        Parameters:
        name - the user name of the user
        Returns:
        the ConfluenceUser with the supplied user name or null.

      • isUnsyncedUser

        public boolean isUnsyncedUser​(ConfluenceUser user)
        Description copied from interface: UserAccessorInternal
        Checks whether or not a user is unsynced
        Specified by:
        isUnsyncedUser in interface UserAccessorInternal
        Parameters:
        user - the user to check
        Returns:
        true if the user is unsynced, false otherwise (even if the user doesn't exist)

      • isCrowdManaged

        public boolean isCrowdManaged​(ConfluenceUser user)
        Description copied from interface: UserAccessorInternal
        Checks whether or not embedded Crowd manages/has knowledge of a given user
        Specified by:
        isCrowdManaged in interface UserAccessorInternal
        Returns:
        true if the user is managed by embedded Crowd, false otherwise (even if the user doesn't exist)

      • exists

        public boolean exists​(String name)
        Description copied from interface: UserAccessor
        Returns true if a user exists with the given username. This method is significantly faster than getUser(name) != null.
        Specified by:
        exists in interface UserAccessor
        Specified by:
        exists in interface UserExistenceChecker
        Parameters:
        name - username of the user
        Returns:
        true if a user exists with the given username

      • createGroup

        public com.atlassian.user.Group createGroup​(String groupname)
        Method was added for consistency. We will need to decide whether we want to lowercase all group names upon creation. Currently createGroup() preserves the casing of the name and addGroup() will lowercase the name. Both methods were in use by Confluence, but only one overwritten to publish an event.
        Specified by:
        createGroup in interface UserAccessor
        Overrides:
        createGroup in class DefaultUserAccessor

      • searchUnsyncedUsers

        public com.atlassian.user.search.page.Pager<ConfluenceUser> searchUnsyncedUsers​(String searchParam)
        Description copied from interface: UserAccessorInternal
        Returns a list of all users for the given username search parameter that are unsynced: a user whose account has been disconnected from an external directory, i.e. a user who has a known mapping but no backing user, but who has not yet been deleted from the application.
        Specified by:
        searchUnsyncedUsers in interface UserAccessorInternal
        Parameters:
        searchParam - the username parameter to search by
        Returns:
        a pager of all unknown / unsynced users

      • isDeactivated

        public boolean isDeactivated​(String username)
        Description copied from interface: UserAccessor
        Returns true if the user with the specified username exists and is unable to log in, otherwise false. Returns false if the username is null.
        Specified by:
        isDeactivated in interface UserAccessor
        Specified by:
        isDeactivated in interface UserAccessor
        Returns:
        true if the user with the specified username exists and is unable to log in, otherwise false.

      • isDeactivated

        public boolean isDeactivated​(com.atlassian.user.User user)
        Description copied from interface: UserAccessor
        Returns true if the user exists and is unable to log in, otherwise false. Returns false if the user is null.
        Specified by:
        isDeactivated in interface UserAccessor
        Specified by:
        isDeactivated in interface UserAccessor
        Returns:
        true if the user exists and is unable to log in, otherwise false.

      • deactivateUser

        public void deactivateUser​(com.atlassian.user.User user)
        Description copied from interface: UserAccessor
        Deactivate the specified user, which prevents them logging in. Does nothing if the user is already deactivated.
        Specified by:
        deactivateUser in interface UserAccessor

      • reactivateUser

        public void reactivateUser​(com.atlassian.user.User user)
        Description copied from interface: UserAccessor
        Marks the specified user as active, which allows them to log in. Does nothing if the user is already active.
        Specified by:
        reactivateUser in interface UserAccessor

      • isReadOnly

        public boolean isReadOnly​(com.atlassian.user.User user)
        Description copied from interface: UserAccessor
        Returns true if the user cannot be modified or removed. However, returning false does necessarily confirm that the user can be modified or removed. Depending on the user management configuration, it is not always possible for Confluence to determine whether a user is read-only.

        In an internal-only user management configuration, this method always returns false.

        Specified by:
        isReadOnly in interface UserAccessor

      • isReadOnly

        public boolean isReadOnly​(com.atlassian.user.Group group)
        Description copied from interface: UserAccessor
        Returns true if the group cannot be modified or removed. However, returning false does necessarily confirm that the group can be modified or removed. Depending on the user management configuration, it is not always possible for Confluence to determine whether a group is read-only. Indeed, groups can span across multiple directories with different access control mechanisms, so it may be possible to modify certain memberships of a group but not others.

        In an internal-only user management configuration, this method always returns false.

        Specified by:
        isReadOnly in interface UserAccessor

      • getLogoForUser

        public ProfilePictureInfo getLogoForUser​(@Nullable com.atlassian.user.User user)

      • setUserProfilePicture

        public void setUserProfilePicture​(com.atlassian.user.User user,
                                  Attachment attachment)
        Description copied from interface: UserAccessor
        Set the user profile picture to the given attachment. The attachment should be an image attached to that user's personal information, of size 48x48. No check is performed in this method that the image is valid or the right size.
        Specified by:
        setUserProfilePicture in interface UserAccessor
        Parameters:
        user - the user to set a profile picture for
        attachment - the attachment containing the user's profile picture

      • setUserProfilePicture

        public void setUserProfilePicture​(com.atlassian.user.User user,
                                  String imagePath)
        Description copied from interface: UserAccessor
        Set the user profile picture to a built-in image. The path should be the web-application-root-relative path to the image to be used as the user's profile picture and should be size 48x48. Neither are checked by the implementation
        Specified by:
        setUserProfilePicture in interface UserAccessor
        Parameters:
        user - the user to set a profile picture for
        imagePath - the image path to that picture.

      • isSuperUser

        public boolean isSuperUser​(com.atlassian.user.User user)
        Description copied from interface: UserAccessor
        Return true is the user is a super user. This should not be used to infer any special permission exempt behaviours. In general, relying on group memberships for special behaviour is a bad idea. Permission checks in the application like PermissionManager.hasPermission(User, Permission, Object) already take care of super-user permission exempt checks and more. If checking for exemption from any permission checks is still required explicitly, use PermissionManager.isConfluenceAdministrator(User) instead. It also takes care of more checks than a group-membership for permission exemption. e.g. Checking exemptions before applying permission related query and/or filter, see AlphabeticalListPagesAction.getFilter(ConfluenceUser)
        Specified by:
        isSuperUser in interface UserAccessor
        Parameters:
        user - the user to check for (the null user will always return false)
        Returns:
        true if the user is super-user, false otherwise.

      • getGroupNames

        public List<String> getGroupNames​(com.atlassian.user.User user)
        Description copied from interface: UserAccessor
        Gets the list of group names representing the groups the passed in user is a member of.
        Specified by:
        getGroupNames in interface UserAccessor
        Parameters:
        user - the user to perform the membership check for
        Returns:
        a list of group names

      • getGroupNamesForUserName

        public List<String> getGroupNamesForUserName​(String userName)
        Description copied from interface: UserAccessor
        Gets the list of group names representing the groups the passed in user is a member of.
        Specified by:
        getGroupNamesForUserName in interface UserAccessor
        Parameters:
        userName - the name of the user to perform the membership check for
        Returns:
        a list of group names

      • getMembers

        public Iterable<ConfluenceUser> getMembers​(com.atlassian.user.Group group)
        Description copied from interface: UserAccessor
        Returns users who are members of the specified group (either directly or as a member of a nested group). Returns an empty iterable if the group is null or the group doesn't exist.

        Elements are generated on demand and it is recommended to fetch only as many elements as are needed.

        Specified by:
        getMembers in interface UserAccessor
        Parameters:
        group - group to get members for
        Returns:
        users who are members of the specified group

      • getWriteableGroups

        public List<com.atlassian.user.Group> getWriteableGroups()
        Description copied from interface: UserAccessor
        Gets all editable groups. That is, returns any groups that belong to read/write repositories. Groups in readonly repositories that are ReadOnly are not returned.
        Specified by:
        getWriteableGroups in interface UserAccessor
        Returns:
        list of Groups that can be edited.

      • getPropertySet

        @Transactional(readOnly=true)
public com.opensymphony.module.propertyset.PropertySet getPropertySet​(ConfluenceUser user)
        Specified by:
        getPropertySet in interface UserAccessor
        Returns:
        the property set for the supplied user

      • findUsersAsList

        public List<com.atlassian.user.User> findUsersAsList​(com.atlassian.user.search.query.Query<com.atlassian.user.User> search)
                                              throws com.atlassian.user.EntityException
        Specified by:
        findUsersAsList in interface UserAccessor
        Throws:
        com.atlassian.user.EntityException

      • findUsers

        public com.atlassian.user.search.SearchResult<com.atlassian.user.User> findUsers​(com.atlassian.user.search.query.Query<com.atlassian.user.User> query)
                                                                          throws com.atlassian.user.EntityException
        Specified by:
        findUsers in interface com.atlassian.user.search.query.EntityQueryParser
        Specified by:
        findUsers in interface UserAccessor
        Overrides:
        findUsers in class DefaultUserAccessor
        Throws:
        com.atlassian.user.EntityException

      • renameUser

        public ConfluenceUser renameUser​(ConfluenceUser user,
                                 String newUsername)
                          throws com.atlassian.user.EntityException
        Description copied from interface: UserAccessor
        Updates the username of the given user.
        Specified by:
        renameUser in interface UserAccessor
        Parameters:
        user - user to rename
        newUsername - username to use for renaming
        Returns:
        renamed user
        Throws:
        com.atlassian.user.impl.EntityValidationException - if the new username does not meet the username requirements
        com.atlassian.user.EntityException - if the operation is not allowed for the user
        com.atlassian.user.impl.DuplicateEntityException - if the username is already taken

      • getGroupsByGroupNames

        public List<com.atlassian.user.Group> getGroupsByGroupNames​(List<String> groupNames)
        Description copied from interface: UserAccessor
        Returns a list of Group objects where the names match that of the provided list of group names. If no names are provided an empty list will be returned.
        Specified by:
        getGroupsByGroupNames in interface UserAccessor
        Parameters:
        groupNames - the list group names for which the matching Group objects must be returned
        Returns:
        the list of resolved groups

      • getUsersByUserKeys

        public List<ConfluenceUser> getUsersByUserKeys​(List<com.atlassian.sal.api.user.UserKey> userKeys)
        Description copied from interface: UserAccessor
        Returns a list of ConfluenceUser with the supplied UserKeys or an empty list if the users do not exist. This method returns ConfluenceUser instances with pre-populated backing EmbeddedCrowdUser.
        Specified by:
        getUsersByUserKeys in interface ConfluenceUserResolver
        Specified by:
        getUsersByUserKeys in interface UserAccessor
        Parameters:
        userKeys - the user keys
        Returns:
        the list of ConfluenceUsers with UserKeys

      • countUnsyncedUsers

        public int countUnsyncedUsers()
        Description copied from interface: UserAccessor
        Get a count of all unsynced users in Confluence. An unsynced user is a user that was managed in an external directory but has since been removed from the directory without being deleted in Confluence.
        Specified by:
        countUnsyncedUsers in interface UserAccessor
        Returns:
        the total number of all unsynced users.

      • alterPassword

        public void alterPassword​(com.atlassian.user.User user,
                          String plainTextPassword,
                          String token)
                   throws com.atlassian.user.EntityException
        Specified by:
        alterPassword in interface UserAccessor
        Throws:
        com.atlassian.user.EntityException