com.atlassian.jira.security.login.LoginManager |
Known Indirect Subclasses |
The LoginManager keeps track of users login activities.
Public Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
This can be called to see if an user knows the given password.
| |||||||||||
This can be called to see if an user knows the given password.
| |||||||||||
This is called to see if an authenticated user is allowed to login JIRA in the context of a web request.
| |||||||||||
This is called to see if an authenticated user is allowed to execute the web request given the required role
| |||||||||||
This is called to get LoginInfo about a given user.
| |||||||||||
Gets the set of role strings that are examined by Seraph to decide if a user is authorised to execute a request.
| |||||||||||
This is called to logout the current user and destroy their JIRA session.
| |||||||||||
This is called after a login attempt has been made.
| |||||||||||
This is called to see whether the user has passed an extended security check (such as CAPTCHA)
| |||||||||||
This can be called to reset the failed login count of a user
|
This can be called to see if an user knows the given password.
If the user requests elevatedSecurity then this will always fail with LoginReason.AUTHENTICATION_DENIED
user | the user to authenticate. This MUST not be null. |
---|---|
password | the password to authenticate against |
This can be called to see if an user knows the given password.
Calling this method will not cause the request to fail if the user is required to do an elevated security check on normal login.
user | the user to authenticate. This MUST not be null. |
---|---|
password | the password to authenticate against |
This is called to see if an authenticated user is allowed to login JIRA in the context of a web request.
At this stage the user has had their username and password authenticated but we need to see if they can be authorised to use JIRA.
user | the user to authorise. This MUST not be null. |
---|---|
httpServletRequest | the web request in play |
This is called to see if an authenticated user is allowed to execute the web request given the required role
user | the user to authorise. This MAY be null. |
---|---|
httpServletRequest | the web request in play |
This is called to get LoginInfo about a given user.
userName | the name of the user in play. This MUST not be null. |
---|
LoginInfo
object
Gets the set of role strings that are examined by Seraph to decide if a user is authorised to execute a request.
httpServletRequest | the request in play |
---|
This is called to logout the current user and destroy their JIRA session.
httpServletRequest | the HTTP request in play |
---|---|
httpServletResponse | the HTTP response in play |
This is called after a login attempt has been made. It allows the LoginManager to update information about a users login history.
httpServletRequest | the HTTP request in play |
---|---|
userName | the name of the user in play. This MUST not be null. |
loginSuccessful | whether the login attempt was sucessful or not |
LoginInfo
about the user
This is called to see whether the user has passed an extended security check (such as CAPTCHA)
httpServletRequest | the HTTP request in play |
---|---|
userName | the name of the user in play. This MUST not be null. |
This can be called to reset the failed login count of a user
user | the user to authorise. This MUST not be null. |
---|