Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

com.atlassian.crowd.service.cache
Class CacheAwareAuthenticationManager

java.lang.Object
  extended by com.atlassian.crowd.service.cache.CacheAwareAuthenticationManager
All Implemented Interfaces:
AuthenticationManager
public class CacheAwareAuthenticationManager
extends java.lang.Object
implements AuthenticationManager

This class provides a version of the AuthenticationManager interface that, will ensure that if the authentication is successful, the user will exist in the cache. The abstraction is in place so we can decouple client-side code from the SecurityServerClient.

It also serves to logically break out the API.

Constructor Summary
CacheAwareAuthenticationManager(SecurityServerClient securityServerClient, UserManager crowdUserManager)
           
 
Method Summary
 java.lang.String authenticate(java.lang.String username, java.lang.String password)
          Authenticates a user, using just a username and password.
 java.lang.String authenticate(UserAuthenticationContext authenticationContext)
          Authenticate a user.
 java.lang.String authenticateWithoutValidatingPassword(UserAuthenticationContext authenticationContext)
          Authenticate a user without validating their password.
 SecurityServerClient getSecurityServerClient()
          Returns an instance of the SecurityServerClient, for when you need more API access than the authentication manager provides.
 void invalidate(java.lang.String token)
          Marks the presented token as invalid, meaning that the principal it represents is no longer authenticated.
 boolean isAuthenticated(java.lang.String token, ValidationFactor[] validationFactors)
          Checks that the token (as returned from authenticate() is still valid, given the validation factors.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

CacheAwareAuthenticationManager

public CacheAwareAuthenticationManager(SecurityServerClient securityServerClient,
                                       UserManager crowdUserManager)
Method Detail

authenticate

public java.lang.String authenticate(UserAuthenticationContext authenticationContext)
                              throws java.rmi.RemoteException,
                                     InvalidAuthorizationTokenException,
                                     InvalidAuthenticationException,
                                     InactiveAccountException,
                                     ApplicationAccessDeniedException,
                                     ExpiredCredentialException
Description copied from interface: AuthenticationManager
Authenticate a user. The PrincipalAuthenticationContext contains the details of who they are, the credentials they're presenting, and where they're coming from. If the authenticationContext does not contain application details, they will be added using details provided by the SecurityServerClient.

Specified by:
authenticate in interface AuthenticationManager
Parameters:
authenticationContext - The details of the user that is to be authenticated.
Returns:
Returns an authorization token if successful.
Throws:
java.rmi.RemoteException - A communication error occurred - the Crowd server may not be available.
InvalidAuthorizationTokenException - The application (not the user) was not authenticated correctly.
InvalidAuthenticationException - The user was not successfully authenticated.
InactiveAccountException - The user's account is inactive and they are not be allowed to authenticate.
ApplicationAccessDeniedException - user does not have authorisation to access application.
ExpiredCredentialException - The user's credentials have expired. The user must change their credentials in order to successfully authenticate.

authenticateWithoutValidatingPassword

public java.lang.String authenticateWithoutValidatingPassword(UserAuthenticationContext authenticationContext)
                                                       throws ApplicationAccessDeniedException,
                                                              InvalidAuthenticationException,
                                                              InvalidAuthorizationTokenException,
                                                              InactiveAccountException,
                                                              java.rmi.RemoteException
Description copied from interface: AuthenticationManager
Authenticate a user without validating their password. The PrincipalAuthenticationContext contains the details of who they are and where they're coming from but does not need to contain any credentials.

Specified by:
authenticateWithoutValidatingPassword in interface AuthenticationManager
Parameters:
authenticationContext - The details of the user that is to be authenticated. Username and validation factors are required.
Returns:
Returns an authorization token if successful.
Throws:
ApplicationAccessDeniedException - user does not have authorisation to access application.
InvalidAuthenticationException - The user was not successfully authenticated.
InvalidAuthorizationTokenException - The application (not the user) was not authenticated correctly.
InactiveAccountException - The user's account is inactive and they are not be allowed to authenticate.
java.rmi.RemoteException - A communication error occurred - the Crowd server may not be available.

authenticate

public java.lang.String authenticate(java.lang.String username,
                                     java.lang.String password)
                              throws java.rmi.RemoteException,
                                     InvalidAuthorizationTokenException,
                                     InvalidAuthenticationException,
                                     InactiveAccountException,
                                     ApplicationAccessDeniedException,
                                     ExpiredCredentialException
Description copied from interface: AuthenticationManager
Authenticates a user, using just a username and password.

Specified by:
authenticate in interface AuthenticationManager
Parameters:
username - username of user.
password - credentials of user.
Returns:
Returns an authorization token if successful.
Throws:
java.rmi.RemoteException - A communication error occurred - the Crowd server may not be available.
InvalidAuthorizationTokenException - The application (not the user) was not authenticated correctly.
InvalidAuthenticationException - The user was not successfully authenticated.
InactiveAccountException - The user's account is inactive and they are not be allowed to authenticate.
ApplicationAccessDeniedException - user does not have authorisation to access application.
ExpiredCredentialException - The user's credentials have expired.

isAuthenticated

public boolean isAuthenticated(java.lang.String token,
                               ValidationFactor[] validationFactors)
                        throws java.rmi.RemoteException,
                               InvalidAuthorizationTokenException,
                               ApplicationAccessDeniedException
Description copied from interface: AuthenticationManager
Checks that the token (as returned from authenticate() is still valid, given the validation factors.

Specified by:
isAuthenticated in interface AuthenticationManager
Parameters:
token - The token presented by the user as evidence of their authenticity
validationFactors - Details of where the user's come from. If presented, must match those presented during authentication.
Returns:
true if the user is still authenticated, false if not.
Throws:
java.rmi.RemoteException - A communication error occurred - the Crowd server may not be available.
InvalidAuthorizationTokenException - The application (not the user) was not authenticated correctly.
ApplicationAccessDeniedException - user does not have authorisation to access application.

invalidate

public void invalidate(java.lang.String token)
                throws java.rmi.RemoteException,
                       InvalidAuthorizationTokenException
Description copied from interface: AuthenticationManager
Marks the presented token as invalid, meaning that the principal it represents is no longer authenticated. Usually used to make the user logged-off.

Specified by:
invalidate in interface AuthenticationManager
Parameters:
token - The token presented by the user, as returned from authenticate()
Throws:
java.rmi.RemoteException - A communication error occurred - the Crowd server may not be available.
InvalidAuthorizationTokenException - The application (not the user) was not authenticated correctly.

getSecurityServerClient

public SecurityServerClient getSecurityServerClient()
Description copied from interface: AuthenticationManager
Returns an instance of the SecurityServerClient, for when you need more API access than the authentication manager provides.

Specified by:
getSecurityServerClient in interface AuthenticationManager
Returns:
underlying SecurityServerClient.
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2010 Atlassian. All Rights Reserved.