Package com.atlassian.crowd.directory
Class DbCachingRemoteDirectory
java.lang.Object
com.atlassian.crowd.directory.AbstractForwardingDirectory
com.atlassian.crowd.directory.DbCachingRemoteDirectory
- All Implemented Interfaces:
FastEntityCountProvider,MultiValuesQueriesSupport,RemoteDirectory,SynchronisableDirectory,Attributes
public class DbCachingRemoteDirectory
extends AbstractForwardingDirectory
implements RemoteDirectory, SynchronisableDirectory, FastEntityCountProvider, MultiValuesQueriesSupport
A
RemoteDirectory that provides LDAP and Crowd integration plus local storage in an internal directory
for LDAP user and group attributes, and local groups for LDAP and Crowd users with local caching of remote data.
The implementation delegates to an Remote directory for the "source of truth" and an internal directory for caching
and some special local storage.
All the attributes for the directory itself (e.g. base DN, other configuration options) are stored on the directory instance.
Terminology used in this class:
- Remote user
- A user stored in the LDAP or Remote Crowd directory
- Remote group
- A group stored in the LDAP or Remote Crowd directory.
- Local group
- A group stored in the internal directory. There must not be an Remote group with the same name for a local group to exist.
-
Constructor Summary
ConstructorsConstructorDescriptionDbCachingRemoteDirectory(RemoteDirectory remoteDirectory, InternalRemoteDirectory internalDirectory, DirectoryCacheFactory directoryCacheFactory, CacheRefresherFactory cacheRefresherFactory, AuditService auditService, AuditLogUserMapper auditLogUserMapper, String directoryName, com.atlassian.event.api.EventPublisher eventPublisher, DirectoryDao directoryDao, BatchConfigParser batchConfigParser) -
Method Summary
Modifier and TypeMethodDescriptionaddGroup(GroupTemplate group) Adds agroupto the directory store.voidaddGroupToGroup(String childGroup, String parentGroup) Adds a group as a member of a parent group.addUser(UserTemplateWithAttributes user, PasswordCredential credential) Adds auserto the directory store.voidaddUserToGroup(String username, String groupName) Adds a user as a member of a group.authenticate(String name, PasswordCredential credential) Authenticates auserwith the directory store.protected UserauthenticateAndUpdateInternalUser(String name, PasswordCredential credential) Authenticates user and ensures that internal directory contains the authenticated user.protected voidcheckIfUserCanBeUpdatedWithCurrentGroupFiltering(String username, Set<String> userRemoteGroupNames) voidSets theUserConstants.REQUIRES_PASSWORD_CHANGEattribute to true for all users in the directory using bulk operationsprotected InternalRemoteDirectoryReturns a descriptive name for the type of directory.longGets the internal uniquedirectoryIdof the directory store.longgetKeys()Gets all the keys of the attributes.longReturns any value associated with the given key, returnsnullif there is no value.Get all the values associated with a given key.booleanisEmpty()booleanGets the preferred synchronisation mode for this remote directory.booleanbooleanExpose whether the directory has roles disabled.voidremoveGroup(String name) Removes thegroupthat matches the suppliedname.voidremoveGroupAttributes(String groupName, String attributeName) Removes all the values for a single attribute key for a group.voidremoveGroupFromGroup(String childGroup, String parentGroup) Removes a group as a member of a parent group.voidremoveUser(String name) Removes theuserthat matches the suppliedname.voidremoveUserAttributes(String username, String attributeName) Removes all the values for a single attribute key for a user.voidremoveUserFromGroup(String username, String groupName) Removes a user as a member of a group.renameGroup(String oldName, String newName) Renames agroup.renameUser(String oldName, String newName) Renames auser.Searches forgroupsthat match the supplied query criteria.voidsetAttributes(Map<String, String> attributes) When a directory store is loaded, the attributes map will be set by the Crowd framework.voidsetDirectoryId(long directoryId) When a directory store is loaded, thedirectoryIdwill be set by the crowd framework.setUserStatusLocally(String username, boolean userActiveInternally) protected booleanshouldSyncGroupMembershipAfterUserAuthentication(boolean isNewUser) voidAdds or updates a group's attributes with the new Map of attribute values in the directory specified by the passed indirectoryId.voidAdds or updates a user's attributes with the new Map of attribute values in the directory specified by the passed indirectoryId.booleanThis implementation will store the active flag locally in the internal directory if local user status is enabled and if the active flag cannot be persisted on the underlying remote directory.booleanAllows us to only display nested-group related UI for directories that support it.booleanReturn true if this directory supports manually expiring passwords.booleanIf this method returns true, then callingRemoteDirectory.updateUserCredential(String, PasswordCredential)orRemoteDirectory.addUser(com.atlassian.crowd.model.user.UserTemplate, com.atlassian.crowd.embedded.api.PasswordCredential)with aPasswordCredentialinstance wherePasswordCredential.isEncryptedCredential()returns true and the instance is not equal toPasswordCredential.NONEwill succeed; otherwise, it will fail.voidsynchroniseCache(SynchronisationMode mode, SynchronisationStatusManager synchronisationStatusManager) Requests that this directory should update its cache by synchronising with the remote data.voidTest if a connection to the directory server can be established.updateGroup(GroupTemplate group) Updates thegroup.protected voidupdateGroupsMembershipOnLogin(User user, Set<String> userRemoteGroupNames) updateUser(UserTemplate user) Updates theuser.protected UserupdateUserAndSetActiveFlag(User remoteUser, User internalUser) voidupdateUserCredential(String username, PasswordCredential credential) updateUserFromRemoteDirectory(User remoteUser) userAuthenticated(String username) Methods inherited from class com.atlassian.crowd.directory.AbstractForwardingDirectory
addUser, countDirectMembersOfGroup, findGroupByName, findGroupWithAttributesByName, findUserByExternalId, findUserByName, findUserWithAttributesByName, getMemberships, getUserAvatarByName, isGroupDirectGroupMember, isUserDirectGroupMember, searchGroupRelationships, searchGroups, searchUsersMethods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface com.atlassian.crowd.directory.MultiValuesQueriesSupport
searchGroupRelationshipsMethods inherited from interface com.atlassian.crowd.directory.RemoteDirectory
addUser, countDirectMembersOfGroup, findGroupByName, findGroupWithAttributesByName, findUserByExternalId, findUserByName, findUserWithAttributesByName, getLocallyFilteredGroupNames, getMemberships, getUserAvatarByName, isGroupDirectGroupMember, isUserDirectGroupMember, searchGroupRelationships, searchGroups, searchUsers
-
Constructor Details
-
DbCachingRemoteDirectory
public DbCachingRemoteDirectory(RemoteDirectory remoteDirectory, InternalRemoteDirectory internalDirectory, DirectoryCacheFactory directoryCacheFactory, CacheRefresherFactory cacheRefresherFactory, AuditService auditService, AuditLogUserMapper auditLogUserMapper, String directoryName, com.atlassian.event.api.EventPublisher eventPublisher, DirectoryDao directoryDao, BatchConfigParser batchConfigParser)
-
-
Method Details
-
getDirectoryId
public long getDirectoryId()Description copied from interface:RemoteDirectoryGets the internal uniquedirectoryIdof the directory store.- Specified by:
getDirectoryIdin interfaceRemoteDirectory- Overrides:
getDirectoryIdin classAbstractForwardingDirectory- Returns:
- The
directoryId.
-
setDirectoryId
public void setDirectoryId(long directoryId) Description copied from interface:RemoteDirectoryWhen a directory store is loaded, thedirectoryIdwill be set by the crowd framework.- Specified by:
setDirectoryIdin interfaceRemoteDirectory- Overrides:
setDirectoryIdin classAbstractForwardingDirectory- Parameters:
directoryId- The uniquedirectoryIdof theDirectoryImplstored in the database.
-
getDescriptiveName
Description copied from interface:RemoteDirectoryReturns a descriptive name for the type of directory.- Specified by:
getDescriptiveNamein interfaceRemoteDirectory- Overrides:
getDescriptiveNamein classAbstractForwardingDirectory- Returns:
- descriptive name.
-
setAttributes
Description copied from interface:RemoteDirectoryWhen a directory store is loaded, the attributes map will be set by the Crowd framework. Implementations may store a reference to this map in order to implement the AttributesThe Map is immutable and implementations are required to maintain immutability.
- Specified by:
setAttributesin interfaceRemoteDirectory- Overrides:
setAttributesin classAbstractForwardingDirectory- Parameters:
attributes- attributes map.
-
authenticate
public User authenticate(String name, PasswordCredential credential) throws UserNotFoundException, InactiveAccountException, InvalidAuthenticationException, ExpiredCredentialException, OperationFailedException Description copied from interface:RemoteDirectoryAuthenticates auserwith the directory store.- Specified by:
authenticatein interfaceRemoteDirectory- Overrides:
authenticatein classAbstractForwardingDirectory- Parameters:
name- The name of the user (username).credential- The supplied credentials (password).- Returns:
- The populated user if the authentication is valid.
- Throws:
UserNotFoundException- The user with the supplied name does not exist.InactiveAccountException- The supplied user is inactive.InvalidAuthenticationException- Authentication with the provided credentials failed.ExpiredCredentialException- The user's credentials have expired. The user must change their credentials in order to successfully authenticate.OperationFailedException- underlying directory implementation failed to execute the operation.
-
authenticateAndUpdateInternalUser
protected User authenticateAndUpdateInternalUser(String name, PasswordCredential credential) throws UserNotFoundException, InactiveAccountException, InvalidAuthenticationException, ExpiredCredentialException, OperationFailedException Authenticates user and ensures that internal directory contains the authenticated user.Updates user data (including groups membership) if the user exists in the internal directory. Renames user if necessary. If user does not exists tries to add the user and the user's memberships in the internal directory.
User might not exist in the internal directory yet because the user was added after the latest synchronisation. This happens for example when the remote directory uses delegated authentication, and creates users on successful authentication.
- Parameters:
name- of the usercredential- credential of the user- Returns:
- The populated user if the authentication is valid.
- Throws:
UserNotFoundException- if the user does not existExpiredCredentialException- if the password has expired and the user is required to change their passwordInactiveAccountException- if the user account is not activeInvalidAuthenticationException- if the user name/password combination is invalidOperationFailedException- if the operation failed for any other reason
-
updateUserFromRemoteDirectory
public User updateUserFromRemoteDirectory(@Nonnull User remoteUser) throws OperationFailedException, UserNotFoundException - Specified by:
updateUserFromRemoteDirectoryin interfaceRemoteDirectory- Overrides:
updateUserFromRemoteDirectoryin classAbstractForwardingDirectory- Throws:
OperationFailedExceptionUserNotFoundException
-
userAuthenticated
public User userAuthenticated(String username) throws OperationFailedException, UserNotFoundException, InactiveAccountException - Specified by:
userAuthenticatedin interfaceRemoteDirectory- Throws:
OperationFailedExceptionUserNotFoundExceptionInactiveAccountException
-
checkIfUserCanBeUpdatedWithCurrentGroupFiltering
protected void checkIfUserCanBeUpdatedWithCurrentGroupFiltering(String username, Set<String> userRemoteGroupNames) throws OperationFailedException, UserNotFoundException -
updateUserAndSetActiveFlag
protected User updateUserAndSetActiveFlag(User remoteUser, User internalUser) throws UserNotFoundException, InvalidUserException, OperationFailedException -
updateGroupsMembershipOnLogin
protected void updateGroupsMembershipOnLogin(User user, Set<String> userRemoteGroupNames) throws OperationFailedException, UserNotFoundException -
addUser
public UserWithAttributes addUser(UserTemplateWithAttributes user, PasswordCredential credential) throws InvalidUserException, InvalidCredentialException, UserAlreadyExistsException, OperationFailedException Description copied from interface:RemoteDirectoryAdds auserto the directory store.- Specified by:
addUserin interfaceRemoteDirectory- Overrides:
addUserin classAbstractForwardingDirectory- Parameters:
user- template of the user to add.credential- a password, orPasswordCredential.NONEfor an account that cannot login with any password- Returns:
- the added user retrieved from the underlying store.
- Throws:
InvalidUserException- The supplied user is invalid.InvalidCredentialException- The supplied credential is invalid.UserAlreadyExistsException- The user already existsOperationFailedException- underlying directory implementation failed to execute the operation.- See Also:
-
updateUser
public User updateUser(UserTemplate user) throws InvalidUserException, UserNotFoundException, OperationFailedException Description copied from interface:RemoteDirectoryUpdates theuser.- Specified by:
updateUserin interfaceRemoteDirectory- Overrides:
updateUserin classAbstractForwardingDirectory- Parameters:
user- The user to update.- Returns:
- the updated user retrieved from the underlying store.
- Throws:
InvalidUserException- the supplied user is invalid.UserNotFoundException- the user does not exist in the directory store.OperationFailedException- underlying directory implementation failed to execute the operation.
-
setUserStatusLocally
public User setUserStatusLocally(String username, boolean userActiveInternally) throws UserNotFoundException, InvalidUserException, OperationFailedException -
isLocalUserStatusEnabled
public boolean isLocalUserStatusEnabled() -
updateUserCredential
public void updateUserCredential(String username, PasswordCredential credential) throws UserNotFoundException, InvalidCredentialException, OperationFailedException Description copied from interface:RemoteDirectory- Specified by:
updateUserCredentialin interfaceRemoteDirectory- Overrides:
updateUserCredentialin classAbstractForwardingDirectory- Parameters:
username- The name of the user (username).credential- The new credential (password).- Throws:
UserNotFoundException- The user does not exist.InvalidCredentialException- The supplied credential is invalid.OperationFailedException- underlying directory implementation failed to execute the operation.- See Also:
-
renameUser
public User renameUser(String oldName, String newName) throws UserNotFoundException, InvalidUserException, OperationFailedException, UserAlreadyExistsException Description copied from interface:RemoteDirectoryRenames auser.- Specified by:
renameUserin interfaceRemoteDirectory- Overrides:
renameUserin classAbstractForwardingDirectory- Parameters:
oldName- name of existing user.newName- desired name of user.- Returns:
- renamed user.
- Throws:
UserNotFoundException- if the user with the existing name does not exist.InvalidUserException- if the new username is invalid.OperationFailedException- if the underlying directory implementation failed to execute the operation.UserAlreadyExistsException- if the newName already exists.
-
storeUserAttributes
public void storeUserAttributes(String username, Map<String, Set<String>> attributes) throws UserNotFoundException, OperationFailedExceptionDescription copied from interface:RemoteDirectoryAdds or updates a user's attributes with the new Map of attribute values in the directory specified by the passed indirectoryId.The attributes map represents new or updated attributes and does not replace existing attributes unless the key of an attribute matches the key of an existing
Attributes with values of empty sets are not added (these attributes are effectively removed).
- Specified by:
storeUserAttributesin interfaceRemoteDirectory- Overrides:
storeUserAttributesin classAbstractForwardingDirectory- Parameters:
username- name of user to update.attributes- new or updated attributes (attributes that don't need changing should not appear in this Map).- Throws:
UserNotFoundException- user with supplied username does not exist.OperationFailedException- underlying directory implementation failed to execute the operation.
-
removeUserAttributes
public void removeUserAttributes(String username, String attributeName) throws UserNotFoundException, OperationFailedException Description copied from interface:RemoteDirectoryRemoves all the values for a single attribute key for a user. If the attribute key does not exist nothing will happen.- Specified by:
removeUserAttributesin interfaceRemoteDirectory- Overrides:
removeUserAttributesin classAbstractForwardingDirectory- Parameters:
username- name of the user to update.attributeName- name of attribute to remove.- Throws:
UserNotFoundException- user with supplied username does not exist.OperationFailedException- underlying directory implementation failed to execute the operation.
-
removeUser
Description copied from interface:RemoteDirectoryRemoves theuserthat matches the suppliedname.- Specified by:
removeUserin interfaceRemoteDirectory- Overrides:
removeUserin classAbstractForwardingDirectory- Parameters:
name- The name of the user (username).- Throws:
UserNotFoundException- The user does not exist.OperationFailedException- underlying directory implementation failed to execute the operation.
-
addGroup
Description copied from interface:RemoteDirectoryAdds agroupto the directory store.- Specified by:
addGroupin interfaceRemoteDirectory- Overrides:
addGroupin classAbstractForwardingDirectory- Parameters:
group- template of the group to add.- Returns:
- the added group retrieved from the underlying store.
- Throws:
InvalidGroupException- The supplied group is invalid or it already exists in the directory.OperationFailedException- underlying directory implementation failed to execute the operation.
-
updateGroup
public Group updateGroup(GroupTemplate group) throws InvalidGroupException, GroupNotFoundException, OperationFailedException, ReadOnlyGroupException Description copied from interface:RemoteDirectoryUpdates thegroup.- Specified by:
updateGroupin interfaceRemoteDirectory- Overrides:
updateGroupin classAbstractForwardingDirectory- Parameters:
group- The group to update.- Returns:
- the updated group retrieved from the underlying store.
- Throws:
InvalidGroupException- the supplied group is invalid.GroupNotFoundException- the group does not exist in the directory store.OperationFailedException- underlying directory implementation failed to execute the operation.ReadOnlyGroupException- the group is read-only
-
renameGroup
public Group renameGroup(String oldName, String newName) throws GroupNotFoundException, InvalidGroupException Description copied from interface:RemoteDirectoryRenames agroup.- Specified by:
renameGroupin interfaceRemoteDirectory- Overrides:
renameGroupin classAbstractForwardingDirectory- Parameters:
oldName- name of existing group.newName- desired name of group.- Returns:
- renamed group.
- Throws:
GroupNotFoundException- if the group with the existing name does not exist.InvalidGroupException- if the new group name is invalid or already exists in the directory.
-
storeGroupAttributes
public void storeGroupAttributes(String groupName, Map<String, Set<String>> attributes) throws GroupNotFoundException, OperationFailedExceptionDescription copied from interface:RemoteDirectoryAdds or updates a group's attributes with the new Map of attribute values in the directory specified by the passed indirectoryId.The attributes map represents new or updated attributes and does not replace existing attributes unless the key of an attribute matches the key of an existing
Attributes with values of empty sets are not added (these attributes are effectively removed).
- Specified by:
storeGroupAttributesin interfaceRemoteDirectory- Overrides:
storeGroupAttributesin classAbstractForwardingDirectory- Parameters:
groupName- name of group to update.attributes- new or updated attributes (attributes that don't need changing should not appear in this Map).- Throws:
GroupNotFoundException- group with supplied groupName does not exist.OperationFailedException- underlying directory implementation failed to execute the operation.
-
removeGroupAttributes
public void removeGroupAttributes(String groupName, String attributeName) throws GroupNotFoundException, OperationFailedException Description copied from interface:RemoteDirectoryRemoves all the values for a single attribute key for a group.- Specified by:
removeGroupAttributesin interfaceRemoteDirectory- Overrides:
removeGroupAttributesin classAbstractForwardingDirectory- Parameters:
groupName- name of the group to update.attributeName- name of attribute to remove.- Throws:
GroupNotFoundException- group with supplied groupName does not exist.OperationFailedException- underlying directory implementation failed to execute the operation.
-
removeGroup
public void removeGroup(String name) throws GroupNotFoundException, OperationFailedException, ReadOnlyGroupException Description copied from interface:RemoteDirectoryRemoves thegroupthat matches the suppliedname.- Specified by:
removeGroupin interfaceRemoteDirectory- Overrides:
removeGroupin classAbstractForwardingDirectory- Parameters:
name- The name of the group.- Throws:
GroupNotFoundException- The group does not exist.OperationFailedException- underlying directory implementation failed to execute the operation.ReadOnlyGroupException- if the group is read-only and not allowed to be deleted.
-
addUserToGroup
public void addUserToGroup(String username, String groupName) throws GroupNotFoundException, UserNotFoundException, OperationFailedException, ReadOnlyGroupException, MembershipAlreadyExistsException Description copied from interface:RemoteDirectoryAdds a user as a member of a group. This means that all user members ofchildGroupwill appear as members ofparentGroupto querying applications.- Specified by:
addUserToGroupin interfaceRemoteDirectory- Overrides:
addUserToGroupin classAbstractForwardingDirectory- Parameters:
username- The user that will become a member ofgroupNamegroupName- The group that will gain a new member.- Throws:
GroupNotFoundException- If the group cannot be found.UserNotFoundException- If the user cannot be found.OperationFailedException- underlying directory implementation failed to execute the operation.ReadOnlyGroupException- If the group is read-onlyMembershipAlreadyExistsException- if the user is already a member of the group
-
addGroupToGroup
public void addGroupToGroup(String childGroup, String parentGroup) throws GroupNotFoundException, InvalidMembershipException, OperationFailedException, ReadOnlyGroupException, MembershipAlreadyExistsException Description copied from interface:RemoteDirectoryAdds a group as a member of a parent group.- Specified by:
addGroupToGroupin interfaceRemoteDirectory- Overrides:
addGroupToGroupin classAbstractForwardingDirectory- Parameters:
childGroup- The group that will become a member ofparentGroupparentGroup- The group that will gain a new member- Throws:
GroupNotFoundException- One or both of the groups cannot be found.InvalidMembershipException- if the childGroup and parentGroup exist but are of different GroupTypes.OperationFailedException- underlying directory implementation failed to execute the operation.ReadOnlyGroupException- if either of the groups are read-onlyMembershipAlreadyExistsException- if the child group is already a child of the parent group
-
removeUserFromGroup
public void removeUserFromGroup(String username, String groupName) throws GroupNotFoundException, UserNotFoundException, MembershipNotFoundException, OperationFailedException, ReadOnlyGroupException Description copied from interface:RemoteDirectoryRemoves a user as a member of a group.- Specified by:
removeUserFromGroupin interfaceRemoteDirectory- Overrides:
removeUserFromGroupin classAbstractForwardingDirectory- Parameters:
username- The user that will be removed fromparentGroupgroupName- The group that will lose the member.- Throws:
GroupNotFoundException- If the group cannot be found.UserNotFoundException- If the user cannot be found.MembershipNotFoundException- if the user is not a direct member of the group.OperationFailedException- underlying directory implementation failed to execute the operation.ReadOnlyGroupException- if the group is read-only
-
removeGroupFromGroup
public void removeGroupFromGroup(String childGroup, String parentGroup) throws GroupNotFoundException, InvalidMembershipException, MembershipNotFoundException, OperationFailedException, ReadOnlyGroupException Description copied from interface:RemoteDirectoryRemoves a group as a member of a parent group.- Specified by:
removeGroupFromGroupin interfaceRemoteDirectory- Overrides:
removeGroupFromGroupin classAbstractForwardingDirectory- Parameters:
childGroup- The group that will be removed fromparentGroupparentGroup- The group that will lose the member.- Throws:
GroupNotFoundException- One or both of the groups cannot be found.InvalidMembershipException- if the childGroup and parentGroup exist but are of different GroupTypes.MembershipNotFoundException- if the childGroup is not a direct member of the parentGroup.OperationFailedException- underlying directory implementation failed to execute the operation.ReadOnlyGroupException- if the groups are read-only
-
testConnection
Description copied from interface:RemoteDirectoryTest if a connection to the directory server can be established. When executed for a directory already persisted in the database (ie with a non-null id) the connection will be taken using the same semantics as during regular directory operations, which means that the connection may be sourced from a connection pool and be subject to additional validation if applicable. This gives a good indicator as to the RemoteDirectory's status but can be problematic when used to verify correctness during a directory update. If absolute certainty about the RemoteDirectory's status is not needed or the RemoteDirectory's lifecycle will be limited strictly to the connection test,CrowdDirectoryService.testConnection(Directory)should be used instead.- Specified by:
testConnectionin interfaceRemoteDirectory- Overrides:
testConnectionin classAbstractForwardingDirectory- Throws:
OperationFailedException- underlying directory implementation failed to execute the operation.
-
supportsInactiveAccounts
public boolean supportsInactiveAccounts()This implementation will store the active flag locally in the internal directory if local user status is enabled and if the active flag cannot be persisted on the underlying remote directory.- Specified by:
supportsInactiveAccountsin interfaceRemoteDirectory- Overrides:
supportsInactiveAccountsin classAbstractForwardingDirectory- Returns:
- true if the internal directory supports inactive accounts (which it should always do).
-
supportsNestedGroups
public boolean supportsNestedGroups()Description copied from interface:RemoteDirectoryAllows us to only display nested-group related UI for directories that support it.- Specified by:
supportsNestedGroupsin interfaceRemoteDirectory- Overrides:
supportsNestedGroupsin classAbstractForwardingDirectory- Returns:
- true if the directory can handle having a group added to a group.
-
supportsPasswordExpiration
public boolean supportsPasswordExpiration()Description copied from interface:RemoteDirectoryReturn true if this directory supports manually expiring passwords.- Specified by:
supportsPasswordExpirationin interfaceRemoteDirectory- Overrides:
supportsPasswordExpirationin classAbstractForwardingDirectory- Returns:
- true if this directory supports manually expiring passwords
-
supportsSettingEncryptedCredential
public boolean supportsSettingEncryptedCredential()Description copied from interface:RemoteDirectoryIf this method returns true, then callingRemoteDirectory.updateUserCredential(String, PasswordCredential)orRemoteDirectory.addUser(com.atlassian.crowd.model.user.UserTemplate, com.atlassian.crowd.embedded.api.PasswordCredential)with aPasswordCredentialinstance wherePasswordCredential.isEncryptedCredential()returns true and the instance is not equal toPasswordCredential.NONEwill succeed; otherwise, it will fail.- Specified by:
supportsSettingEncryptedCredentialin interfaceRemoteDirectory- Overrides:
supportsSettingEncryptedCredentialin classAbstractForwardingDirectory- Returns:
- true if this directory supports setting passwords by hash
-
isRolesDisabled
public boolean isRolesDisabled()Description copied from interface:RemoteDirectoryExpose whether the directory has roles disabled. Always true.- Specified by:
isRolesDisabledin interfaceRemoteDirectory- Overrides:
isRolesDisabledin classAbstractForwardingDirectory- Returns:
- true
-
shouldSyncGroupMembershipAfterUserAuthentication
protected boolean shouldSyncGroupMembershipAfterUserAuthentication(boolean isNewUser) - Parameters:
isNewUser- true if the user was created during authentication (ie. wasn't synced yet, and was created during this authentication)- Returns:
- whether the user's group memberships should be synced during this authentication
- See Also:
-
getValues
Description copied from interface:AttributesGet all the values associated with a given key. Duplicate values are not allowed, and this should be enforced case-insensitively to match the behaviour of LDAP servers. Will return null if the key does not exist.- Specified by:
getValuesin interfaceAttributes- Overrides:
getValuesin classAbstractForwardingDirectory- Parameters:
name- the key to retrieve the values for- Returns:
- the values associated with the given key. It may return null or empty set if the key does not exist.
-
getValue
Description copied from interface:AttributesReturns any value associated with the given key, returnsnullif there is no value.- Specified by:
getValuein interfaceAttributes- Overrides:
getValuein classAbstractForwardingDirectory- Parameters:
name- the key to retrieve the value for- Returns:
- any value associated with the given key, or
nullif there is no value
-
isEmpty
public boolean isEmpty()- Specified by:
isEmptyin interfaceAttributes- Overrides:
isEmptyin classAbstractForwardingDirectory- Returns:
trueif there are no attributes
-
getKeys
Description copied from interface:AttributesGets all the keys of the attributes. Warning: case-insensitive keys are currently no enforced, however this is the case for LDAP, so this may be implemented in the future.- Specified by:
getKeysin interfaceAttributes- Overrides:
getKeysin classAbstractForwardingDirectory- Returns:
- a set of all the keys.
-
isIncrementalSyncEnabled
public boolean isIncrementalSyncEnabled()Description copied from interface:SynchronisableDirectoryGets the preferred synchronisation mode for this remote directory.
Note: some directory implementation don't support incremental sync and will ignore this preference.
- Specified by:
isIncrementalSyncEnabledin interfaceSynchronisableDirectory- Returns:
trueif incremental sync is preferred.
-
synchroniseCache
public void synchroniseCache(SynchronisationMode mode, SynchronisationStatusManager synchronisationStatusManager) throws OperationFailedException Description copied from interface:SynchronisableDirectoryRequests that this directory should update its cache by synchronising with the remote data. Implementations of this method should publish a RemoteDirectorySynchronisedEvent after completing the synchronisation.- Specified by:
synchroniseCachein interfaceSynchronisableDirectory- Parameters:
mode- synchronisation modesynchronisationStatusManager- listener for synchronisation status change notifications- Throws:
OperationFailedException- underlying directory implementation failed to execute the operation.
-
getAuthoritativeDirectory
- Specified by:
getAuthoritativeDirectoryin interfaceRemoteDirectory- Overrides:
getAuthoritativeDirectoryin classAbstractForwardingDirectory- Returns:
- the directory that is the authoritative source of data for this directory, possibly itself.
-
expireAllPasswords
Description copied from interface:RemoteDirectorySets theUserConstants.REQUIRES_PASSWORD_CHANGEattribute to true for all users in the directory using bulk operations- Specified by:
expireAllPasswordsin interfaceRemoteDirectory- Overrides:
expireAllPasswordsin classAbstractForwardingDirectory- Throws:
OperationFailedException
-
getUserCount
- Specified by:
getUserCountin interfaceFastEntityCountProvider- Returns:
- number of users found in this directory.
- Throws:
OperationFailedException- underlying directory implementation failed to execute the operation.
-
getGroupCount
- Specified by:
getGroupCountin interfaceFastEntityCountProvider- Returns:
- number of groups found in this directory.
- Throws:
OperationFailedException- underlying directory implementation failed to execute the operation.
-
getDelegate
- Specified by:
getDelegatein classAbstractForwardingDirectory- Returns:
- the directory to delegate method calls to
-
searchGroupRelationshipsGroupedByName
Description copied from interface:MultiValuesQueriesSupportSearches forgroupsthat match the supplied query criteria. This method is similar toMultiValuesQueriesSupport.searchGroupRelationships(MembershipQuery), but it additionally groups results by elements ofMembershipQuery.getEntityNamesToMatch().- Specified by:
searchGroupRelationshipsGroupedByNamein interfaceMultiValuesQueriesSupport- Parameters:
query- EntityQuery for Entity.GROUP.- Returns:
Map<String, List<T>>of groups/groupnames matching the search criteria, grouped byMembershipQuery.getEntityNamesToMatch(). Results are ordered by entity name, case-insensitive. An emptyMap
-