public class BootstrapLoginManagerImpl extends Object implements LoginManager
Constructor and Description |
---|
BootstrapLoginManagerImpl() |
Modifier and Type | Method and Description |
---|---|
LoginResult |
authenticate(ApplicationUser user,
String password)
This can be called to see if an user knows the given password.
|
LoginResult |
authenticateWithoutElevatedCheck(ApplicationUser user,
String password)
This can be called to see if an user knows the given password.
|
boolean |
authoriseForLogin(ApplicationUser user,
javax.servlet.http.HttpServletRequest httpServletRequest)
This is called to see if an authenticated user is allowed to login JIRA in the context of a web request.
|
boolean |
authoriseForRole(ApplicationUser user,
javax.servlet.http.HttpServletRequest httpServletRequest,
String role)
This is called to see if an authenticated user is allowed to execute the web request given the required role
|
LoginInfo |
getLoginInfo(String userName)
This is called to get LoginInfo about a given user.
|
Set<String> |
getRequiredRoles(javax.servlet.http.HttpServletRequest httpServletRequest)
Gets the set of role strings that are examined by Seraph to decide if a user is authorised to execute a request.
|
boolean |
isElevatedSecurityCheckAlwaysShown() |
void |
logout(javax.servlet.http.HttpServletRequest httpServletRequest,
javax.servlet.http.HttpServletResponse httpServletResponse)
This is called to logout the current user and destroy their JIRA session.
|
LoginInfo |
onLoginAttempt(javax.servlet.http.HttpServletRequest httpServletRequest,
String userName,
boolean loginSuccessful)
This is called after a login attempt has been made.
|
boolean |
performElevatedSecurityCheck(javax.servlet.http.HttpServletRequest httpServletRequest,
String userName)
This is called to see whether the user has passed an extended security check (such as CAPTCHA)
|
void |
resetFailedLoginCount(ApplicationUser user)
This can be called to reset the failed login count of a user
|
public Set<String> getRequiredRoles(javax.servlet.http.HttpServletRequest httpServletRequest)
LoginManager
getRequiredRoles
in interface LoginManager
httpServletRequest
- the request in playpublic LoginInfo getLoginInfo(String userName)
LoginManager
getLoginInfo
in interface LoginManager
userName
- the name of the user in play. This MUST not be null.LoginInfo
objectpublic boolean performElevatedSecurityCheck(javax.servlet.http.HttpServletRequest httpServletRequest, String userName)
LoginManager
performElevatedSecurityCheck
in interface LoginManager
httpServletRequest
- the HTTP request in playuserName
- the name of the user in play. This MUST not be null.public LoginInfo onLoginAttempt(javax.servlet.http.HttpServletRequest httpServletRequest, String userName, boolean loginSuccessful)
LoginManager
onLoginAttempt
in interface LoginManager
httpServletRequest
- the HTTP request in playuserName
- the name of the user in play. This MUST not be null.loginSuccessful
- whether the login attempt was sucessful or notLoginInfo
about the userpublic LoginResult authenticate(ApplicationUser user, String password)
LoginManager
authenticate
in interface LoginManager
user
- the user to authenticate. This MUST not be null.password
- the password to authenticate againstpublic LoginResult authenticateWithoutElevatedCheck(ApplicationUser user, String password)
LoginManager
authenticateWithoutElevatedCheck
in interface LoginManager
user
- the user to authenticate. This MUST not be null.password
- the password to authenticate againstpublic boolean authoriseForLogin(@Nonnull ApplicationUser user, javax.servlet.http.HttpServletRequest httpServletRequest)
LoginManager
authoriseForLogin
in interface LoginManager
user
- the user to authorise. This MUST not be null.httpServletRequest
- the web request in playpublic boolean authoriseForRole(@Nullable ApplicationUser user, javax.servlet.http.HttpServletRequest httpServletRequest, String role)
LoginManager
authoriseForRole
in interface LoginManager
user
- the user to authorise. This MAY be null.httpServletRequest
- the web request in playpublic void logout(javax.servlet.http.HttpServletRequest httpServletRequest, javax.servlet.http.HttpServletResponse httpServletResponse)
LoginManager
logout
in interface LoginManager
httpServletRequest
- the HTTP request in playhttpServletResponse
- the HTTP response in playpublic boolean isElevatedSecurityCheckAlwaysShown()
isElevatedSecurityCheckAlwaysShown
in interface LoginManager
public void resetFailedLoginCount(ApplicationUser user)
LoginManager
resetFailedLoginCount
in interface LoginManager
user
- the user to authorise. This MUST not be null.Copyright © 2002-2015 Atlassian. All Rights Reserved.