org.alfresco.repo.security.authentication
Class TestAuthenticationServiceImpl

java.lang.Object
  org.alfresco.repo.security.authentication.TestAuthenticationServiceImpl

All Implemented Interfaces:

AuthenticationService, MutableAuthenticationService

public class TestAuthenticationServiceImpl
extends java.lang.Object
implements MutableAuthenticationService

Constructor Summary

TestAuthenticationServiceImpl(java.lang.String domain, boolean allowCreate, boolean allowDelete, boolean allowUpdate, boolean allowGuest)

TestAuthenticationServiceImpl(java.lang.String domain, boolean allowCreate, boolean allowDelete, boolean allowUpdate, boolean allowGuest, java.util.Map users, java.util.Set disabled)

Method Summary

void	authenticate(java.lang.String userName, char[] password) Carry out an authentication attempt.
void	authenticateAsGuest() Authenticate as the guest user.
boolean	authenticationExists(java.lang.String userName) Check if the given authentication exists.
void	clearCurrentSecurityContext() Remove the current security information
void	createAuthentication(java.lang.String userName, char[] password) Create an authentication for the given user.
void	deleteAuthentication(java.lang.String userName) Delete an authentication entry
boolean	getAuthenticationEnabled(java.lang.String userName) Is an authentication enabled or disabled?
java.lang.String	getCurrentTicket() Gets the current ticket as a string.
java.lang.String	getCurrentTicket(java.lang.String sessionId) Gets the current ticket as a string.
java.lang.String	getCurrentUserName() Get the name of the currently authenticated user.
java.util.Set	getDefaultAdministratorUserNames() Gets a set of user names who should be considered 'administrators' by default.
java.util.Set	getDefaultGuestUserNames() Gets a set of user names who should be considered 'guests' by default.
java.util.Set	getDomains() Get the domain to which this instance of an authentication service applies.
java.util.Set	getDomainsThatAllowUserCreation() Does this instance alow user to be created?
java.util.Set	getDomainsThatAllowUserDeletion() Does this instance allow users to be deleted?
java.util.Set	getDomiansThatAllowUserPasswordChanges() Does this instance allow users to update their passwords?
java.lang.String	getNewTicket(java.lang.String sessionId) Get a new ticket as a string
protected net.sf.acegisecurity.UserDetails	getUserDetails(java.lang.String userName) Default implementation that makes an ACEGI object on the fly
boolean	guestUserAuthenticationAllowed() Check if Guest user authentication is allowed.
void	invalidateTicket(java.lang.String ticket, java.lang.String sessionId) Invalidate a single ticket by ID or remove its association with a given session ID.
void	invalidateUserSession(java.lang.String userName) Invalidate any tickets held by the user.
boolean	isAuthenticationCreationAllowed() Determines whether authentication creation is allowed.
boolean	isAuthenticationMutable(java.lang.String userName) Determines whether this user's authentication may be mutated via the other methods.
boolean	isCurrentUserTheSystemUser() Is the current user the system user?
void	setAuthentication(java.lang.String userName, char[] newPassword) Set the login information for a user (typically called by an admin user)
void	setAuthenticationEnabled(java.lang.String userName, boolean enabled) Enable or disable an authentication entry
net.sf.acegisecurity.Authentication	setCurrentAuthentication(net.sf.acegisecurity.Authentication authentication)
net.sf.acegisecurity.Authentication	setCurrentUser(java.lang.String userName) Explicitly set the current user to be authenticated.
void	updateAuthentication(java.lang.String userName, char[] oldPassword, char[] newPassword) Update the login information for the user (typically called by the user)
void	validate(java.lang.String ticket, java.lang.String sessionId) Validate a ticket and associate it with a given app server session ID.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

TestAuthenticationServiceImpl

public TestAuthenticationServiceImpl(java.lang.String domain,
                                     boolean allowCreate,
                                     boolean allowDelete,
                                     boolean allowUpdate,
                                     boolean allowGuest)

TestAuthenticationServiceImpl

public TestAuthenticationServiceImpl(java.lang.String domain,
                                     boolean allowCreate,
                                     boolean allowDelete,
                                     boolean allowUpdate,
                                     boolean allowGuest,
                                     java.util.Map users,
                                     java.util.Set disabled)

Method Detail

createAuthentication

public void createAuthentication(java.lang.String userName,
                                 char[] password)
                          throws AuthenticationException

Description copied from interface: MutableAuthenticationService

Create an authentication for the given user.

Specified by:

createAuthentication in interface MutableAuthenticationService

Throws:

AuthenticationException

updateAuthentication

public void updateAuthentication(java.lang.String userName,
                                 char[] oldPassword,
                                 char[] newPassword)
                          throws AuthenticationException

Description copied from interface: MutableAuthenticationService

Update the login information for the user (typically called by the user)

Specified by:

updateAuthentication in interface MutableAuthenticationService

Throws:

AuthenticationException

setAuthentication

public void setAuthentication(java.lang.String userName,
                              char[] newPassword)
                       throws AuthenticationException

Description copied from interface: MutableAuthenticationService

Set the login information for a user (typically called by an admin user)

Specified by:

setAuthentication in interface MutableAuthenticationService

Throws:

AuthenticationException

deleteAuthentication

public void deleteAuthentication(java.lang.String userName)
                          throws AuthenticationException

Description copied from interface: MutableAuthenticationService

Delete an authentication entry

Specified by:

deleteAuthentication in interface MutableAuthenticationService

Throws:

AuthenticationException

setAuthenticationEnabled

public void setAuthenticationEnabled(java.lang.String userName,
                                     boolean enabled)
                              throws AuthenticationException

Description copied from interface: MutableAuthenticationService

Enable or disable an authentication entry

Specified by:

setAuthenticationEnabled in interface MutableAuthenticationService

Throws:

AuthenticationException

getAuthenticationEnabled

public boolean getAuthenticationEnabled(java.lang.String userName)
                                 throws AuthenticationException

Description copied from interface: AuthenticationService

Is an authentication enabled or disabled?

Specified by:

getAuthenticationEnabled in interface AuthenticationService

Returns:

Throws:

AuthenticationException

authenticate

public void authenticate(java.lang.String userName,
                         char[] password)
                  throws AuthenticationException

Description copied from interface: AuthenticationService

Carry out an authentication attempt. If successful the user is set to the current user. The current user is a part of the thread context.

Specified by:

authenticate in interface AuthenticationService

Parameters:

userName - the username

password - the passowrd

Throws:

AuthenticationException

authenticateAsGuest

public void authenticateAsGuest()
                         throws AuthenticationException

Description copied from interface: AuthenticationService

Authenticate as the guest user. This may not be allowed and throw an exception.

Specified by:

authenticateAsGuest in interface AuthenticationService

Throws:

AuthenticationException

guestUserAuthenticationAllowed

public boolean guestUserAuthenticationAllowed()

Description copied from interface: AuthenticationService

Check if Guest user authentication is allowed.

Specified by:

guestUserAuthenticationAllowed in interface AuthenticationService

Returns:

true if Guest user authentication is allowed, false otherwise

authenticationExists

public boolean authenticationExists(java.lang.String userName)

Description copied from interface: AuthenticationService

Check if the given authentication exists.

Specified by:

authenticationExists in interface AuthenticationService

Parameters:

userName - the username

Returns:

Returns true if the authentication exists

isAuthenticationMutable

public boolean isAuthenticationMutable(java.lang.String userName)

Description copied from interface: MutableAuthenticationService

Determines whether this user's authentication may be mutated via the other methods.

Specified by:

isAuthenticationMutable in interface MutableAuthenticationService

Parameters:

userName - the user ID

Returns:

true if this user's authentication may be mutated via the other methods.

isAuthenticationCreationAllowed

public boolean isAuthenticationCreationAllowed()

Description copied from interface: MutableAuthenticationService

Determines whether authentication creation is allowed.

Specified by:

isAuthenticationCreationAllowed in interface MutableAuthenticationService

Returns:

true if authentication creation is allowed

getCurrentUserName

public java.lang.String getCurrentUserName()
                                    throws AuthenticationException

Description copied from interface: AuthenticationService

Get the name of the currently authenticated user.

Specified by:

getCurrentUserName in interface AuthenticationService

Returns:

Throws:

AuthenticationException

invalidateUserSession

public void invalidateUserSession(java.lang.String userName)
                           throws AuthenticationException

Description copied from interface: AuthenticationService

Invalidate any tickets held by the user.

Specified by:

invalidateUserSession in interface AuthenticationService

Throws:

AuthenticationException

invalidateTicket

public void invalidateTicket(java.lang.String ticket,
                             java.lang.String sessionId)
                      throws AuthenticationException

Description copied from interface: AuthenticationService

Invalidate a single ticket by ID or remove its association with a given session ID.

Specified by:

invalidateTicket in interface AuthenticationService

sessionId - the app server session ID (e.g. HttpSession ID) or null if not applicable.

Throws:

AuthenticationException

validate

public void validate(java.lang.String ticket,
                     java.lang.String sessionId)
              throws AuthenticationException

Description copied from interface: AuthenticationService

Validate a ticket and associate it with a given app server session ID. Set the current user name accordingly.

Specified by:

validate in interface AuthenticationService

sessionId - the app server session ID (e.g. HttpSession ID) or null if not applicable.

Throws:

AuthenticationException

getCurrentTicket

public java.lang.String getCurrentTicket()

Description copied from interface: AuthenticationService

Gets the current ticket as a string. If there isn't an appropriate current ticket, a new ticket will be made the current ticket.

Specified by:

getCurrentTicket in interface AuthenticationService

Returns:

the current ticket as a string

getCurrentTicket

public java.lang.String getCurrentTicket(java.lang.String sessionId)

Description copied from interface: AuthenticationService

Gets the current ticket as a string. If there isn't an appropriate current ticket, a new ticket will be made the current ticket.

Specified by:

getCurrentTicket in interface AuthenticationService

Parameters:

sessionId - the app server session ID (e.g. HttpSession ID) or null if not applicable. If non-null, the ticket returned is either a new one or one previously associated with the same sessionId by AuthenticationService.validate(String, String) or AuthenticationService.getCurrentTicket(String).

Returns:

the current ticket as a string

getNewTicket

public java.lang.String getNewTicket(java.lang.String sessionId)

Description copied from interface: AuthenticationService

Get a new ticket as a string

Specified by:

getNewTicket in interface AuthenticationService

Parameters:

sessionId - the app server session ID (e.g. HttpSession ID) or null if not applicable.

Returns:

clearCurrentSecurityContext

public void clearCurrentSecurityContext()

Description copied from interface: AuthenticationService

Remove the current security information

Specified by:

clearCurrentSecurityContext in interface AuthenticationService

isCurrentUserTheSystemUser

public boolean isCurrentUserTheSystemUser()

Description copied from interface: AuthenticationService

Is the current user the system user?

Specified by:

isCurrentUserTheSystemUser in interface AuthenticationService

Returns:

getDomains

public java.util.Set getDomains()

Description copied from interface: AuthenticationService

Get the domain to which this instance of an authentication service applies.

Specified by:

getDomains in interface AuthenticationService

Returns:

The domain name

getDomainsThatAllowUserCreation

public java.util.Set getDomainsThatAllowUserCreation()

Description copied from interface: AuthenticationService

Does this instance alow user to be created?

Specified by:

getDomainsThatAllowUserCreation in interface AuthenticationService

Returns:

getDomainsThatAllowUserDeletion

public java.util.Set getDomainsThatAllowUserDeletion()

Description copied from interface: AuthenticationService

Does this instance allow users to be deleted?

Specified by:

getDomainsThatAllowUserDeletion in interface AuthenticationService

Returns:

getDomiansThatAllowUserPasswordChanges

public java.util.Set getDomiansThatAllowUserPasswordChanges()

Description copied from interface: AuthenticationService

Does this instance allow users to update their passwords?

Specified by:

getDomiansThatAllowUserPasswordChanges in interface AuthenticationService

Returns:

setCurrentUser

public net.sf.acegisecurity.Authentication setCurrentUser(java.lang.String userName)
                                                   throws AuthenticationException

Explicitly set the current user to be authenticated.

Parameters:

userName - String

Returns:

Authentication

Throws:

AuthenticationException

getUserDetails

protected net.sf.acegisecurity.UserDetails getUserDetails(java.lang.String userName)

Default implementation that makes an ACEGI object on the fly

Parameters:

userName -

Returns:

setCurrentAuthentication

public net.sf.acegisecurity.Authentication setCurrentAuthentication(net.sf.acegisecurity.Authentication authentication)

getDefaultAdministratorUserNames

public java.util.Set getDefaultAdministratorUserNames()

Description copied from interface: AuthenticationService

Gets a set of user names who should be considered 'administrators' by default.

Specified by:

getDefaultAdministratorUserNames in interface AuthenticationService

Returns:

a set of user names

getDefaultGuestUserNames

public java.util.Set getDefaultGuestUserNames()

Description copied from interface: AuthenticationService

Gets a set of user names who should be considered 'guests' by default.

Specified by:

getDefaultGuestUserNames in interface AuthenticationService

Returns:

a set of user names