cz.ues.platform.security.authn.internal

Class AuthenticationContext

java.lang.Object

cz.ues.platform.security.authn.internal.AuthenticationContext

@UESComponent
public class AuthenticationContext
extends java.lang.Object

Authentication context.

Since:

UES6-00

Field Summary

Fields

Modifier and Type	Field and Description
private static java.lang.String	AUTHENTICATED Name of "authenticated" attribute.
private static java.lang.String	CONSUMER Consumer ID.
private static java.lang.String	INITIATOR Identifier of firstly authenticated user.
private static java.lang.String	PRINCIPALS Principals attribute name.
private UESProcessManager	prMng Instance of process manager.
private static java.lang.String	REAUTHENTICATED Name of "re-authentication" flag attribute.
private static java.lang.String	UNLOCK_TIMEOUT Account unlock timeout.

Constructor Summary

Constructors

Constructor and Description
AuthenticationContext()

Method Summary

Methods

Modifier and Type	Method and Description
java.lang.String	getConsumerId() Returns consumer ID.
java.lang.String	getInitiator() Returns initiator.
Principal	getPrincipal(java.lang.Class<? extends Principal> aPrincipalClass) Gets user principal.
java.util.List<Principal>	getPrincipalChain(java.lang.Class<? extends Principal> aPrincipalClass) Returns chain of all authenticated principals.
private java.util.Map<java.lang.String,Principal>	getPrincipals(boolean initialize) Returns map of principals.
long	getUnlockTimeout() Gets account unlock timeout.
java.lang.Boolean	isAuthenticated() Returns true if authentication context was processed (user authenticated), null if context was not processed and false if user was not authenticated
boolean	isReauthenticated() Deprecated. See AuthenticationContext.REAUTHENTICATED
void	removeContext() Removes all context parameters from process environment.
void	revokeConsumerId() Revokes consumer ID.
void	revokeInitiator() Revokes initiator.
void	revokePrincipal(java.lang.Class<? extends Principal> aPrincipalClass) Removes user principal from context.
void	setAuthenticated() Mark authentication context as processed (user authenticated).
void	setConsumerId(java.lang.String consumerId) Sets consumer ID.
void	setInitiator(java.lang.String initiator) Sets initiator
void	setNotAuthenticated() Mark authentication context as processed (user NOT authenticated).
void	setPrincipal(Principal aPrincipal) Sets user principal.
void	setReauthenticated() Deprecated. See AuthenticationContext.REAUTHENTICATED
void	setUnlockTimeout(long unlockTimeout) Sets account unlock timeout.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

PRINCIPALS

private static final PRINCIPALS

Principals attribute name.

See Also:

Constant Field Values

AUTHENTICATED

private static final AUTHENTICATED

Name of "authenticated" attribute.

See Also:

Constant Field Values

CONSUMER

private static final CONSUMER

Consumer ID.

See Also:

Constant Field Values

UNLOCK_TIMEOUT

private static final UNLOCK_TIMEOUT

Account unlock timeout.

See Also:

Constant Field Values

INITIATOR

private static final INITIATOR

Identifier of firstly authenticated user.

See Also:

Constant Field Values

REAUTHENTICATED

private static final REAUTHENTICATED

Name of "re-authentication" flag attribute.

TODO Pouze docasne reseni Platforma neumoznuje opakovane prihlaseni uzivatele, je nutne nejprve vycistit PCB (provest logout). Toto je ale problem ve skriptech, kde je zadouci prihlasit servisniho uzivatele pod kterym skript bezi (a ktery se lisi od uzivatele, ktery skript naplanoval). Toto preprihlaseni bylo doposud mozne diky spatne integraci legacy prihlaseni (v legacy bylo prihlaseno, ale platforma na toto prihlaseni nevidela, takze umoznila provest autentizaci). V ramci UES7-06 doslo k oprave integrace a tim padem by preprihlaseni prestalo fungovat. Tento workaroung zavadi flag, pomoci ktereho bude moci provest prave jedno preprihlaseni uzivatele (pouze legacy->platformna, nikoliv platforma->platforma).

See Also:

Constant Field Values

prMng

@Inject

private prMng

Instance of process manager.

Constructor Detail

AuthenticationContext

public AuthenticationContext()

Method Detail

setPrincipal

public void setPrincipal(Principal aPrincipal)

Sets user principal.

Parameters:

aPrincipal - User principal

Since:

UES6-00

getPrincipal

public Principal getPrincipal(java.lang.Class<? extends Principal> aPrincipalClass)

Gets user principal.

Parameters:

aPrincipalClass - Type of principal to get

Returns:

User principal

Since:

UES6-00

revokePrincipal

public void revokePrincipal(java.lang.Class<? extends Principal> aPrincipalClass)

Removes user principal from context.

Parameters:

aPrincipalClass - Type of principal to revoke

Since:

UES6-00

getPrincipalChain

public java.util.List<Principal> getPrincipalChain(java.lang.Class<? extends Principal> aPrincipalClass)

Returns chain of all authenticated principals. First value in list always represents initially authenticated user, value of next elements depends on usage of UESAuthenticationService.executeAs(String, UESCallable) (each nested call adds another principal to chain). Typically there should be from one to two elements in list.

Parameters:

aPrincipalClass - Principal type to be returned in chain

Returns:

Authenticated principal chain

Since:

UES6-06

setAuthenticated

public void setAuthenticated()

Mark authentication context as processed (user authenticated).

Since:

UES6-00

setNotAuthenticated

public void setNotAuthenticated()

Mark authentication context as processed (user NOT authenticated).

Since:

UES6-00

isAuthenticated

public java.lang.Boolean isAuthenticated()

Returns true if authentication context was processed (user authenticated), null if context was not processed and false if user was not authenticated

Returns:

True if authentication context was processed

Since:

UES6-00

setConsumerId

public void setConsumerId(java.lang.String consumerId)

Sets consumer ID.

Parameters:

consumerId - Consumer ID

Since:

UES6-06

getConsumerId

public java.lang.String getConsumerId()

Returns consumer ID.

Returns:

Consumer ID

Since:

UES6-06

revokeConsumerId

public void revokeConsumerId()

Revokes consumer ID.

Since:

UES6-06

setUnlockTimeout

public void setUnlockTimeout(long unlockTimeout)

Sets account unlock timeout.

Parameters:

unlockTimeout - Account unlock timeout

Since:

UES7-06

getUnlockTimeout

public long getUnlockTimeout()

Gets account unlock timeout.

Returns:

Account unlock timeout

Since:

UES7-06

setReauthenticated

@Deprecated

public void setReauthenticated()

Deprecated. See AuthenticationContext.REAUTHENTICATED

Sets re-authentication flag on PCB.

Since:

UES7-06

isReauthenticated

@Deprecated

public boolean isReauthenticated()

Deprecated. See AuthenticationContext.REAUTHENTICATED

Returns:

True if re-authentication was invoked.

Since:

UES7-06

setInitiator

public void setInitiator(java.lang.String initiator)

Sets initiator

Parameters:

initiator - Initiator

Since:

UES8-05

getInitiator

public java.lang.String getInitiator()

Returns initiator.

Returns:

Initiator

Since:

UES8-05

revokeInitiator

public void revokeInitiator()

Revokes initiator.

Since:

UES8-05

removeContext

public void removeContext()

Removes all context parameters from process environment.

Since:

UES6-00

getPrincipals

private java.util.Map<java.lang.String,Principal> getPrincipals(boolean initialize)

Returns map of principals.

Parameters:

initialize - True if new principal map should be created and set on actual context (allows to set new principal on actual context), false if method is called only for read operation.

Returns:

Map of principals

Since:

UES6-00