Package com.avoka.fc.core.entity
Class SecurityManager
- java.lang.Object
-
- org.apache.cayenne.PersistentObject
-
- org.apache.cayenne.CayenneDataObject
-
- com.avoka.core.entity.BaseEntity
-
- com.avoka.fc.core.entity.auto._SecurityManager
-
- com.avoka.fc.core.entity.SecurityManager
-
- All Implemented Interfaces:
IEntity
,Auditable
,Serializable
,org.apache.cayenne.DataObject
,org.apache.cayenne.Persistent
,org.apache.cayenne.Validating
@CacheGroups("CONFIG") public class SecurityManager extends _SecurityManager implements Auditable
Provides an Security Manager configuration entity.- Since:
- 3.5.0
- See Also:
AuthenticationProvider
, Serialized Form
-
-
Field Summary
-
Fields inherited from class com.avoka.fc.core.entity.auto._SecurityManager
ACCOUNT_EXPIRY_DAYS, ACCOUNT_EXPIRY_DAYS_PROPERTY, ACTIVE_FLAG, ACTIVE_FLAG_PROPERTY, AUTHENTICATION_PROVIDERS, AUTHENTICATION_PROVIDERS_PROPERTY, DEFAULT_MANAGER_FLAG, DEFAULT_MANAGER_FLAG_PROPERTY, DELEGATED_AUTHENTICATION_FLAG, DELEGATED_AUTHENTICATION_FLAG_PROPERTY, DESCRIPTION, DESCRIPTION_PROPERTY, DISABLE_USER_PROFILE_EDIT_FLAG, DISABLE_USER_PROFILE_EDIT_FLAG_PROPERTY, EMAIL_APPROVED_MESSAGE, EMAIL_APPROVED_MESSAGE_PROPERTY, EMAIL_APPROVED_SUBJECT, EMAIL_APPROVED_SUBJECT_PROPERTY, EMAIL_PENDING_MESSAGE, EMAIL_PENDING_MESSAGE_PROPERTY, EMAIL_PENDING_SUBJECT, EMAIL_PENDING_SUBJECT_PROPERTY, EMAIL_REJECTED_MESSAGE, EMAIL_REJECTED_MESSAGE_PROPERTY, EMAIL_REJECTED_SUBJECT, EMAIL_REJECTED_SUBJECT_PROPERTY, EMAIL_VERIFICATION_MESSAGE, EMAIL_VERIFICATION_MESSAGE_PROPERTY, EMAIL_VERIFICATION_SUBJECT, EMAIL_VERIFICATION_SUBJECT_PROPERTY, ENROL_ACCOUNT_APPROVAL_FLAG, ENROL_ACCOUNT_APPROVAL_FLAG_PROPERTY, ENROL_EMAIL_VERIFICATION_FLAG, ENROL_EMAIL_VERIFICATION_FLAG_PROPERTY, ENROL_RECAPTCHA_FLAG, ENROL_RECAPTCHA_FLAG_PROPERTY, ENROL_RECAPTCHA_PRIVATE_KEY, ENROL_RECAPTCHA_PRIVATE_KEY_PROPERTY, ENROL_RECAPTCHA_PUBLIC_KEY, ENROL_RECAPTCHA_PUBLIC_KEY_PROPERTY, ENROL_USER_CREATION_FLAG, ENROL_USER_CREATION_FLAG_PROPERTY, ENROL_USER_REGISTRATION_FLAG, ENROL_USER_REGISTRATION_FLAG_PROPERTY, LAST_MODIFIED_AT, LAST_MODIFIED_AT_PROPERTY, LAST_MODIFIED_BY, LAST_MODIFIED_BY_PROPERTY, LOCKOUT_DURATION, LOCKOUT_DURATION_PROPERTY, LOGGING_ENABLED_FLAG, LOGGING_ENABLED_FLAG_PROPERTY, MAX_EMAIL_VERIFICATION_DAYS, MAX_EMAIL_VERIFICATION_DAYS_PROPERTY, MAX_LOGIN_ATTEMPTS, MAX_LOGIN_ATTEMPTS_PROPERTY, NAME, NAME_PROPERTY, NOTIFY_ADMIN_ON_CHANGE_FLAG, NOTIFY_ADMIN_ON_CHANGE_FLAG_PROPERTY, NOTIFY_USER_ON_CHANGE_FLAG, NOTIFY_USER_ON_CHANGE_FLAG_PROPERTY, PASSWORD_ILLEGAL_VALUES, PASSWORD_ILLEGAL_VALUES_PROPERTY, PASSWORD_LETTERS_DIGITS_FLAG, PASSWORD_LETTERS_DIGITS_FLAG_PROPERTY, PASSWORD_MIN_LENGTH, PASSWORD_MIN_LENGTH_PROPERTY, PASSWORD_MIXED_CASE_FLAG, PASSWORD_MIXED_CASE_FLAG_PROPERTY, PASSWORD_SPECIAL_CHAR_FLAG, PASSWORD_SPECIAL_CHAR_FLAG_PROPERTY, PORTALS, PORTALS_PROPERTY, SECURE_GROOVY_API_FLAG, SECURE_GROOVY_API_FLAG_PROPERTY, SECURITY_MANAGER_LOG, SECURITY_MANAGER_LOG_PROPERTY, SECURITY_MANAGER_OID_PK_COLUMN, SECURITY_MANAGER_PARAMETERS, SECURITY_MANAGER_PARAMETERS_PROPERTY, SESSION_TIMEOUT, SESSION_TIMEOUT_PROPERTY, SSO_FILTER_ENABLED_FLAG, SSO_FILTER_ENABLED_FLAG_PROPERTY, SSO_KEYSTORE_DATA, SSO_KEYSTORE_DATA_PROPERTY, SSO_KEYSTORE_FILENAME, SSO_KEYSTORE_FILENAME_PROPERTY, SSO_KEYSTORE_PASSWORD, SSO_KEYSTORE_PASSWORD_PROPERTY, SSO_PRIVATE_KEY_ALIAS, SSO_PRIVATE_KEY_ALIAS_PROPERTY, SSO_PRIVATE_KEY_PASSWORD, SSO_PRIVATE_KEY_PASSWORD_PROPERTY, SSO_REVALIDATION_REQUIRED_FLAG, SSO_REVALIDATION_REQUIRED_FLAG_PROPERTY, SSO_SCRIPT_AUTH_OK_RESPONSE, SSO_SCRIPT_AUTH_OK_RESPONSE_PROPERTY, SSO_SCRIPT_GET_AUTH_TOKEN, SSO_SCRIPT_GET_AUTH_TOKEN_PROPERTY, SSO_SCRIPT_REVALIDATION, SSO_SCRIPT_REVALIDATION_PROPERTY, SSO_VALIDATOR_CERT_DATA, SSO_VALIDATOR_CERT_DATA_PROPERTY, SSO_VALIDATOR_CERT_FILENAME, SSO_VALIDATOR_CERT_FILENAME_PROPERTY, STRICT_HEADER_SECURITY_FLAG, STRICT_HEADER_SECURITY_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_SERVICE, TWO_FACTOR_AUTHENTICATION_SERVICE_PROPERTY, URL_LOGIN, URL_LOGIN_PROPERTY, URL_LOGOUT_CHAIN, URL_LOGOUT_CHAIN_PROPERTY
-
Fields inherited from class com.avoka.core.entity.BaseEntity
ID_PROPERTY
-
-
Constructor Summary
Constructors Constructor Description SecurityManager()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description boolean
containsLocalAuthProvider()
Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProvidersAuthenticationProvider
getAuthProvider(String name)
Return the authentication parameter with the given nameSecurityManagerParameter
getSecurityManagerParameter(String name)
Return the security manager parameter with the given nameMap<String,String>
getSecurityManagerParameterMap()
Return the Map containing the SecurityManagerParameters name and valuesString
getSsoKeystorePassword()
Return the SSO keystore password.String
getSsoPrivateKeyPassword()
Return the SSO private key password.boolean
hasLdapAuthProvider()
boolean
isLocalSecurityMangager()
Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.boolean
isTwoFactorAuthenticationOptional()
Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.void
setSsoKeystorePassword(String keystorePassword)
Set the SSO keystore password.void
setSsoPrivateKeyPassword(String keyPassword)
Set the SSO private key password.-
Methods inherited from class com.avoka.fc.core.entity.auto._SecurityManager
addToAuthenticationProviders, addToPortals, addToSecurityManagerLog, addToSecurityManagerParameters, getAccountExpiryDays, getAuthenticationProviders, getDescription, getEmailApprovedMessage, getEmailApprovedSubject, getEmailPendingMessage, getEmailPendingSubject, getEmailRejectedMessage, getEmailRejectedSubject, getEmailVerificationMessage, getEmailVerificationSubject, getEnrolRecaptchaPrivateKey, getEnrolRecaptchaPublicKey, getLastModifiedAt, getLastModifiedBy, getLockoutDuration, getMaxEmailVerificationDays, getMaxLoginAttempts, getName, getPasswordIllegalValues, getPasswordMinLength, getPortals, getSecurityManagerLog, getSecurityManagerParameters, getSessionTimeout, getSsoKeystoreData, getSsoKeystoreFilename, getSsoPrivateKeyAlias, getSsoScriptAuthOkResponse, getSsoScriptGetAuthToken, getSsoScriptRevalidation, getSsoValidatorCertData, getSsoValidatorCertFilename, getTwoFactorAuthenticationService, getUrlLogin, getUrlLogoutChain, isActiveFlag, isDefaultManagerFlag, isDelegatedAuthenticationFlag, isDisableUserProfileEditFlag, isEnrolAccountApprovalFlag, isEnrolEmailVerificationFlag, isEnrolRecaptchaFlag, isEnrolUserCreationFlag, isEnrolUserRegistrationFlag, isLoggingEnabledFlag, isNotifyAdminOnChangeFlag, isNotifyUserOnChangeFlag, isPasswordLettersDigitsFlag, isPasswordMixedCaseFlag, isPasswordSpecialCharFlag, isSecureGroovyApiFlag, isSsoFilterEnabledFlag, isSsoRevalidationRequiredFlag, isStrictHeaderSecurityFlag, isTwoFactorAuthenticationOptionalFlag, removeFromAuthenticationProviders, removeFromPortals, removeFromSecurityManagerLog, removeFromSecurityManagerParameters, setAccountExpiryDays, setActiveFlag, setDefaultManagerFlag, setDelegatedAuthenticationFlag, setDescription, setDisableUserProfileEditFlag, setEmailApprovedMessage, setEmailApprovedSubject, setEmailPendingMessage, setEmailPendingSubject, setEmailRejectedMessage, setEmailRejectedSubject, setEmailVerificationMessage, setEmailVerificationSubject, setEnrolAccountApprovalFlag, setEnrolEmailVerificationFlag, setEnrolRecaptchaFlag, setEnrolRecaptchaPrivateKey, setEnrolRecaptchaPublicKey, setEnrolUserCreationFlag, setEnrolUserRegistrationFlag, setLastModifiedAt, setLastModifiedBy, setLockoutDuration, setLoggingEnabledFlag, setMaxEmailVerificationDays, setMaxLoginAttempts, setName, setNotifyAdminOnChangeFlag, setNotifyUserOnChangeFlag, setPasswordIllegalValues, setPasswordLettersDigitsFlag, setPasswordMinLength, setPasswordMixedCaseFlag, setPasswordSpecialCharFlag, setSecureGroovyApiFlag, setSessionTimeout, setSsoFilterEnabledFlag, setSsoKeystoreData, setSsoKeystoreFilename, setSsoPrivateKeyAlias, setSsoRevalidationRequiredFlag, setSsoScriptAuthOkResponse, setSsoScriptGetAuthToken, setSsoScriptRevalidation, setSsoValidatorCertData, setSsoValidatorCertFilename, setStrictHeaderSecurityFlag, setTwoFactorAuthenticationOptionalFlag, setTwoFactorAuthenticationService, setUrlLogin, setUrlLogoutChain
-
Methods inherited from class com.avoka.core.entity.BaseEntity
appendProperties, getId, getValuesMap, isNew, setId, toString
-
Methods inherited from class org.apache.cayenne.CayenneDataObject
addToManyTarget, getSnapshotVersion, makePath, readNestedProperty, readProperty, readPropertyDirectly, removeToManyTarget, setObjectContext, setPersistenceState, setReverseRelationship, setSnapshotVersion, setToManyTarget, setToOneTarget, toStringBuffer, unsetReverseRelationship, validateForDelete, validateForInsert, validateForSave, validateForUpdate, willConnect, writeProperty, writePropertyDirectly
-
Methods inherited from class org.apache.cayenne.PersistentObject
getMapKey, getObjectContext, getObjectId, getPersistenceState, setObjectId
-
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
-
Methods inherited from interface com.avoka.fc.core.entity.Auditable
getId, getValuesMap
-
-
-
-
Method Detail
-
isLocalSecurityMangager
public boolean isLocalSecurityMangager()
Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.- Returns:
- if a Local Security Manager
- Since:
- 4.2.0
-
containsLocalAuthProvider
public boolean containsLocalAuthProvider()
Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProviders- Returns:
- if contains a LocalUserDetailsAuthenticationProviders
-
getAuthProvider
public AuthenticationProvider getAuthProvider(String name)
Return the authentication parameter with the given name- Parameters:
name
- the name (required)- Returns:
- the matching authentication provider, or null if not found
-
hasLdapAuthProvider
public boolean hasLdapAuthProvider()
- Returns:
- if the Security Manager has an
LdapUserDetailsAuthenticationProvider
-
getSsoKeystorePassword
public String getSsoKeystorePassword()
Return the SSO keystore password.- Overrides:
getSsoKeystorePassword
in class_SecurityManager
- Returns:
- the SSO keystore password.
-
setSsoKeystorePassword
public void setSsoKeystorePassword(String keystorePassword)
Set the SSO keystore password.- Overrides:
setSsoKeystorePassword
in class_SecurityManager
- Parameters:
keystorePassword
- the SSO keystore password
-
getSsoPrivateKeyPassword
public String getSsoPrivateKeyPassword()
Return the SSO private key password.- Overrides:
getSsoPrivateKeyPassword
in class_SecurityManager
- Returns:
- the SSO private key password.
-
setSsoPrivateKeyPassword
public void setSsoPrivateKeyPassword(String keyPassword)
Set the SSO private key password.- Overrides:
setSsoPrivateKeyPassword
in class_SecurityManager
- Parameters:
keyPassword
- the SSO private key password to set.
-
getSecurityManagerParameterMap
public Map<String,String> getSecurityManagerParameterMap()
Return the Map containing the SecurityManagerParameters name and values- Returns:
- the Map containing the SecurityManagerParameters name and values
- Since:
- 4.1.0
-
getSecurityManagerParameter
public SecurityManagerParameter getSecurityManagerParameter(String name)
Return the security manager parameter with the given name- Parameters:
name
- the name (required)- Returns:
- the matching Security Manager, or null if not found
- Since:
- 4.1.0
-
isTwoFactorAuthenticationOptional
public boolean isTwoFactorAuthenticationOptional()
Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.- Returns:
- true if the two factor authentication is optional
- Since:
- 4.3.1
-
-