Package com.avoka.fc.core.entity

Class SecurityManager

java.lang.Object

org.apache.cayenne.PersistentObject

org.apache.cayenne.BaseDataObject

org.apache.cayenne.CayenneDataObject

com.avoka.core.entity.BaseEntity

com.avoka.fc.core.entity.auto._SecurityManager

com.avoka.fc.core.entity.SecurityManager

All Implemented Interfaces:

IEntity, Auditable, Serializable, org.apache.cayenne.DataObject, org.apache.cayenne.Persistent, org.apache.cayenne.Validating

@CacheGroups("CONFIG")
public class SecurityManager
extends _SecurityManager
implements Auditable

Provides an Security Manager configuration entity.

Since:

3.5.0

See Also:

• AuthenticationProvider
• Serialized Form

Field Summary

Fields inherited from class com.avoka.fc.core.entity.auto._SecurityManager

ACCOUNT_EXPIRY_DAYS, ACCOUNT_EXPIRY_DAYS_PROPERTY, ACTIVE_FLAG, ACTIVE_FLAG_PROPERTY, AUTHENTICATION_PROVIDERS, AUTHENTICATION_PROVIDERS_PROPERTY, DEFAULT_MANAGER_FLAG, DEFAULT_MANAGER_FLAG_PROPERTY, DELEGATED_AUTHENTICATION_FLAG, DELEGATED_AUTHENTICATION_FLAG_PROPERTY, DESCRIPTION, DESCRIPTION_PROPERTY, DISABLE_USER_PROFILE_EDIT_FLAG, DISABLE_USER_PROFILE_EDIT_FLAG_PROPERTY, EMAIL_APPROVED_MESSAGE, EMAIL_APPROVED_MESSAGE_PROPERTY, EMAIL_APPROVED_SUBJECT, EMAIL_APPROVED_SUBJECT_PROPERTY, EMAIL_PENDING_MESSAGE, EMAIL_PENDING_MESSAGE_PROPERTY, EMAIL_PENDING_SUBJECT, EMAIL_PENDING_SUBJECT_PROPERTY, EMAIL_REJECTED_MESSAGE, EMAIL_REJECTED_MESSAGE_PROPERTY, EMAIL_REJECTED_SUBJECT, EMAIL_REJECTED_SUBJECT_PROPERTY, EMAIL_VERIFICATION_MESSAGE, EMAIL_VERIFICATION_MESSAGE_PROPERTY, EMAIL_VERIFICATION_SUBJECT, EMAIL_VERIFICATION_SUBJECT_PROPERTY, ENROL_ACCOUNT_APPROVAL_FLAG, ENROL_ACCOUNT_APPROVAL_FLAG_PROPERTY, ENROL_EMAIL_VERIFICATION_FLAG, ENROL_EMAIL_VERIFICATION_FLAG_PROPERTY, ENROL_RECAPTCHA_FLAG, ENROL_RECAPTCHA_FLAG_PROPERTY, ENROL_RECAPTCHA_PRIVATE_KEY, ENROL_RECAPTCHA_PRIVATE_KEY_PROPERTY, ENROL_RECAPTCHA_PUBLIC_KEY, ENROL_RECAPTCHA_PUBLIC_KEY_PROPERTY, ENROL_USER_CREATION_FLAG, ENROL_USER_CREATION_FLAG_PROPERTY, ENROL_USER_REGISTRATION_FLAG, ENROL_USER_REGISTRATION_FLAG_PROPERTY, LAST_MODIFIED_AT, LAST_MODIFIED_AT_PROPERTY, LAST_MODIFIED_BY, LAST_MODIFIED_BY_PROPERTY, LOCKOUT_DURATION, LOCKOUT_DURATION_PROPERTY, LOGGING_ENABLED_FLAG, LOGGING_ENABLED_FLAG_PROPERTY, MAX_EMAIL_VERIFICATION_DAYS, MAX_EMAIL_VERIFICATION_DAYS_PROPERTY, MAX_LOGIN_ATTEMPTS, MAX_LOGIN_ATTEMPTS_PROPERTY, NAME, NAME_PROPERTY, NOTIFY_ADMIN_ON_CHANGE_FLAG, NOTIFY_ADMIN_ON_CHANGE_FLAG_PROPERTY, NOTIFY_USER_ON_CHANGE_FLAG, NOTIFY_USER_ON_CHANGE_FLAG_PROPERTY, PASSWORD_ILLEGAL_VALUES, PASSWORD_ILLEGAL_VALUES_PROPERTY, PASSWORD_LETTERS_DIGITS_FLAG, PASSWORD_LETTERS_DIGITS_FLAG_PROPERTY, PASSWORD_MIN_LENGTH, PASSWORD_MIN_LENGTH_PROPERTY, PASSWORD_MIXED_CASE_FLAG, PASSWORD_MIXED_CASE_FLAG_PROPERTY, PASSWORD_SPECIAL_CHAR_FLAG, PASSWORD_SPECIAL_CHAR_FLAG_PROPERTY, PORTALS, PORTALS_PROPERTY, SECURE_GROOVY_API_FLAG, SECURE_GROOVY_API_FLAG_PROPERTY, SECURITY_MANAGER_LOG, SECURITY_MANAGER_LOG_PROPERTY, SECURITY_MANAGER_OID_PK_COLUMN, SECURITY_MANAGER_PARAMETERS, SECURITY_MANAGER_PARAMETERS_PROPERTY, SESSION_TIMEOUT, SESSION_TIMEOUT_PROPERTY, SSO_FILTER_ENABLED_FLAG, SSO_FILTER_ENABLED_FLAG_PROPERTY, SSO_KEYSTORE_DATA, SSO_KEYSTORE_DATA_PROPERTY, SSO_KEYSTORE_FILENAME, SSO_KEYSTORE_FILENAME_PROPERTY, SSO_KEYSTORE_PASSWORD, SSO_KEYSTORE_PASSWORD_PROPERTY, SSO_PRIVATE_KEY_ALIAS, SSO_PRIVATE_KEY_ALIAS_PROPERTY, SSO_PRIVATE_KEY_PASSWORD, SSO_PRIVATE_KEY_PASSWORD_PROPERTY, SSO_REVALIDATION_REQUIRED_FLAG, SSO_REVALIDATION_REQUIRED_FLAG_PROPERTY, SSO_SCRIPT_AUTH_OK_RESPONSE, SSO_SCRIPT_AUTH_OK_RESPONSE_PROPERTY, SSO_SCRIPT_GET_AUTH_TOKEN, SSO_SCRIPT_GET_AUTH_TOKEN_PROPERTY, SSO_SCRIPT_REVALIDATION, SSO_SCRIPT_REVALIDATION_PROPERTY, SSO_VALIDATOR_CERT_DATA, SSO_VALIDATOR_CERT_DATA_PROPERTY, SSO_VALIDATOR_CERT_FILENAME, SSO_VALIDATOR_CERT_FILENAME_PROPERTY, STRICT_HEADER_SECURITY_FLAG, STRICT_HEADER_SECURITY_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_SERVICE, TWO_FACTOR_AUTHENTICATION_SERVICE_PROPERTY, URL_LOGIN, URL_LOGIN_PROPERTY, URL_LOGOUT_CHAIN, URL_LOGOUT_CHAIN_PROPERTY

Fields inherited from class com.avoka.core.entity.BaseEntity

ID_PROPERTY

Fields inherited from class org.apache.cayenne.CayenneDataObject

values

Fields inherited from class org.apache.cayenne.BaseDataObject

snapshotVersion

Fields inherited from class org.apache.cayenne.PersistentObject

objectContext, objectId, persistenceState

Fields inherited from interface org.apache.cayenne.DataObject

DEFAULT_VERSION

Constructor Summary

Constructors

Constructor	Description
SecurityManager()

Method Summary

Modifier and Type	Method	Description
boolean	containsLocalAuthProvider()	Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProviders
AuthenticationProvider	getAuthProvider(String name)	Return the authentication parameter with the given name
SecurityManagerParameter	getSecurityManagerParameter(String name)	Return the security manager parameter with the given name
Map<String,String>	getSecurityManagerParameterMap()	Return the Map containing the SecurityManagerParameters name and values
String	getSsoKeystorePassword()	Return the SSO keystore password.
String	getSsoPrivateKeyPassword()	Return the SSO private key password.
boolean	hasLdapAuthProvider()
boolean	isLocalSecurityMangager()	Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.
boolean	isTwoFactorAuthenticationOptional()	Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.
void	setSsoKeystorePassword(String keystorePassword)	Set the SSO keystore password.
void	setSsoPrivateKeyPassword(String keyPassword)	Set the SSO private key password.

Methods inherited from class com.avoka.fc.core.entity.auto._SecurityManager

addToAuthenticationProviders, addToPortals, addToSecurityManagerLog, addToSecurityManagerParameters, getAccountExpiryDays, getAuthenticationProviders, getDescription, getEmailApprovedMessage, getEmailApprovedSubject, getEmailPendingMessage, getEmailPendingSubject, getEmailRejectedMessage, getEmailRejectedSubject, getEmailVerificationMessage, getEmailVerificationSubject, getEnrolRecaptchaPrivateKey, getEnrolRecaptchaPublicKey, getLastModifiedAt, getLastModifiedBy, getLockoutDuration, getMaxEmailVerificationDays, getMaxLoginAttempts, getName, getPasswordIllegalValues, getPasswordMinLength, getPortals, getSecurityManagerLog, getSecurityManagerParameters, getSessionTimeout, getSsoKeystoreData, getSsoKeystoreFilename, getSsoPrivateKeyAlias, getSsoScriptAuthOkResponse, getSsoScriptGetAuthToken, getSsoScriptRevalidation, getSsoValidatorCertData, getSsoValidatorCertFilename, getTwoFactorAuthenticationService, getUrlLogin, getUrlLogoutChain, isActiveFlag, isDefaultManagerFlag, isDelegatedAuthenticationFlag, isDisableUserProfileEditFlag, isEnrolAccountApprovalFlag, isEnrolEmailVerificationFlag, isEnrolRecaptchaFlag, isEnrolUserCreationFlag, isEnrolUserRegistrationFlag, isLoggingEnabledFlag, isNotifyAdminOnChangeFlag, isNotifyUserOnChangeFlag, isPasswordLettersDigitsFlag, isPasswordMixedCaseFlag, isPasswordSpecialCharFlag, isSecureGroovyApiFlag, isSsoFilterEnabledFlag, isSsoRevalidationRequiredFlag, isStrictHeaderSecurityFlag, isTwoFactorAuthenticationOptionalFlag, removeFromAuthenticationProviders, removeFromPortals, removeFromSecurityManagerLog, removeFromSecurityManagerParameters, setAccountExpiryDays, setActiveFlag, setDefaultManagerFlag, setDelegatedAuthenticationFlag, setDescription, setDisableUserProfileEditFlag, setEmailApprovedMessage, setEmailApprovedSubject, setEmailPendingMessage, setEmailPendingSubject, setEmailRejectedMessage, setEmailRejectedSubject, setEmailVerificationMessage, setEmailVerificationSubject, setEnrolAccountApprovalFlag, setEnrolEmailVerificationFlag, setEnrolRecaptchaFlag, setEnrolRecaptchaPrivateKey, setEnrolRecaptchaPublicKey, setEnrolUserCreationFlag, setEnrolUserRegistrationFlag, setLastModifiedAt, setLastModifiedBy, setLockoutDuration, setLoggingEnabledFlag, setMaxEmailVerificationDays, setMaxLoginAttempts, setName, setNotifyAdminOnChangeFlag, setNotifyUserOnChangeFlag, setPasswordIllegalValues, setPasswordLettersDigitsFlag, setPasswordMinLength, setPasswordMixedCaseFlag, setPasswordSpecialCharFlag, setSecureGroovyApiFlag, setSessionTimeout, setSsoFilterEnabledFlag, setSsoKeystoreData, setSsoKeystoreFilename, setSsoPrivateKeyAlias, setSsoRevalidationRequiredFlag, setSsoScriptAuthOkResponse, setSsoScriptGetAuthToken, setSsoScriptRevalidation, setSsoValidatorCertData, setSsoValidatorCertFilename, setStrictHeaderSecurityFlag, setTwoFactorAuthenticationOptionalFlag, setTwoFactorAuthenticationService, setUrlLogin, setUrlLogoutChain

Methods inherited from class com.avoka.core.entity.BaseEntity

appendProperties, getId, getValuesMap, isNew, setId, toString

Methods inherited from class org.apache.cayenne.CayenneDataObject

makePath, readPropertyDirectly, readState, setPersistenceState, writePropertyDirectly, writeState

Methods inherited from class org.apache.cayenne.BaseDataObject

addToManyTarget, beforePropertyRead, beforePropertyWrite, getSnapshotVersion, readNestedProperty, readProperty, readSerialized, removeToManyTarget, setObjectContext, setReverseRelationship, setSnapshotVersion, setToManyTarget, setToOneTarget, toStringBuffer, unsetReverseRelationship, validateForDelete, validateForInsert, validateForSave, validateForUpdate, willConnect, writeProperty, writeSerialized

Methods inherited from class org.apache.cayenne.PersistentObject

getMapKey, getObjectContext, getObjectId, getPersistenceState, setObjectId

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Methods inherited from interface com.avoka.fc.core.entity.Auditable

getId, getValuesMap

Methods inherited from interface org.apache.cayenne.Persistent

getObjectContext, getObjectId, getPersistenceState, setObjectContext, setObjectId, setPersistenceState

Constructor Details

SecurityManager

public SecurityManager()

Method Details

isLocalSecurityMangager

public boolean isLocalSecurityMangager()

Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.

Returns:

if a Local Security Manager

Since:

4.2.0

containsLocalAuthProvider

public boolean containsLocalAuthProvider()

Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProviders

Returns:

if contains a LocalUserDetailsAuthenticationProviders

getAuthProvider

public AuthenticationProvider getAuthProvider(String name)

Return the authentication parameter with the given name

Parameters:

name - the name (required)

Returns:

the matching authentication provider, or null if not found

hasLdapAuthProvider

public boolean hasLdapAuthProvider()

Returns:

if the Security Manager has an LdapUserDetailsAuthenticationProvider

getSsoKeystorePassword

public String getSsoKeystorePassword()

Return the SSO keystore password.

Overrides:

getSsoKeystorePassword in class _SecurityManager

Returns:

the SSO keystore password.

setSsoKeystorePassword

public void setSsoKeystorePassword(String keystorePassword)

Set the SSO keystore password.

Overrides:

setSsoKeystorePassword in class _SecurityManager

Parameters:

keystorePassword - the SSO keystore password

getSsoPrivateKeyPassword

public String getSsoPrivateKeyPassword()

Return the SSO private key password.

Overrides:

getSsoPrivateKeyPassword in class _SecurityManager

Returns:

the SSO private key password.

setSsoPrivateKeyPassword

public void setSsoPrivateKeyPassword(String keyPassword)

Set the SSO private key password.

Overrides:

setSsoPrivateKeyPassword in class _SecurityManager

Parameters:

keyPassword - the SSO private key password to set.

getSecurityManagerParameterMap

public Map<String,String> getSecurityManagerParameterMap()

Return the Map containing the SecurityManagerParameters name and values

Returns:

the Map containing the SecurityManagerParameters name and values

Since:

4.1.0

getSecurityManagerParameter

public SecurityManagerParameter getSecurityManagerParameter(String name)

Return the security manager parameter with the given name

Parameters:

name - the name (required)

Returns:

the matching Security Manager, or null if not found

Since:

4.1.0

isTwoFactorAuthenticationOptional

public boolean isTwoFactorAuthenticationOptional()

Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.

Returns:

true if the two factor authentication is optional

Since:

4.3.1