Package com.avoka.fc.core.entity
Class SecurityManager
java.lang.Object
org.apache.cayenne.PersistentObject
org.apache.cayenne.BaseDataObject
org.apache.cayenne.CayenneDataObject
com.avoka.core.entity.BaseEntity
com.avoka.fc.core.entity.auto._SecurityManager
com.avoka.fc.core.entity.SecurityManager
- All Implemented Interfaces:
IEntity
,Auditable
,Serializable
,org.apache.cayenne.DataObject
,org.apache.cayenne.Persistent
,org.apache.cayenne.Validating
Provides an Security Manager configuration entity.
- Since:
- 3.5.0
- See Also:
-
Field Summary
Fields inherited from class com.avoka.fc.core.entity.auto._SecurityManager
ACCOUNT_EXPIRY_DAYS, ACCOUNT_EXPIRY_DAYS_PROPERTY, ACTIVE_FLAG, ACTIVE_FLAG_PROPERTY, AUTHENTICATION_PROVIDERS, AUTHENTICATION_PROVIDERS_PROPERTY, DEFAULT_MANAGER_FLAG, DEFAULT_MANAGER_FLAG_PROPERTY, DELEGATED_AUTHENTICATION_FLAG, DELEGATED_AUTHENTICATION_FLAG_PROPERTY, DESCRIPTION, DESCRIPTION_PROPERTY, DISABLE_USER_PROFILE_EDIT_FLAG, DISABLE_USER_PROFILE_EDIT_FLAG_PROPERTY, EMAIL_APPROVED_MESSAGE, EMAIL_APPROVED_MESSAGE_PROPERTY, EMAIL_APPROVED_SUBJECT, EMAIL_APPROVED_SUBJECT_PROPERTY, EMAIL_PENDING_MESSAGE, EMAIL_PENDING_MESSAGE_PROPERTY, EMAIL_PENDING_SUBJECT, EMAIL_PENDING_SUBJECT_PROPERTY, EMAIL_REJECTED_MESSAGE, EMAIL_REJECTED_MESSAGE_PROPERTY, EMAIL_REJECTED_SUBJECT, EMAIL_REJECTED_SUBJECT_PROPERTY, EMAIL_VERIFICATION_MESSAGE, EMAIL_VERIFICATION_MESSAGE_PROPERTY, EMAIL_VERIFICATION_SUBJECT, EMAIL_VERIFICATION_SUBJECT_PROPERTY, ENROL_ACCOUNT_APPROVAL_FLAG, ENROL_ACCOUNT_APPROVAL_FLAG_PROPERTY, ENROL_EMAIL_VERIFICATION_FLAG, ENROL_EMAIL_VERIFICATION_FLAG_PROPERTY, ENROL_RECAPTCHA_FLAG, ENROL_RECAPTCHA_FLAG_PROPERTY, ENROL_RECAPTCHA_PRIVATE_KEY, ENROL_RECAPTCHA_PRIVATE_KEY_PROPERTY, ENROL_RECAPTCHA_PUBLIC_KEY, ENROL_RECAPTCHA_PUBLIC_KEY_PROPERTY, ENROL_USER_CREATION_FLAG, ENROL_USER_CREATION_FLAG_PROPERTY, ENROL_USER_REGISTRATION_FLAG, ENROL_USER_REGISTRATION_FLAG_PROPERTY, LAST_MODIFIED_AT, LAST_MODIFIED_AT_PROPERTY, LAST_MODIFIED_BY, LAST_MODIFIED_BY_PROPERTY, LOCKOUT_DURATION, LOCKOUT_DURATION_PROPERTY, LOGGING_ENABLED_FLAG, LOGGING_ENABLED_FLAG_PROPERTY, MAX_EMAIL_VERIFICATION_DAYS, MAX_EMAIL_VERIFICATION_DAYS_PROPERTY, MAX_LOGIN_ATTEMPTS, MAX_LOGIN_ATTEMPTS_PROPERTY, NAME, NAME_PROPERTY, NOTIFY_ADMIN_ON_CHANGE_FLAG, NOTIFY_ADMIN_ON_CHANGE_FLAG_PROPERTY, NOTIFY_USER_ON_CHANGE_FLAG, NOTIFY_USER_ON_CHANGE_FLAG_PROPERTY, PASSWORD_ILLEGAL_VALUES, PASSWORD_ILLEGAL_VALUES_PROPERTY, PASSWORD_LETTERS_DIGITS_FLAG, PASSWORD_LETTERS_DIGITS_FLAG_PROPERTY, PASSWORD_MIN_LENGTH, PASSWORD_MIN_LENGTH_PROPERTY, PASSWORD_MIXED_CASE_FLAG, PASSWORD_MIXED_CASE_FLAG_PROPERTY, PASSWORD_SPECIAL_CHAR_FLAG, PASSWORD_SPECIAL_CHAR_FLAG_PROPERTY, PORTALS, PORTALS_PROPERTY, SECURE_GROOVY_API_FLAG, SECURE_GROOVY_API_FLAG_PROPERTY, SECURITY_MANAGER_LOG, SECURITY_MANAGER_LOG_PROPERTY, SECURITY_MANAGER_OID_PK_COLUMN, SECURITY_MANAGER_PARAMETERS, SECURITY_MANAGER_PARAMETERS_PROPERTY, SESSION_TIMEOUT, SESSION_TIMEOUT_PROPERTY, SSO_FILTER_ENABLED_FLAG, SSO_FILTER_ENABLED_FLAG_PROPERTY, SSO_KEYSTORE_DATA, SSO_KEYSTORE_DATA_PROPERTY, SSO_KEYSTORE_FILENAME, SSO_KEYSTORE_FILENAME_PROPERTY, SSO_KEYSTORE_PASSWORD, SSO_KEYSTORE_PASSWORD_PROPERTY, SSO_PRIVATE_KEY_ALIAS, SSO_PRIVATE_KEY_ALIAS_PROPERTY, SSO_PRIVATE_KEY_PASSWORD, SSO_PRIVATE_KEY_PASSWORD_PROPERTY, SSO_REVALIDATION_REQUIRED_FLAG, SSO_REVALIDATION_REQUIRED_FLAG_PROPERTY, SSO_SCRIPT_AUTH_OK_RESPONSE, SSO_SCRIPT_AUTH_OK_RESPONSE_PROPERTY, SSO_SCRIPT_GET_AUTH_TOKEN, SSO_SCRIPT_GET_AUTH_TOKEN_PROPERTY, SSO_SCRIPT_REVALIDATION, SSO_SCRIPT_REVALIDATION_PROPERTY, SSO_VALIDATOR_CERT_DATA, SSO_VALIDATOR_CERT_DATA_PROPERTY, SSO_VALIDATOR_CERT_FILENAME, SSO_VALIDATOR_CERT_FILENAME_PROPERTY, STRICT_HEADER_SECURITY_BY_HOST_FLAG, STRICT_HEADER_SECURITY_BY_HOST_FLAG_PROPERTY, STRICT_HEADER_SECURITY_BY_IP_FLAG, STRICT_HEADER_SECURITY_BY_IP_FLAG_PROPERTY, STRICT_HEADER_SECURITY_BY_USER_AGENT_FLAG, STRICT_HEADER_SECURITY_BY_USER_AGENT_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_SERVICE, TWO_FACTOR_AUTHENTICATION_SERVICE_PROPERTY, URL_LOGIN, URL_LOGIN_PROPERTY, URL_LOGOUT_CHAIN, URL_LOGOUT_CHAIN_PROPERTY
Fields inherited from class com.avoka.core.entity.BaseEntity
ID_PROPERTY
Fields inherited from class org.apache.cayenne.CayenneDataObject
values
Fields inherited from class org.apache.cayenne.BaseDataObject
snapshotVersion
Fields inherited from class org.apache.cayenne.PersistentObject
objectContext, objectId, persistenceState
Fields inherited from interface org.apache.cayenne.DataObject
DEFAULT_VERSION
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionboolean
Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProvidersgetAuthProvider
(String name) Return the authentication parameter with the given nameReturn the security manager parameter with the given nameReturn the Map containing the SecurityManagerParameters name and valuesReturn the SSO keystore password.Return the SSO private key password.boolean
boolean
Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.boolean
Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.void
setSsoKeystorePassword
(String keystorePassword) Set the SSO keystore password.void
setSsoPrivateKeyPassword
(String keyPassword) Set the SSO private key password.Methods inherited from class com.avoka.fc.core.entity.auto._SecurityManager
addToAuthenticationProviders, addToPortals, addToSecurityManagerLog, addToSecurityManagerParameters, getAccountExpiryDays, getAuthenticationProviders, getDescription, getEmailApprovedMessage, getEmailApprovedSubject, getEmailPendingMessage, getEmailPendingSubject, getEmailRejectedMessage, getEmailRejectedSubject, getEmailVerificationMessage, getEmailVerificationSubject, getEnrolRecaptchaPrivateKey, getEnrolRecaptchaPublicKey, getLastModifiedAt, getLastModifiedBy, getLockoutDuration, getMaxEmailVerificationDays, getMaxLoginAttempts, getName, getPasswordIllegalValues, getPasswordMinLength, getPortals, getSecurityManagerLog, getSecurityManagerParameters, getSessionTimeout, getSsoKeystoreData, getSsoKeystoreFilename, getSsoPrivateKeyAlias, getSsoScriptAuthOkResponse, getSsoScriptGetAuthToken, getSsoScriptRevalidation, getSsoValidatorCertData, getSsoValidatorCertFilename, getTwoFactorAuthenticationService, getUrlLogin, getUrlLogoutChain, isActiveFlag, isDefaultManagerFlag, isDelegatedAuthenticationFlag, isDisableUserProfileEditFlag, isEnrolAccountApprovalFlag, isEnrolEmailVerificationFlag, isEnrolRecaptchaFlag, isEnrolUserCreationFlag, isEnrolUserRegistrationFlag, isLoggingEnabledFlag, isNotifyAdminOnChangeFlag, isNotifyUserOnChangeFlag, isPasswordLettersDigitsFlag, isPasswordMixedCaseFlag, isPasswordSpecialCharFlag, isSecureGroovyApiFlag, isSsoFilterEnabledFlag, isSsoRevalidationRequiredFlag, isStrictHeaderSecurityByHostFlag, isStrictHeaderSecurityByIpFlag, isStrictHeaderSecurityByUserAgentFlag, isTwoFactorAuthenticationOptionalFlag, removeFromAuthenticationProviders, removeFromPortals, removeFromSecurityManagerLog, removeFromSecurityManagerParameters, setAccountExpiryDays, setActiveFlag, setDefaultManagerFlag, setDelegatedAuthenticationFlag, setDescription, setDisableUserProfileEditFlag, setEmailApprovedMessage, setEmailApprovedSubject, setEmailPendingMessage, setEmailPendingSubject, setEmailRejectedMessage, setEmailRejectedSubject, setEmailVerificationMessage, setEmailVerificationSubject, setEnrolAccountApprovalFlag, setEnrolEmailVerificationFlag, setEnrolRecaptchaFlag, setEnrolRecaptchaPrivateKey, setEnrolRecaptchaPublicKey, setEnrolUserCreationFlag, setEnrolUserRegistrationFlag, setLastModifiedAt, setLastModifiedBy, setLockoutDuration, setLoggingEnabledFlag, setMaxEmailVerificationDays, setMaxLoginAttempts, setName, setNotifyAdminOnChangeFlag, setNotifyUserOnChangeFlag, setPasswordIllegalValues, setPasswordLettersDigitsFlag, setPasswordMinLength, setPasswordMixedCaseFlag, setPasswordSpecialCharFlag, setSecureGroovyApiFlag, setSessionTimeout, setSsoFilterEnabledFlag, setSsoKeystoreData, setSsoKeystoreFilename, setSsoPrivateKeyAlias, setSsoRevalidationRequiredFlag, setSsoScriptAuthOkResponse, setSsoScriptGetAuthToken, setSsoScriptRevalidation, setSsoValidatorCertData, setSsoValidatorCertFilename, setStrictHeaderSecurityByHostFlag, setStrictHeaderSecurityByIpFlag, setStrictHeaderSecurityByUserAgentFlag, setTwoFactorAuthenticationOptionalFlag, setTwoFactorAuthenticationService, setUrlLogin, setUrlLogoutChain
Methods inherited from class com.avoka.core.entity.BaseEntity
appendProperties, getId, getValuesMap, isNew, setId, toString
Methods inherited from class org.apache.cayenne.CayenneDataObject
makePath, readPropertyDirectly, readState, setPersistenceState, writePropertyDirectly, writeState
Methods inherited from class org.apache.cayenne.BaseDataObject
addToManyTarget, beforePropertyRead, beforePropertyWrite, getSnapshotVersion, readNestedProperty, readProperty, readSerialized, removeToManyTarget, setObjectContext, setReverseRelationship, setSnapshotVersion, setToManyTarget, setToOneTarget, toStringBuffer, unsetReverseRelationship, validateForDelete, validateForInsert, validateForSave, validateForUpdate, willConnect, writeProperty, writeSerialized
Methods inherited from class org.apache.cayenne.PersistentObject
getMapKey, getObjectContext, getObjectId, getPersistenceState, setObjectId
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
Methods inherited from interface com.avoka.fc.core.entity.Auditable
getId, getValuesMap
Methods inherited from interface org.apache.cayenne.Persistent
getObjectContext, getObjectId, getPersistenceState, setObjectContext, setObjectId, setPersistenceState
-
Constructor Details
-
SecurityManager
public SecurityManager()
-
-
Method Details
-
isLocalSecurityMangager
public boolean isLocalSecurityMangager()Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.- Returns:
- if a Local Security Manager
- Since:
- 4.2.0
-
containsLocalAuthProvider
public boolean containsLocalAuthProvider()Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProviders- Returns:
- if contains a LocalUserDetailsAuthenticationProviders
-
getAuthProvider
Return the authentication parameter with the given name- Parameters:
name
- the name (required)- Returns:
- the matching authentication provider, or null if not found
-
hasLdapAuthProvider
public boolean hasLdapAuthProvider()- Returns:
- if the Security Manager has an
LdapUserDetailsAuthenticationProvider
-
getSsoKeystorePassword
Return the SSO keystore password.- Overrides:
getSsoKeystorePassword
in class_SecurityManager
- Returns:
- the SSO keystore password.
-
setSsoKeystorePassword
Set the SSO keystore password.- Overrides:
setSsoKeystorePassword
in class_SecurityManager
- Parameters:
keystorePassword
- the SSO keystore password
-
getSsoPrivateKeyPassword
Return the SSO private key password.- Overrides:
getSsoPrivateKeyPassword
in class_SecurityManager
- Returns:
- the SSO private key password.
-
setSsoPrivateKeyPassword
Set the SSO private key password.- Overrides:
setSsoPrivateKeyPassword
in class_SecurityManager
- Parameters:
keyPassword
- the SSO private key password to set.
-
getSecurityManagerParameterMap
Return the Map containing the SecurityManagerParameters name and values- Returns:
- the Map containing the SecurityManagerParameters name and values
- Since:
- 4.1.0
-
getSecurityManagerParameter
Return the security manager parameter with the given name- Parameters:
name
- the name (required)- Returns:
- the matching Security Manager, or null if not found
- Since:
- 4.1.0
-
isTwoFactorAuthenticationOptional
public boolean isTwoFactorAuthenticationOptional()Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.- Returns:
- true if the two factor authentication is optional
- Since:
- 4.3.1
-