Class SecurityManagerService

All Implemented Interfaces:
ISecurityManagerService

public class SecurityManagerService extends CayenneService implements ISecurityManagerService
Provides a Security Manager service which is associated with a Security Manager configuration entity.
Since:
3.5.0
See Also:
  • Field Details

    • NUMBER_OF_OLD_PASSWORDS

      public static final String NUMBER_OF_OLD_PASSWORDS
      See Also:
    • PERMANENT_LOCKOUT

      public static final Integer PERMANENT_LOCKOUT
      Provides the 'permanent lockout' property value.
  • Constructor Details

    • SecurityManagerService

      public SecurityManagerService(SecurityManager securityManager, Portal portal)
      Create a Security Manager Service with the given security manager configuration entity and portal.
      Parameters:
      securityManager - the security manager configuration entity
      portal - the associated portal
  • Method Details

    • createAuthenticationProvider

      public org.springframework.security.authentication.AuthenticationProvider createAuthenticationProvider(AuthenticationProvider providerEntity)
      Create an Spring Security AuthenticationProvider instance using the associated Portal and AuthenticationProvider configuration entity.
      Specified by:
      createAuthenticationProvider in interface ISecurityManagerService
      Parameters:
      providerEntity - the AuthenticationProvider configuration entity
      Returns:
      a Spring Security AuthenticationProvider
      See Also:
      • invalid reference
        ISecurityManagerService#createAuthenticationProvider(org.springframework.security.authentication.AuthenticationProvider)
    • createUserAndProfile

      public UserAccount createUserAndProfile(String loginName, String email, String password, String givenName, String familyName, String mobile, Map<String,String> profileMap, String authenticationDomain, String userType, boolean isSelfRegistration) throws ApplicationException
      Create a new user account and profile
      Specified by:
      createUserAndProfile in interface ISecurityManagerService
      Parameters:
      loginName - the user id (required)
      email - the user email address (optional)
      password - the user password (required for Local userType accounts)
      givenName - the user first name (optional)
      familyName - the user last name (optional)
      mobile - the user mobile phone number (optional)
      profileMap - the map of user profile names and values to create
      authenticationDomain - the authentication domain (not used since 4.2.1)
      userType - the type of user account (required)
      isSelfRegistration - the flag specifying whether the user self registered
      Returns:
      the new user account
      Throws:
      ApplicationException - if an error occur creating the new user account
      See Also:
      • invalid reference
        ISecurityManagerService#createUserAndProfile(String, String, String, String, String, String, String, String, Portal, boolean)
    • getAuthenticationProviders

      public List<org.springframework.security.authentication.AuthenticationProvider> getAuthenticationProviders()
      Return the list of Spring Security AuthenticationProvider instances.
      Specified by:
      getAuthenticationProviders in interface ISecurityManagerService
      Returns:
      the list of Spring Security AuthenticationProvider instances
      See Also:
    • doesUserExist

      public boolean doesUserExist(String userId)
      Return true if a user with the given login name already exists.
      Specified by:
      doesUserExist in interface ISecurityManagerService
      Parameters:
      userId - the user id or login name (required)
      Returns:
      true if a user with the given login name already exists
      See Also:
    • doesPasswordMatch

      public boolean doesPasswordMatch(String password, UserAccount userAccount)
      Return true if the plain text password value matches the local user account password.
      Specified by:
      doesPasswordMatch in interface ISecurityManagerService
      Parameters:
      password - plain text password value (required)
      userAccount - the local user account, must a 'Local' user type (required)
      Returns:
      true if the plain text password value matches the local user account password
    • onSuccessfulLogin

      public UserAccount onSuccessfulLogin(String userId, jakarta.servlet.http.HttpServletRequest request)
      Event listener for successful user login event. This method will update the status of the user account and return the update account.
      Specified by:
      onSuccessfulLogin in interface ISecurityManagerService
      Parameters:
      userId - the login userId (login name).
      request - the user HTTP request
      Returns:
      the logged in user account
    • onFailedLogin

      public UserAccount onFailedLogin(String userId, jakarta.servlet.http.HttpServletRequest request)
      Event listener for unsuccessful user login event. This method will update the status of the user account and return the updated account
      Specified by:
      onFailedLogin in interface ISecurityManagerService
      Parameters:
      userId - the login userId (login name).
      request - the user HTTP request
      Returns:
      the failed login user account, or null if no user found
    • onSessionExpiry

      public void onSessionExpiry(String userId, Date lastAccessTime)
      Event listener for the user session expiry or logout.
      Specified by:
      onSessionExpiry in interface ISecurityManagerService
      Parameters:
      userId - the login userId (login name).
      lastAccessTime - the time the user last accessed the application
      See Also:
    • onSessionExpiry

      public void onSessionExpiry(String userId, Date lastAccessTime, String sessionId)
      Event listener for the user session expiry or logout.
      Specified by:
      onSessionExpiry in interface ISecurityManagerService
      Parameters:
      userId - the login userId (login name).
      lastAccessTime - the time the user last accessed the application
      sessionId - the user session id
      Since:
      4.1.3
      See Also:
    • validatePassword

      public String validatePassword(String password, UserAccount userAccount)
      Return null if the password is valid for the security manager configuration, otherwise return an error message.
      Specified by:
      validatePassword in interface ISecurityManagerService
      Parameters:
      password - the password value to validate
      userAccount - the user account against which the password will be validated
      Returns:
      null if the password is valid for the security manager configuration, otherwise return an error message
      See Also:
      • invalid reference
        ISecurityManagerService#validatePassword(String)