Package com.avoka.fc.core.entity
Class SecurityManager
- java.lang.Object
-
- org.apache.cayenne.PersistentObject
-
- org.apache.cayenne.CayenneDataObject
-
- com.avoka.core.entity.BaseEntity
-
- com.avoka.fc.core.entity.auto._SecurityManager
-
- com.avoka.fc.core.entity.SecurityManager
-
- All Implemented Interfaces:
IEntity,Auditable,Serializable,org.apache.cayenne.DataObject,org.apache.cayenne.Persistent,org.apache.cayenne.Validating
@CacheGroups("CONFIG") public class SecurityManager extends _SecurityManager implements AuditableProvides an Security Manager configuration entity.- Since:
- 3.5.0
- See Also:
AuthenticationProvider, Serialized Form
-
-
Field Summary
-
Fields inherited from class com.avoka.fc.core.entity.auto._SecurityManager
ACCOUNT_EXPIRY_DAYS, ACCOUNT_EXPIRY_DAYS_PROPERTY, ACTIVE_FLAG, ACTIVE_FLAG_PROPERTY, AUTHENTICATION_PROVIDERS, AUTHENTICATION_PROVIDERS_PROPERTY, DEFAULT_MANAGER_FLAG, DEFAULT_MANAGER_FLAG_PROPERTY, DELEGATED_AUTHENTICATION_FLAG, DELEGATED_AUTHENTICATION_FLAG_PROPERTY, DESCRIPTION, DESCRIPTION_PROPERTY, DISABLE_USER_PROFILE_EDIT_FLAG, DISABLE_USER_PROFILE_EDIT_FLAG_PROPERTY, EMAIL_APPROVED_MESSAGE, EMAIL_APPROVED_MESSAGE_PROPERTY, EMAIL_APPROVED_SUBJECT, EMAIL_APPROVED_SUBJECT_PROPERTY, EMAIL_PENDING_MESSAGE, EMAIL_PENDING_MESSAGE_PROPERTY, EMAIL_PENDING_SUBJECT, EMAIL_PENDING_SUBJECT_PROPERTY, EMAIL_REJECTED_MESSAGE, EMAIL_REJECTED_MESSAGE_PROPERTY, EMAIL_REJECTED_SUBJECT, EMAIL_REJECTED_SUBJECT_PROPERTY, EMAIL_VERIFICATION_MESSAGE, EMAIL_VERIFICATION_MESSAGE_PROPERTY, EMAIL_VERIFICATION_SUBJECT, EMAIL_VERIFICATION_SUBJECT_PROPERTY, ENROL_ACCOUNT_APPROVAL_FLAG, ENROL_ACCOUNT_APPROVAL_FLAG_PROPERTY, ENROL_EMAIL_VERIFICATION_FLAG, ENROL_EMAIL_VERIFICATION_FLAG_PROPERTY, ENROL_RECAPTCHA_FLAG, ENROL_RECAPTCHA_FLAG_PROPERTY, ENROL_RECAPTCHA_PRIVATE_KEY, ENROL_RECAPTCHA_PRIVATE_KEY_PROPERTY, ENROL_RECAPTCHA_PUBLIC_KEY, ENROL_RECAPTCHA_PUBLIC_KEY_PROPERTY, ENROL_USER_CREATION_FLAG, ENROL_USER_CREATION_FLAG_PROPERTY, ENROL_USER_REGISTRATION_FLAG, ENROL_USER_REGISTRATION_FLAG_PROPERTY, LAST_MODIFIED_AT, LAST_MODIFIED_AT_PROPERTY, LAST_MODIFIED_BY, LAST_MODIFIED_BY_PROPERTY, LOCKOUT_DURATION, LOCKOUT_DURATION_PROPERTY, LOGGING_ENABLED_FLAG, LOGGING_ENABLED_FLAG_PROPERTY, MAX_EMAIL_VERIFICATION_DAYS, MAX_EMAIL_VERIFICATION_DAYS_PROPERTY, MAX_LOGIN_ATTEMPTS, MAX_LOGIN_ATTEMPTS_PROPERTY, NAME, NAME_PROPERTY, NOTIFY_ADMIN_ON_CHANGE_FLAG, NOTIFY_ADMIN_ON_CHANGE_FLAG_PROPERTY, NOTIFY_USER_ON_CHANGE_FLAG, NOTIFY_USER_ON_CHANGE_FLAG_PROPERTY, PASSWORD_ILLEGAL_VALUES, PASSWORD_ILLEGAL_VALUES_PROPERTY, PASSWORD_LETTERS_DIGITS_FLAG, PASSWORD_LETTERS_DIGITS_FLAG_PROPERTY, PASSWORD_MIN_LENGTH, PASSWORD_MIN_LENGTH_PROPERTY, PASSWORD_MIXED_CASE_FLAG, PASSWORD_MIXED_CASE_FLAG_PROPERTY, PASSWORD_SPECIAL_CHAR_FLAG, PASSWORD_SPECIAL_CHAR_FLAG_PROPERTY, PORTALS, PORTALS_PROPERTY, SECURE_GROOVY_API_FLAG, SECURE_GROOVY_API_FLAG_PROPERTY, SECURITY_MANAGER_LOG, SECURITY_MANAGER_LOG_PROPERTY, SECURITY_MANAGER_OID_PK_COLUMN, SECURITY_MANAGER_PARAMETERS, SECURITY_MANAGER_PARAMETERS_PROPERTY, SESSION_TIMEOUT, SESSION_TIMEOUT_PROPERTY, SSO_FILTER_ENABLED_FLAG, SSO_FILTER_ENABLED_FLAG_PROPERTY, SSO_KEYSTORE_DATA, SSO_KEYSTORE_DATA_PROPERTY, SSO_KEYSTORE_FILENAME, SSO_KEYSTORE_FILENAME_PROPERTY, SSO_KEYSTORE_PASSWORD, SSO_KEYSTORE_PASSWORD_PROPERTY, SSO_PRIVATE_KEY_ALIAS, SSO_PRIVATE_KEY_ALIAS_PROPERTY, SSO_PRIVATE_KEY_PASSWORD, SSO_PRIVATE_KEY_PASSWORD_PROPERTY, SSO_REVALIDATION_REQUIRED_FLAG, SSO_REVALIDATION_REQUIRED_FLAG_PROPERTY, SSO_SCRIPT_AUTH_OK_RESPONSE, SSO_SCRIPT_AUTH_OK_RESPONSE_PROPERTY, SSO_SCRIPT_GET_AUTH_TOKEN, SSO_SCRIPT_GET_AUTH_TOKEN_PROPERTY, SSO_SCRIPT_REVALIDATION, SSO_SCRIPT_REVALIDATION_PROPERTY, SSO_VALIDATOR_CERT_DATA, SSO_VALIDATOR_CERT_DATA_PROPERTY, SSO_VALIDATOR_CERT_FILENAME, SSO_VALIDATOR_CERT_FILENAME_PROPERTY, STRICT_HEADER_SECURITY_FLAG, STRICT_HEADER_SECURITY_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG, TWO_FACTOR_AUTHENTICATION_OPTIONAL_FLAG_PROPERTY, TWO_FACTOR_AUTHENTICATION_SERVICE, TWO_FACTOR_AUTHENTICATION_SERVICE_PROPERTY, URL_LOGIN, URL_LOGIN_PROPERTY, URL_LOGOUT_CHAIN, URL_LOGOUT_CHAIN_PROPERTY
-
Fields inherited from class com.avoka.core.entity.BaseEntity
ID_PROPERTY
-
-
Constructor Summary
Constructors Constructor Description SecurityManager()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description booleancontainsLocalAuthProvider()Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProvidersAuthenticationProvidergetAuthProvider(String name)Return the authentication parameter with the given nameSecurityManagerParametergetSecurityManagerParameter(String name)Return the security manager parameter with the given nameMap<String,String>getSecurityManagerParameterMap()Return the Map containing the SecurityManagerParameters name and valuesStringgetSsoKeystorePassword()Return the SSO keystore password.StringgetSsoPrivateKeyPassword()Return the SSO private key password.booleanhasLdapAuthProvider()booleanisLocalSecurityMangager()Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.booleanisTwoFactorAuthenticationOptional()Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.voidsetSsoKeystorePassword(String keystorePassword)Set the SSO keystore password.voidsetSsoPrivateKeyPassword(String keyPassword)Set the SSO private key password.-
Methods inherited from class com.avoka.fc.core.entity.auto._SecurityManager
addToAuthenticationProviders, addToPortals, addToSecurityManagerLog, addToSecurityManagerParameters, getAccountExpiryDays, getAuthenticationProviders, getDescription, getEmailApprovedMessage, getEmailApprovedSubject, getEmailPendingMessage, getEmailPendingSubject, getEmailRejectedMessage, getEmailRejectedSubject, getEmailVerificationMessage, getEmailVerificationSubject, getEnrolRecaptchaPrivateKey, getEnrolRecaptchaPublicKey, getLastModifiedAt, getLastModifiedBy, getLockoutDuration, getMaxEmailVerificationDays, getMaxLoginAttempts, getName, getPasswordIllegalValues, getPasswordMinLength, getPortals, getSecurityManagerLog, getSecurityManagerParameters, getSessionTimeout, getSsoKeystoreData, getSsoKeystoreFilename, getSsoPrivateKeyAlias, getSsoScriptAuthOkResponse, getSsoScriptGetAuthToken, getSsoScriptRevalidation, getSsoValidatorCertData, getSsoValidatorCertFilename, getTwoFactorAuthenticationService, getUrlLogin, getUrlLogoutChain, isActiveFlag, isDefaultManagerFlag, isDelegatedAuthenticationFlag, isDisableUserProfileEditFlag, isEnrolAccountApprovalFlag, isEnrolEmailVerificationFlag, isEnrolRecaptchaFlag, isEnrolUserCreationFlag, isEnrolUserRegistrationFlag, isLoggingEnabledFlag, isNotifyAdminOnChangeFlag, isNotifyUserOnChangeFlag, isPasswordLettersDigitsFlag, isPasswordMixedCaseFlag, isPasswordSpecialCharFlag, isSecureGroovyApiFlag, isSsoFilterEnabledFlag, isSsoRevalidationRequiredFlag, isStrictHeaderSecurityFlag, isTwoFactorAuthenticationOptionalFlag, removeFromAuthenticationProviders, removeFromPortals, removeFromSecurityManagerLog, removeFromSecurityManagerParameters, setAccountExpiryDays, setActiveFlag, setDefaultManagerFlag, setDelegatedAuthenticationFlag, setDescription, setDisableUserProfileEditFlag, setEmailApprovedMessage, setEmailApprovedSubject, setEmailPendingMessage, setEmailPendingSubject, setEmailRejectedMessage, setEmailRejectedSubject, setEmailVerificationMessage, setEmailVerificationSubject, setEnrolAccountApprovalFlag, setEnrolEmailVerificationFlag, setEnrolRecaptchaFlag, setEnrolRecaptchaPrivateKey, setEnrolRecaptchaPublicKey, setEnrolUserCreationFlag, setEnrolUserRegistrationFlag, setLastModifiedAt, setLastModifiedBy, setLockoutDuration, setLoggingEnabledFlag, setMaxEmailVerificationDays, setMaxLoginAttempts, setName, setNotifyAdminOnChangeFlag, setNotifyUserOnChangeFlag, setPasswordIllegalValues, setPasswordLettersDigitsFlag, setPasswordMinLength, setPasswordMixedCaseFlag, setPasswordSpecialCharFlag, setSecureGroovyApiFlag, setSessionTimeout, setSsoFilterEnabledFlag, setSsoKeystoreData, setSsoKeystoreFilename, setSsoPrivateKeyAlias, setSsoRevalidationRequiredFlag, setSsoScriptAuthOkResponse, setSsoScriptGetAuthToken, setSsoScriptRevalidation, setSsoValidatorCertData, setSsoValidatorCertFilename, setStrictHeaderSecurityFlag, setTwoFactorAuthenticationOptionalFlag, setTwoFactorAuthenticationService, setUrlLogin, setUrlLogoutChain
-
Methods inherited from class com.avoka.core.entity.BaseEntity
appendProperties, getId, getValuesMap, isNew, setId, toString
-
Methods inherited from class org.apache.cayenne.CayenneDataObject
addToManyTarget, getSnapshotVersion, makePath, readNestedProperty, readProperty, readPropertyDirectly, removeToManyTarget, setObjectContext, setPersistenceState, setReverseRelationship, setSnapshotVersion, setToManyTarget, setToOneTarget, toStringBuffer, unsetReverseRelationship, validateForDelete, validateForInsert, validateForSave, validateForUpdate, willConnect, writeProperty, writePropertyDirectly
-
Methods inherited from class org.apache.cayenne.PersistentObject
getMapKey, getObjectContext, getObjectId, getPersistenceState, setObjectId
-
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
-
Methods inherited from interface com.avoka.fc.core.entity.Auditable
getId, getValuesMap
-
-
-
-
Method Detail
-
isLocalSecurityMangager
public boolean isLocalSecurityMangager()
Return true if a Local Security Manager, with only LocalUserDetailsAuthenticationProviders.- Returns:
- if a Local Security Manager
- Since:
- 4.2.0
-
containsLocalAuthProvider
public boolean containsLocalAuthProvider()
Return true if the Security Manager authenticationProviders contains a LocalUserDetailsAuthenticationProviders- Returns:
- if contains a LocalUserDetailsAuthenticationProviders
-
getAuthProvider
public AuthenticationProvider getAuthProvider(String name)
Return the authentication parameter with the given name- Parameters:
name- the name (required)- Returns:
- the matching authentication provider, or null if not found
-
hasLdapAuthProvider
public boolean hasLdapAuthProvider()
- Returns:
- if the Security Manager has an
LdapUserDetailsAuthenticationProvider
-
getSsoKeystorePassword
public String getSsoKeystorePassword()
Return the SSO keystore password.- Overrides:
getSsoKeystorePasswordin class_SecurityManager- Returns:
- the SSO keystore password.
-
setSsoKeystorePassword
public void setSsoKeystorePassword(String keystorePassword)
Set the SSO keystore password.- Overrides:
setSsoKeystorePasswordin class_SecurityManager- Parameters:
keystorePassword- the SSO keystore password
-
getSsoPrivateKeyPassword
public String getSsoPrivateKeyPassword()
Return the SSO private key password.- Overrides:
getSsoPrivateKeyPasswordin class_SecurityManager- Returns:
- the SSO private key password.
-
setSsoPrivateKeyPassword
public void setSsoPrivateKeyPassword(String keyPassword)
Set the SSO private key password.- Overrides:
setSsoPrivateKeyPasswordin class_SecurityManager- Parameters:
keyPassword- the SSO private key password to set.
-
getSecurityManagerParameterMap
public Map<String,String> getSecurityManagerParameterMap()
Return the Map containing the SecurityManagerParameters name and values- Returns:
- the Map containing the SecurityManagerParameters name and values
- Since:
- 4.1.0
-
getSecurityManagerParameter
public SecurityManagerParameter getSecurityManagerParameter(String name)
Return the security manager parameter with the given name- Parameters:
name- the name (required)- Returns:
- the matching Security Manager, or null if not found
- Since:
- 4.1.0
-
isTwoFactorAuthenticationOptional
public boolean isTwoFactorAuthenticationOptional()
Return whether this security manager requires all users to pass two-factor authentication Note: This setting is relevant only if a two-factor authentication service has been set.- Returns:
- true if the two factor authentication is optional
- Since:
- 4.3.1
-
-