|
Oracle Role Manager Java API Reference 10g (10.1.4) E12031-02 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface AuthenticationManager
Interface to authenticate a system identity or person.
Method Summary | |
---|---|
RoleManagerPrincipal |
authenticatePerson(java.lang.String username, java.lang.String password) Authenticates person in non-SSO mode, for example, in demo installations without a third-party access manager to do the authentication. |
RoleManagerPrincipal |
authenticateSystemIdentity(java.lang.String username, byte[] data, byte[] signature) Authenticates a system identity. |
RoleManagerPrincipal |
authenticateSystemIdentity(java.lang.String username, java.lang.String password) Authenticates a system identity. |
java.lang.String |
encryptAndMarkValue(java.lang.String identifier, java.lang.String password) Encrypts the identifier and password to produce a hashed value to store and reference during authentication. |
java.lang.String |
encryptValue(java.lang.String identifier, java.lang.String password) Encrypts the identifier and password to produce a hashed value to store and reference during authentication. |
RoleManagerPrincipal |
getPersonPrincipal(java.lang.String ssoToken) Returns user principal based on mapping between SSO logon token and some user attribute in the database. |
RoleManagerPrincipal |
getSystemUserPrincipal() Returns user principal for well-known system identity. |
SnapshotObject |
getUser(RoleManagerPrincipal principal) Returns user object that the principal represents. |
boolean |
isPasswordField(java.lang.String entity, java.lang.String attribute) Returns whether the field in question is a password field. |
void |
resetFailureCount(java.lang.String userType, java.lang.String userName) Resets the user's authentication failure count to zero. |
void |
transformPasswordAttribute(java.lang.String entity, java.util.Map<java.lang.String,? extends java.lang.Object> currentAttributes, java.util.Map<java.lang.String,java.lang.Object> attributes) Modifies the attribute values as necessary to secure a password value if one is being set. |
boolean |
validatePrincipal(RoleManagerPrincipal principal) Returns whether the principal provided is still valid. |
Method Detail |
---|
RoleManagerPrincipal authenticateSystemIdentity(java.lang.String username, java.lang.String password) throws javax.security.auth.login.LoginException
username
- user's logon ID (userId)password
- user's passwordRoleManagerPrincipal
javax.security.auth.login.LoginException
- if authentication failsRoleManagerPrincipal
RoleManagerPrincipal authenticateSystemIdentity(java.lang.String username, byte[] data, byte[] signature) throws javax.security.auth.login.LoginException
username
- user's logon ID (userId)data
- data that this system identity's private key was used to create the signature datasignature
- the digital signature created by signing the data with the user's private keyRoleManagerPrincipal
javax.security.auth.login.LoginException
- if authentication failsRoleManagerPrincipal
RoleManagerPrincipal authenticatePerson(java.lang.String username, java.lang.String password) throws javax.security.auth.login.LoginException
username
- user's logon ID (userId)password
- user's passwordRoleManagerPrincipal
javax.security.auth.login.LoginException
- if authentication failsRoleManagerPrincipal
void resetFailureCount(java.lang.String userType, java.lang.String userName) throws javax.security.auth.login.LoginException
userType
- 'person' or 'systemIdentity'userName
- the user's logon ID (userId)java.lang.IllegalArgumentException
- if userType is not 'person' or 'systemIdentity', or any argument is null, or the user cannot be found.javax.security.auth.login.LoginException
- if the agent cannot be authenticatedRoleManagerPrincipal getPersonPrincipal(java.lang.String ssoToken) throws javax.security.auth.login.LoginException
ssoToken
- user identifier (such as email address) garnered from third-party access manager.RoleManagerPrincipal
javax.security.auth.login.LoginException
- if the user is not in the system or if more than one user can be identified by the token.RoleManagerPrincipal
RoleManagerPrincipal getSystemUserPrincipal()
RoleManagerPrincipal
SnapshotObject getUser(RoleManagerPrincipal principal) throws javax.security.auth.login.LoginException
principal
- RoleManagerPrincipalSystemIdentity
or Person
objectjavax.security.auth.login.LoginException
- if the user is not in the system or if more than one user can be identified by the token.RoleManagerPrincipal
java.lang.String encryptValue(java.lang.String identifier, java.lang.String password) throws javax.security.auth.login.LoginException
identifier
- the user's identifier (such as e-mail or login ID)password
- the clear-text password to authenticate withjavax.security.auth.login.LoginException
- if no encryption class is registeredjava.lang.String encryptAndMarkValue(java.lang.String identifier, java.lang.String password) throws javax.security.auth.login.LoginException
identifier
- the user's identifier (such as e-mail or login ID)password
- the clear-text password to authenticate withjavax.security.auth.login.LoginException
- if no encryption class is registeredboolean isPasswordField(java.lang.String entity, java.lang.String attribute)
entity
- object type (as defined in temporal configuration) to which the attribute belongsattribute
- attribute that is being tested for being a password fieldtrue
if the attribute is a password field, otherwise false
.void transformPasswordAttribute(java.lang.String entity, java.util.Map<java.lang.String,? extends java.lang.Object> currentAttributes, java.util.Map<java.lang.String,java.lang.Object> attributes) throws javax.security.auth.login.LoginException
entity
- the entity type that the transformation is forcurrentAttributes
- the current attributes of the object or an empty collection if the object is newattributes
- the attributes that will be applied to the objectjavax.security.auth.login.LoginException
- if the password creation process failsboolean validatePrincipal(RoleManagerPrincipal principal)
principal
- RoleManagerPrincipal
to validate.true
if the principal still valid, otherwise false
.
|
Oracle Role Manager Java API Reference 10g (10.1.4) E12031-02 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |