atg.security
Class ActiveDirectoryAccountManager

java.lang.Object
  atg.nucleus.logging.VariableArgumentApplicationLoggingImpl
      atg.nucleus.GenericService
          atg.nucleus.RegisteredService
              atg.security.GenericUserAuthority
                  atg.security.RepositoryAccountManager
                      atg.security.LDAPRepositoryAccountManager
                          atg.security.ActiveDirectoryAccountManager

All Implemented Interfaces:

NameContextBindingListener, NameContextElement, NameResolver, AdminableService, ApplicationLogging, atg.nucleus.logging.ApplicationLoggingSender, atg.nucleus.logging.TraceApplicationLogging, VariableArgumentApplicationLogging, ComponentNameResolver, Service, ServiceListener, AccountManager, AccountTypes, LoginUserAuthority, UserAuthority, UserAuthority2, java.util.EventListener

public class ActiveDirectoryAccountManager
extends LDAPRepositoryAccountManager

An account manager and user authority that works against an MS Active Directory

See Also:

LDAPRepositoryAccountManager

Nested Class Summary

Nested classes/interfaces inherited from class atg.security.LDAPRepositoryAccountManager

LDAPRepositoryAccountManager.SecurityCache

Field Summary

static java.lang.String

CLASS_VERSION

Fields inherited from class atg.nucleus.GenericService

SERVICE_INFO_KEY

Fields inherited from interface atg.nucleus.logging.TraceApplicationLogging

DEFAULT_LOG_TRACE_STATUS

Fields inherited from interface atg.nucleus.logging.ApplicationLogging

DEFAULT_LOG_DEBUG_STATUS, DEFAULT_LOG_ERROR_STATUS, DEFAULT_LOG_INFO_STATUS, DEFAULT_LOG_WARNING_STATUS

Constructor Summary

ActiveDirectoryAccountManager()

Method Summary

RepositoryItem	getAccountItem(java.lang.String pAccountName, java.lang.String pDescriptorName) Returns the repository item corresponding to the specified account name, or null if it doesn't exist.
java.lang.String[]	getBaseCNs() Returns Base CN for where the users live
atg.service.resourcepool.JNDIEnvironment	getLoginContext() Returns The environment to use when logging in a user
boolean	login(User pUser, java.lang.String pLoginName, java.lang.String pPassword, java.lang.Object pHashKey) Makes sure that the user supplied the right username/password pair
void	setBaseCNs(java.lang.String[] pBaseCN) Sets Base CN for where the users live
void	setLoginContext(atg.service.resourcepool.JNDIEnvironment pJNDIEnvironment) Sets The environment to use when logging in a user

Methods inherited from class atg.security.LDAPRepositoryAccountManager

doStartService, getAccount, getAccountLdapDescriptorName, getCache, getCacheReloadFrequency, getCacheScheduler, getGroupLdapDescriptorName, getLdapGroups, getLdapPrivileges, getPersona, isMemberOfCacheEnabled, isReadOnly, isVerifyCachedItems, listAccounts, listGroupAccounts, listGroupAndPrivilegeAccounts, listGroupsFor, listLoginAccounts, listMembersForAccount, listPrivilegeAccounts, loadMemberOfCache, setCacheReloadFrequency, setCacheScheduler, setMemberOfCacheEnabled, setVerifyCachedItems

Methods inherited from class atg.security.RepositoryAccountManager

createAccount, getAccountInitializer, getAccountNameProperty, getAccountQueryLimit, getAccountTypeProperty, getAttributeResourceBundle, getDefaultGroupAttributes, getDefaultLoginAttributes, getDefaultLoginGroups, getDefaultPrivilegeAttributes, getDescriptionAttribute, getDescriptionProperty, getFirstNameAttribute, getFirstNameProperty, getGroupDescriptorName, getGroupPropertyNames, getGroupsProperty, getItemNameIsAccountName, getLastNameAttribute, getLastNameProperty, getLastPasswordUpdatePropertyName, getLoginDescriptorName, getLoginPropertyNames, getPasswordAttribute, getPasswordHasher, getPasswordProperty, getPreviousNPasswordArrayPropertyName, getRepository, getTransactionManager, listMatchingAccounts, removeAccount, setAccountInitializer, setAccountNameProperty, setAccountQueryLimit, setAccountTypeProperty, setAttributeResourceBundle, setDefaultGroupAttributes, setDefaultLoginAttributes, setDefaultLoginGroups, setDefaultPrivilegeAttributes, setDescriptionProperty, setFirstNameProperty, setGroupDescriptorName, setGroupPropertyNames, setGroupsProperty, setItemNameIsAccountName, setLastNameProperty, setLastPasswordUpdatePropertyName, setLoginDescriptorName, setLoginPropertyNames, setPasswordHasher, setPasswordProperty, setPreviousNPasswordArrayPropertyName, setRepository, setTransactionManager, userDestroyed

Methods inherited from class atg.security.GenericUserAuthority

addAuthenticationFailedListener, addAuthenticationSucceededListener, addSpecialPersona, fireAuthenticationFailedEvent, fireAuthenticationSucceededEvent, getProxyUserAuthorities, getSpecialPersonae, getSupportsEveryone, getUserAuthorityName, removeAuthenticationFailedListener, removeAuthenticationSucceededListener, removeSpecialPersona, setProxyUserAuthorities, setSpecialPersonae, setSupportsEveryone, setUserAuthorityName

Methods inherited from class atg.nucleus.RegisteredService

addToRegistry, getRegistry, getRegistryName, getServiceName, removeFromRegistry, setRegistryName, setServiceName, startService, stopService

Methods inherited from class atg.nucleus.GenericService

addLogListener, createAdminServlet, doStopService, getAbsoluteName, getAdminServlet, getLoggingForVlogging, getLogListenerCount, getLogListeners, getName, getNameContext, getNucleus, getRoot, getServiceConfiguration, getServiceInfo, isLoggingDebug, isLoggingError, isLoggingInfo, isLoggingTrace, isLoggingWarning, isRunning, logDebug, logDebug, logDebug, logError, logError, logError, logInfo, logInfo, logInfo, logTrace, logTrace, logTrace, logWarning, logWarning, logWarning, nameContextElementBound, nameContextElementUnbound, removeLogListener, resolveName, resolveName, resolveName, resolveName, sendLogEvent, setLoggingDebug, setLoggingError, setLoggingInfo, setLoggingTrace, setLoggingWarning, setNucleus, setServiceInfo

Methods inherited from class atg.nucleus.logging.VariableArgumentApplicationLoggingImpl

vlogDebug, vlogDebug, vlogDebug, vlogDebug, vlogError, vlogError, vlogError, vlogError, vlogInfo, vlogInfo, vlogInfo, vlogInfo, vlogTrace, vlogTrace, vlogTrace, vlogTrace, vlogWarning, vlogWarning, vlogWarning, vlogWarning

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface atg.security.UserAuthority

addAuthenticationFailedListener, addAuthenticationSucceededListener, getUserAuthorityName, removeAuthenticationFailedListener, removeAuthenticationSucceededListener

Field Detail

CLASS_VERSION

public static java.lang.String CLASS_VERSION

Constructor Detail

ActiveDirectoryAccountManager

public ActiveDirectoryAccountManager()

Method Detail

setLoginContext

public void setLoginContext(atg.service.resourcepool.JNDIEnvironment pJNDIEnvironment)

Sets The environment to use when logging in a user

getLoginContext

public atg.service.resourcepool.JNDIEnvironment getLoginContext()

Returns The environment to use when logging in a user

setBaseCNs

public void setBaseCNs(java.lang.String[] pBaseCN)

Sets Base CN for where the users live

getBaseCNs

public java.lang.String[] getBaseCNs()

Returns Base CN for where the users live

getAccountItem

public RepositoryItem getAccountItem(java.lang.String pAccountName,
                                     java.lang.String pDescriptorName)

Returns the repository item corresponding to the specified account name, or null if it doesn't exist.

This method must always be called from within a transaction.

Overrides:

getAccountItem in class RepositoryAccountManager

login

public boolean login(User pUser,
                     java.lang.String pLoginName,
                     java.lang.String pPassword,
                     java.lang.Object pHashKey)

Makes sure that the user supplied the right username/password pair

Specified by:

login in interface LoginUserAuthority

Overrides:

login in class RepositoryAccountManager

See Also:

PasswordHasher