public class UserManagerImpl extends Object implements UserManager, MultiTenantUserManager
UserManager.MatchType
Modifier and Type | Field and Description |
---|---|
static String |
DEFAULT_ANONYMOUS_USER_ID |
static String |
GROUPCHANGED_EVENT_ID
Used by JaasCacheFlusher.
|
static String |
GROUPCREATED_EVENT_ID |
static String |
GROUPDELETED_EVENT_ID |
static String |
GROUPMODIFIED_EVENT_ID |
static String |
INVALIDATE_ALL_PRINCIPALS_EVENT_ID |
static String |
INVALIDATE_PRINCIPAL_EVENT_ID |
UserMultiTenantManagement |
multiTenantManagement |
static String |
USERCHANGED_EVENT_ID
Used by JaasCacheFlusher.
|
static String |
USERCREATED_EVENT_ID |
static String |
USERDELETED_EVENT_ID |
static String |
USERMANAGER_TOPIC |
static String |
USERMODIFIED_EVENT_ID |
static String |
VIRTUAL_FIELD_FILTER_PREFIX |
Constructor and Description |
---|
UserManagerImpl() |
Modifier and Type | Method and Description |
---|---|
boolean |
aboutToHandleEvent(Event event)
Notified about an event about to be processed.
|
Boolean |
areGroupsReadOnly()
Returns true is users referential is read only (ie : LDAP) -> can not add
users -> can not delete users.
|
Boolean |
areUsersReadOnly()
Returns true is groups referential is read only (ie : LDAP) -> can not
add groups -> can not delete groups.
|
Principal |
authenticate(String name,
String password)
Get a principal object for the given username if the username / password pair is valid, otherwise returns null.
|
boolean |
checkUsernamePassword(String username,
String password)
Check the password for the given username.
|
DocumentModel |
createGroup(DocumentModel groupModel)
Creates a group from given model
|
DocumentModel |
createGroup(DocumentModel groupModel,
DocumentModel context)
Creates a group from given model with the given context.
|
void |
createGroup(NuxeoGroup group) |
void |
createPrincipal(NuxeoPrincipal principal) |
DocumentModel |
createUser(DocumentModel userModel)
Creates user from given model.
|
DocumentModel |
createUser(DocumentModel userModel,
DocumentModel context)
Creates user from given model into the given context document.
|
void |
deleteGroup(DocumentModel groupModel)
Deletes group represented by given model.
|
void |
deleteGroup(DocumentModel groupModel,
DocumentModel context)
Deletes group represented by given model with the given context.
|
void |
deleteGroup(NuxeoGroup group) |
void |
deleteGroup(String groupId)
Deletes group with given id.
|
void |
deleteGroup(String groupId,
DocumentModel context)
Deletes group with given id with the given context.
|
void |
deletePrincipal(NuxeoPrincipal principal) |
void |
deleteUser(DocumentModel userModel)
Deletes user represented by given model.
|
void |
deleteUser(DocumentModel userModel,
DocumentModel context)
Deletes user represented by given model into the given context document.
|
void |
deleteUser(String userId)
Deletes user with given id.
|
void |
deleteUser(String userId,
DocumentModel context)
Deletes user with given id into the given context document.
|
static String |
encodeDigestAuthPassword(String username,
String realm,
String password) |
List<String> |
getAdministratorsGroups()
Returns the list of administrators groups.
|
String |
getAnonymousUserId()
Gets the anonymous user id.
|
List<NuxeoGroup> |
getAvailableGroups() |
List<NuxeoPrincipal> |
getAvailablePrincipals() |
DocumentModel |
getBareGroupModel()
Returns a bare group model.
|
DocumentModel |
getBareUserModel()
Returns a bare user model.
|
String |
getDefaultGroup() |
String |
getDigestAuthDirectory()
Gets the Digest Auth directory.
|
String |
getDigestAuthRealm()
Gets the Digest Auth realm.
|
NuxeoGroup |
getGroup(String groupName)
Returns the nuxeo group with given name or null if it does not exist.
|
String |
getGroupDirectoryName()
Gets the group directory name.
|
String |
getGroupIdField()
Returns the group directory id field.
|
List<String> |
getGroupIds()
Returns the list of all groups ids.
|
List<String> |
getGroupIds(DocumentModel context)
Returns the list of all groups ids with the given context.
|
String |
getGroupLabelField()
Returns the group label field.
|
String |
getGroupListingMode() |
String |
getGroupMembersField()
Gets the group members field.
|
DocumentModel |
getGroupModel(String groupName)
Return the group document model with this id or null if group does not
exist.
|
DocumentModel |
getGroupModel(String groupIdValue,
DocumentModel context)
Return the group document model with this id concatenated with the
directory local config (if not null) or null if group does not exist.
|
String |
getGroupParentGroupsField()
Gets the group parent-groups field.
|
String |
getGroupSchemaName()
Returns the group directory schema name.
|
Set<String> |
getGroupSearchFields()
Gets the group search fields.
|
List<String> |
getGroupsInGroup(String parentId)
Returns the list of groups that belong to this group.
|
List<String> |
getGroupsInGroup(String parentId,
DocumentModel context)
Returns the list of groups that belong to this group with the given
context.
|
String |
getGroupSubGroupsField()
Gets the group sub-groups field.
|
DocumentModel |
getModelForUser(String name) |
NuxeoPrincipal |
getPrincipal(String username)
Retrieves the principal with the given username or null if it does not
exist.
|
NuxeoPrincipal |
getPrincipal(String username,
DocumentModel context)
Retrieves the principal with the given username or null if it does not
exist into the given context document.
|
List<String> |
getTopLevelGroups()
Returns the list of groups that are not members of other groups.
|
List<String> |
getTopLevelGroups(DocumentModel context)
Returns the list of groups that are not members of other groups with the
given context.
|
String |
getUserDirectoryName()
Gets the user directory name.
|
String |
getUserEmailField()
Gets the user email field.
|
String |
getUserIdField()
Returns the user directory id field.
|
List<String> |
getUserIds()
Returns the list of all user ids.
|
List<String> |
getUserIds(DocumentModel context)
Returns the list of all user ids into the given context document.
|
String |
getUserListingMode() |
DocumentModel |
getUserModel(String userName)
Returns the document model representing user with given id or null if it
does not exist.
|
DocumentModel |
getUserModel(String userName,
DocumentModel context)
Returns the document model representing user with given id or null if it
does not exist into the given context document.
|
Pattern |
getUserPasswordPattern() |
String |
getUserSchemaName()
Returns the user directory schema name.
|
Set<String> |
getUserSearchFields()
Gets the user search fields, the fields to use when a principal search is
done.
|
String[] |
getUsersForPermission(String perm,
ACP acp)
For an ACP, get the list of user that has a permission.
|
String[] |
getUsersForPermission(String perm,
ACP acp,
DocumentModel context)
For an ACP, get the list of user that has a permission into the given
context.
|
List<String> |
getUsersInGroup(String groupId)
Returns the list of users that belong to this group.
|
List<String> |
getUsersInGroup(String groupId,
DocumentModel context)
Returns the list of users that belong to this group into the given
context
|
List<String> |
getUsersInGroupAndSubGroups(String groupId)
Get users from a group and its subgroups.
|
List<String> |
getUsersInGroupAndSubGroups(String groupId,
DocumentModel context)
Get users from a group and its subgroups into the given context
|
String |
getUserSortField() |
void |
handleEvent(Event event)
An event was received.
|
List<NuxeoPrincipal> |
searchByMap(Map<String,Serializable> filter,
Set<String> pattern) |
DocumentModelList |
searchGroups(Map<String,Serializable> filter,
Set<String> fulltext)
Returns groups matching given criteria.
|
DocumentModelList |
searchGroups(Map<String,Serializable> filter,
Set<String> fulltext,
DocumentModel context)
Returns groups matching given criteria with the given context.
|
DocumentModelList |
searchGroups(String pattern)
Search matching groups through their defined search fields
|
DocumentModelList |
searchGroups(String pattern,
DocumentModel context)
Search matching groups through their defined search fields into the given
context document.
|
List<NuxeoPrincipal> |
searchPrincipals(String pattern) |
DocumentModelList |
searchUsers(Map<String,Serializable> filter,
Set<String> fulltext)
Returns users matching given criteria.
|
DocumentModelList |
searchUsers(Map<String,Serializable> filter,
Set<String> fulltext,
DocumentModel context)
Returns users matching given criteria and with the given context.
|
DocumentModelList |
searchUsers(Map<String,Serializable> filter,
Set<String> fulltext,
Map<String,String> orderBy,
DocumentModel context)
MULTI-TENANT-IMPLEMENTATION
|
DocumentModelList |
searchUsers(String pattern)
Returns users matching given pattern
|
DocumentModelList |
searchUsers(String pattern,
DocumentModel context)
Returns users matching given pattern with the given context.
|
void |
setConfiguration(UserManagerDescriptor descriptor)
Sets the given configuration on the service.
|
void |
updateGroup(DocumentModel groupModel)
Updates group represented by given model.
|
void |
updateGroup(DocumentModel groupModel,
DocumentModel context)
Updates group represented by given model with the given context.
|
void |
updateGroup(NuxeoGroup group) |
void |
updatePrincipal(NuxeoPrincipal principal) |
void |
updateUser(DocumentModel userModel)
Updates user represented by given model.
|
void |
updateUser(DocumentModel userModel,
DocumentModel context)
Updates user represented by given model into the given context document.
|
boolean |
validatePassword(String password) |
public static final String USERMANAGER_TOPIC
public static final String USERCHANGED_EVENT_ID
public static final String USERCREATED_EVENT_ID
public static final String USERDELETED_EVENT_ID
public static final String USERMODIFIED_EVENT_ID
public static final String GROUPCHANGED_EVENT_ID
public static final String GROUPCREATED_EVENT_ID
public static final String GROUPDELETED_EVENT_ID
public static final String GROUPMODIFIED_EVENT_ID
public static final String DEFAULT_ANONYMOUS_USER_ID
public static final String VIRTUAL_FIELD_FILTER_PREFIX
public static final String INVALIDATE_PRINCIPAL_EVENT_ID
public static final String INVALIDATE_ALL_PRINCIPALS_EVENT_ID
public UserMultiTenantManagement multiTenantManagement
public void setConfiguration(UserManagerDescriptor descriptor) throws ClientException
UserManager
setConfiguration
in interface UserManager
descriptor
- the descriptor as parsed from xml, merged from the
previous one if it exists.ClientException
public String getUserDirectoryName()
UserManager
getUserDirectoryName
in interface UserManager
public String getUserIdField() throws ClientException
UserManager
getUserIdField
in interface UserManager
ClientException
public String getUserSchemaName() throws ClientException
UserManager
getUserSchemaName
in interface UserManager
ClientException
public String getUserEmailField()
UserManager
getUserEmailField
in interface UserManager
public Set<String> getUserSearchFields()
UserManager
getUserSearchFields
in interface UserManager
public Set<String> getGroupSearchFields()
UserManager
getGroupSearchFields
in interface UserManager
public String getGroupDirectoryName()
UserManager
getGroupDirectoryName
in interface UserManager
public String getGroupIdField() throws ClientException
UserManager
getGroupIdField
in interface UserManager
ClientException
public String getGroupLabelField() throws ClientException
UserManager
getGroupLabelField
in interface UserManager
ClientException
public String getGroupSchemaName() throws ClientException
UserManager
getGroupSchemaName
in interface UserManager
ClientException
public String getGroupMembersField()
UserManager
getGroupMembersField
in interface UserManager
public String getGroupSubGroupsField()
UserManager
getGroupSubGroupsField
in interface UserManager
public String getGroupParentGroupsField()
UserManager
getGroupParentGroupsField
in interface UserManager
public String getUserListingMode()
getUserListingMode
in interface UserManager
public String getGroupListingMode()
getGroupListingMode
in interface UserManager
public String getDefaultGroup()
getDefaultGroup
in interface UserManager
public Pattern getUserPasswordPattern()
getUserPasswordPattern
in interface UserManager
public String getAnonymousUserId()
UserManager
getAnonymousUserId
in interface UserManager
public boolean checkUsernamePassword(String username, String password) throws ClientException
Authenticator
checkUsernamePassword
in interface UserManager
checkUsernamePassword
in interface Authenticator
username
- the usernamepassword
- the password to checkClientException
public static String encodeDigestAuthPassword(String username, String realm, String password)
public String getDigestAuthDirectory()
UserManager
getDigestAuthDirectory
in interface UserManager
public String getDigestAuthRealm()
UserManager
getDigestAuthRealm
in interface UserManager
public boolean validatePassword(String password)
validatePassword
in interface UserManager
public NuxeoPrincipal getPrincipal(String username) throws ClientException
UserManager
Can build principals for anonymous and virtual users as well as for users defined in the users directory.
getPrincipal
in interface UserManager
ClientException
public DocumentModel getUserModel(String userName) throws ClientException
UserManager
getUserModel
in interface UserManager
ClientException
public DocumentModel getBareUserModel() throws ClientException
UserManager
Can be used for user creation/search screens.
getBareUserModel
in interface UserManager
ClientException
public NuxeoGroup getGroup(String groupName) throws ClientException
UserManager
getGroup
in interface UserManager
ClientException
public DocumentModel getGroupModel(String groupName) throws ClientException
UserManager
getGroupModel
in interface UserManager
groupName
- the group identifierClientException
public List<String> getTopLevelGroups() throws ClientException
UserManager
getTopLevelGroups
in interface UserManager
ClientException
public List<String> getGroupsInGroup(String parentId) throws ClientException
UserManager
getGroupsInGroup
in interface UserManager
parentId
- the name of the parent group.ClientException
public List<String> getUsersInGroup(String groupId) throws ClientException
UserManager
getUsersInGroup
in interface UserManager
groupId
- ID of the groupClientException
public List<String> getUsersInGroupAndSubGroups(String groupId) throws ClientException
UserManager
getUsersInGroupAndSubGroups
in interface UserManager
groupId
- ID of the groupClientException
public List<NuxeoPrincipal> searchPrincipals(String pattern) throws ClientException
searchPrincipals
in interface UserManager
ClientException
public DocumentModelList searchGroups(String pattern) throws ClientException
UserManager
searchGroups
in interface UserManager
ClientException
public String getUserSortField()
getUserSortField
in interface UserManager
public Boolean areGroupsReadOnly() throws ClientException
UserManager
areGroupsReadOnly
in interface MultiTenantUserManager
areGroupsReadOnly
in interface UserManager
ClientException
public Boolean areUsersReadOnly() throws ClientException
UserManager
areUsersReadOnly
in interface MultiTenantUserManager
areUsersReadOnly
in interface UserManager
ClientException
public DocumentModel createGroup(DocumentModel groupModel) throws ClientException
UserManager
createGroup
in interface UserManager
ClientException
GroupAlreadyExistsException
public DocumentModel createUser(DocumentModel userModel) throws ClientException
UserManager
createUser
in interface UserManager
ClientException
UserAlreadyExistsException
public void deleteGroup(String groupId) throws ClientException
UserManager
deleteGroup
in interface UserManager
DirectoryException
- if given entry does not existClientException
public void deleteGroup(DocumentModel groupModel) throws ClientException
UserManager
deleteGroup
in interface UserManager
DirectoryException
- if given entry does not existClientException
public void deleteUser(String userId) throws ClientException
UserManager
deleteUser
in interface UserManager
DirectoryException
- if given entry does not existClientException
public void deleteUser(DocumentModel userModel) throws ClientException
UserManager
deleteUser
in interface UserManager
DirectoryException
- if given entry does not existClientException
public List<String> getGroupIds() throws ClientException
UserManager
getGroupIds
in interface UserManager
ClientException
public List<String> getUserIds() throws ClientException
UserManager
getUserIds
in interface UserManager
ClientException
public DocumentModelList searchGroups(Map<String,Serializable> filter, Set<String> fulltext) throws ClientException
UserManager
searchGroups
in interface UserManager
filter
- filter with field names as keysfulltext
- field names used for fulltext matchClientException
public DocumentModelList searchUsers(String pattern) throws ClientException
UserManager
Pattern is used to fill a filter and fulltext map according to users search fields configuration. Search is performed on each of these fields (OR).
searchUsers
in interface UserManager
ClientException
public DocumentModelList searchUsers(Map<String,Serializable> filter, Set<String> fulltext) throws ClientException
UserManager
searchUsers
in interface UserManager
filter
- filter with field names as keysfulltext
- field names used for fulltext matchClientException
public void updateGroup(DocumentModel groupModel) throws ClientException
UserManager
updateGroup
in interface UserManager
DirectoryException
- if given entry does not existClientException
public void updateUser(DocumentModel userModel) throws ClientException
UserManager
updateUser
in interface UserManager
ClientException
public DocumentModel getBareGroupModel() throws ClientException
UserManager
Can be used for group creation/search screens.
getBareGroupModel
in interface UserManager
ClientException
public void createGroup(NuxeoGroup group) throws ClientException
createGroup
in interface UserManager
ClientException
public void createPrincipal(NuxeoPrincipal principal) throws ClientException
createPrincipal
in interface UserManager
ClientException
public void deleteGroup(NuxeoGroup group) throws ClientException
deleteGroup
in interface UserManager
ClientException
public void deletePrincipal(NuxeoPrincipal principal) throws ClientException
deletePrincipal
in interface UserManager
ClientException
public List<NuxeoGroup> getAvailableGroups() throws ClientException
getAvailableGroups
in interface UserManager
ClientException
public List<NuxeoPrincipal> getAvailablePrincipals() throws ClientException
getAvailablePrincipals
in interface UserManager
ClientException
public DocumentModel getModelForUser(String name) throws ClientException
getModelForUser
in interface UserManager
ClientException
public List<NuxeoPrincipal> searchByMap(Map<String,Serializable> filter, Set<String> pattern) throws ClientException
searchByMap
in interface UserManager
ClientException
public void updateGroup(NuxeoGroup group) throws ClientException
updateGroup
in interface UserManager
ClientException
public void updatePrincipal(NuxeoPrincipal principal) throws ClientException
updatePrincipal
in interface UserManager
ClientException
public List<String> getAdministratorsGroups()
UserManager
getAdministratorsGroups
in interface UserManager
public String[] getUsersForPermission(String perm, ACP acp)
UserManager
getUsersForPermission
in interface UserManager
perm
- the permissionacp
- The access control policy of the documentpublic Principal authenticate(String name, String password) throws ClientException
Authenticator
This method is doing the authentication of the given username / password pair and returns the corresponding principal object if authentication succeeded otherwise returns null.
authenticate
in interface Authenticator
ClientException
public DocumentModelList searchUsers(Map<String,Serializable> filter, Set<String> fulltext, Map<String,String> orderBy, DocumentModel context) throws ClientException
ClientException
public List<String> getUsersInGroup(String groupId, DocumentModel context) throws ClientException
MultiTenantUserManager
getUsersInGroup
in interface MultiTenantUserManager
groupId
- ID of the groupClientException
public DocumentModelList searchUsers(String pattern, DocumentModel context) throws ClientException
MultiTenantUserManager
Pattern is used to fill a filter and fulltext map according to users search fields configuration. Search is performed on each of these fields (OR).
searchUsers
in interface MultiTenantUserManager
ClientException
public DocumentModelList searchUsers(Map<String,Serializable> filter, Set<String> fulltext, DocumentModel context) throws ClientException
MultiTenantUserManager
searchUsers
in interface MultiTenantUserManager
filter
- filter with field names as keysfulltext
- field names used for fulltext matchClientException
public List<String> getGroupIds(DocumentModel context) throws ClientException
MultiTenantUserManager
getGroupIds
in interface MultiTenantUserManager
ClientException
public DocumentModelList searchGroups(Map<String,Serializable> filter, Set<String> fulltext, DocumentModel context) throws ClientException
MultiTenantUserManager
searchGroups
in interface MultiTenantUserManager
filter
- filter with field names as keysfulltext
- field names used for fulltext matchClientException
public DocumentModel createGroup(DocumentModel groupModel, DocumentModel context) throws ClientException, GroupAlreadyExistsException
MultiTenantUserManager
createGroup
in interface MultiTenantUserManager
ClientException
GroupAlreadyExistsException
public DocumentModel getGroupModel(String groupIdValue, DocumentModel context) throws ClientException
MultiTenantUserManager
getGroupModel
in interface MultiTenantUserManager
groupIdValue
- the group identifierClientException
public DocumentModel getUserModel(String userName, DocumentModel context) throws ClientException
MultiTenantUserManager
getUserModel
in interface MultiTenantUserManager
ClientException
public NuxeoPrincipal getPrincipal(String username, DocumentModel context) throws ClientException
MultiTenantUserManager
Can build principals for anonymous and virtual users as well as for users defined in the users directory.
getPrincipal
in interface MultiTenantUserManager
ClientException
public DocumentModelList searchGroups(String pattern, DocumentModel context) throws ClientException
MultiTenantUserManager
searchGroups
in interface MultiTenantUserManager
ClientException
public List<String> getUserIds(DocumentModel context) throws ClientException
MultiTenantUserManager
getUserIds
in interface MultiTenantUserManager
ClientException
public DocumentModel createUser(DocumentModel userModel, DocumentModel context) throws ClientException, UserAlreadyExistsException
MultiTenantUserManager
createUser
in interface MultiTenantUserManager
ClientException
UserAlreadyExistsException
public void updateUser(DocumentModel userModel, DocumentModel context) throws ClientException
MultiTenantUserManager
updateUser
in interface MultiTenantUserManager
ClientException
public void deleteUser(DocumentModel userModel, DocumentModel context) throws ClientException
MultiTenantUserManager
deleteUser
in interface MultiTenantUserManager
DirectoryException
- if given entry does not existClientException
public void deleteUser(String userId, DocumentModel context) throws ClientException
MultiTenantUserManager
deleteUser
in interface MultiTenantUserManager
DirectoryException
- if given entry does not existClientException
public void updateGroup(DocumentModel groupModel, DocumentModel context) throws ClientException
MultiTenantUserManager
updateGroup
in interface MultiTenantUserManager
DirectoryException
- if given entry does not existClientException
public void deleteGroup(DocumentModel groupModel, DocumentModel context) throws ClientException
MultiTenantUserManager
deleteGroup
in interface MultiTenantUserManager
DirectoryException
- if given entry does not existClientException
public void deleteGroup(String groupId, DocumentModel context) throws ClientException
MultiTenantUserManager
deleteGroup
in interface MultiTenantUserManager
DirectoryException
- if given entry does not existClientException
public List<String> getGroupsInGroup(String parentId, DocumentModel context) throws ClientException
MultiTenantUserManager
getGroupsInGroup
in interface MultiTenantUserManager
parentId
- the name of the parent group.ClientException
public List<String> getTopLevelGroups(DocumentModel context) throws ClientException
MultiTenantUserManager
getTopLevelGroups
in interface MultiTenantUserManager
ClientException
public List<String> getUsersInGroupAndSubGroups(String groupId, DocumentModel context) throws ClientException
MultiTenantUserManager
getUsersInGroupAndSubGroups
in interface MultiTenantUserManager
groupId
- ID of the groupClientException
public String[] getUsersForPermission(String perm, ACP acp, DocumentModel context)
MultiTenantUserManager
getUsersForPermission
in interface MultiTenantUserManager
perm
- the permissionacp
- The access control policy of the documentpublic boolean aboutToHandleEvent(Event event)
EventListener
aboutToHandleEvent
in interface EventListener
event
- the eventpublic void handleEvent(Event event)
EventListener
handleEvent
in interface EventListener
Copyright © 2014 Nuxeo SA. All rights reserved.