org.camunda.bpm.identity.impl.ldap

Class LdapIdentityProviderSession

java.lang.Object

org.camunda.bpm.identity.impl.ldap.LdapIdentityProviderSession

All Implemented Interfaces:

ReadOnlyIdentityProvider, Session

public class LdapIdentityProviderSession
extends Object
implements ReadOnlyIdentityProvider

LDAP ReadOnlyIdentityProvider.

Author:

Daniel Meyer

Field Summary

Fields

Modifier and Type	Field and Description
protected LdapContext	initialContext
protected LdapConfiguration	ldapConfiguration

Constructor Summary

Constructors

Constructor and Description
LdapIdentityProviderSession(LdapConfiguration ldapConfiguration)

Method Summary

Modifier and Type	Method and Description
protected void	addFilter(String attributeName, String attributeValue, StringWriter writer)
protected void	applyRequestControls(AbstractQuery<?,?> query)
boolean	checkPassword(String userId, String password)
void	close()
protected String	composeDn(String... parts)
GroupQuery	createGroupQuery()
GroupQuery	createGroupQuery(CommandContext commandContext)
NativeUserQuery	createNativeUserQuery() Creates a NativeUserQuery that allows to select users with native queries.
TenantQuery	createTenantQuery()
TenantQuery	createTenantQuery(CommandContext commandContext)
UserQuery	createUserQuery()
UserQueryImpl	createUserQuery(CommandContext commandContext)
protected void	ensureContextInitialized()
protected String	escapeLDAPSearchFilter(String filter)
Group	findGroupById(String groupId)
List<Group>	findGroupByQueryCriteria(LdapGroupQuery query)
long	findGroupCountByQueryCriteria(LdapGroupQuery ldapGroupQuery)
Tenant	findTenantById(String id)
User	findUserById(String userId)
List<User>	findUserByQueryCriteria(LdapUserQueryImpl query)
long	findUserCountByQueryCriteria(LdapUserQueryImpl query)
protected List<User>	findUsersByGroupId(LdapUserQueryImpl query)
List<User>	findUsersWithoutGroupId(LdapUserQueryImpl query, String userBaseDn, boolean ignorePagination)
void	flush()
protected String	getDnForGroup(String groupId)
protected String	getDnForUser(String userId)
protected String	getGroupSearchFilter(LdapGroupQuery query)
protected String	getStringAttributeValue(String attrName, Attributes attributes)
protected String	getUserSearchFilter(LdapUserQueryImpl query)
protected boolean	isAuthenticatedUser(UserEntity user)
protected boolean	isAuthorized(Permission permission, Resource resource, String resourceId)
protected InitialLdapContext	openContext(String userDn, String password)
protected GroupEntity	transformGroup(SearchResult result)
protected LdapUserEntity	transformUser(SearchResult result)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

ldapConfiguration

protected LdapConfiguration ldapConfiguration

initialContext

protected LdapContext initialContext

Constructor Detail

LdapIdentityProviderSession

public LdapIdentityProviderSession(LdapConfiguration ldapConfiguration)

Method Detail

flush

public void flush()

Specified by:

flush in interface Session

close

public void close()

Specified by:

close in interface Session

openContext

protected InitialLdapContext openContext(String userDn,
                                         String password)

ensureContextInitialized

protected void ensureContextInitialized()

findUserById

public User findUserById(String userId)

Specified by:

findUserById in interface ReadOnlyIdentityProvider

Returns:

a User object for the given user id or null if no such user exists.

createUserQuery

public UserQuery createUserQuery()

Specified by:

createUserQuery in interface ReadOnlyIdentityProvider

Returns:

a UserQuery object which can be used for querying for users.

createUserQuery

public UserQueryImpl createUserQuery(CommandContext commandContext)

Specified by:

createUserQuery in interface ReadOnlyIdentityProvider

Returns:

a UserQuery object which can be used in the current command context

createNativeUserQuery

public NativeUserQuery createNativeUserQuery()

Description copied from interface: ReadOnlyIdentityProvider

Creates a NativeUserQuery that allows to select users with native queries.

Specified by:

createNativeUserQuery in interface ReadOnlyIdentityProvider

Returns:

NativeUserQuery

findUserCountByQueryCriteria

public long findUserCountByQueryCriteria(LdapUserQueryImpl query)

findUserByQueryCriteria

public List<User> findUserByQueryCriteria(LdapUserQueryImpl query)

findUsersByGroupId

protected List<User> findUsersByGroupId(LdapUserQueryImpl query)

findUsersWithoutGroupId

public List<User> findUsersWithoutGroupId(LdapUserQueryImpl query,
                                          String userBaseDn,
                                          boolean ignorePagination)

checkPassword

public boolean checkPassword(String userId,
                             String password)

Specified by:

checkPassword in interface ReadOnlyIdentityProvider

Returns:

'true' if the password matches the

getUserSearchFilter

protected String getUserSearchFilter(LdapUserQueryImpl query)

findGroupById

public Group findGroupById(String groupId)

Specified by:

findGroupById in interface ReadOnlyIdentityProvider

Returns:

a Group object for the given group id or null if no such group exists.

createGroupQuery

public GroupQuery createGroupQuery()

Specified by:

createGroupQuery in interface ReadOnlyIdentityProvider

Returns:

a GroupQuery object which can be used for querying for groups.

createGroupQuery

public GroupQuery createGroupQuery(CommandContext commandContext)

Specified by:

createGroupQuery in interface ReadOnlyIdentityProvider

Returns:

a GroupQuery object which can be used for querying for groups and can be reused in the current command context.

findGroupCountByQueryCriteria

public long findGroupCountByQueryCriteria(LdapGroupQuery ldapGroupQuery)

findGroupByQueryCriteria

public List<Group> findGroupByQueryCriteria(LdapGroupQuery query)

getGroupSearchFilter

protected String getGroupSearchFilter(LdapGroupQuery query)

getDnForUser

protected String getDnForUser(String userId)

getDnForGroup

protected String getDnForGroup(String groupId)

getStringAttributeValue

protected String getStringAttributeValue(String attrName,
                                         Attributes attributes)
                                  throws NamingException

Throws:

NamingException

addFilter

protected void addFilter(String attributeName,
                         String attributeValue,
                         StringWriter writer)

transformUser

protected LdapUserEntity transformUser(SearchResult result)
                                throws NamingException

Throws:

NamingException

transformGroup

protected GroupEntity transformGroup(SearchResult result)
                              throws NamingException

Throws:

NamingException

applyRequestControls

protected void applyRequestControls(AbstractQuery<?,?> query)

composeDn

protected String composeDn(String... parts)

isAuthenticatedUser

protected boolean isAuthenticatedUser(UserEntity user)

Returns:

true if the passed-in user is currently authenticated

isAuthorized

protected boolean isAuthorized(Permission permission,
                               Resource resource,
                               String resourceId)

escapeLDAPSearchFilter

protected final String escapeLDAPSearchFilter(String filter)

createTenantQuery

public TenantQuery createTenantQuery()

Specified by:

createTenantQuery in interface ReadOnlyIdentityProvider

Returns:

a TenantQuery object which can be used for querying for tenants.

createTenantQuery

public TenantQuery createTenantQuery(CommandContext commandContext)

Specified by:

createTenantQuery in interface ReadOnlyIdentityProvider

Returns:

a TenantQuery object which can be used for querying for tenants and can be reused in the current command context.

findTenantById

public Tenant findTenantById(String id)

Specified by:

findTenantById in interface ReadOnlyIdentityProvider

Returns:

a Tenant object for the given id or null if no such tenant exists.