Class AuthenticationUtil
- java.lang.Object
-
- org.camunda.bpm.webapp.impl.security.auth.AuthenticationUtil
-
public class AuthenticationUtil extends java.lang.Object
-
-
Field Summary
Fields Modifier and Type Field Description static java.lang.String
APP_WELCOME
static java.lang.String[]
APPS
protected static java.lang.String
CAM_AUTH_SESSION_KEY
protected static WebappLogger
LOGGER
-
Constructor Summary
Constructors Constructor Description AuthenticationUtil()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static UserAuthentication
createAuthentication(java.lang.String engineName, java.lang.String username)
static UserAuthentication
createAuthentication(java.lang.String engineName, java.lang.String username, java.util.List<java.lang.String> groupIds, java.util.List<java.lang.String> tenantIds)
static UserAuthentication
createAuthentication(ProcessEngine processEngine, java.lang.String username)
static UserAuthentication
createAuthentication(ProcessEngine processEngine, java.lang.String username, java.util.List<java.lang.String> groupIds, java.util.List<java.lang.String> tenantIds)
Creates and returns aUserAuthentication
with the following information:userId
processEngineName
groupIds
tenantIds
authorizedApps
static Authentications
getAuthsFromSession(javax.servlet.http.HttpSession session)
Allows obtaining anAuthentications
object from theHttpSession
.static java.util.List<java.lang.String>
getGroupsOfUser(ProcessEngine engine, java.lang.String userId)
protected static java.lang.Object
getSessionMutex(javax.servlet.http.HttpSession session)
Returns the session mutex to synchronize on.static java.util.List<java.lang.String>
getTenantsOfUser(ProcessEngine engine, java.lang.String userId)
protected static boolean
isAuthorizedForApp(AuthorizationService authorizationService, java.lang.String username, java.util.List<java.lang.String> groupIds, java.lang.String application)
static void
revalidateSession(javax.servlet.http.HttpServletRequest request, UserAuthentication authentication)
Invalidates the oldHttpSession
of the current request and creates a new one.static void
updateCache(Authentications authentications, javax.servlet.http.HttpSession session, long cacheTimeToLive)
Update/remove authentications when cache validation time (= x + TTL) is due.static void
updateSession(javax.servlet.http.HttpSession session, Authentications authentications)
Store authentications in current session.
-
-
-
Field Detail
-
LOGGER
protected static final WebappLogger LOGGER
-
CAM_AUTH_SESSION_KEY
protected static final java.lang.String CAM_AUTH_SESSION_KEY
- See Also:
- Constant Field Values
-
APPS
public static final java.lang.String[] APPS
-
APP_WELCOME
public static final java.lang.String APP_WELCOME
- See Also:
- Constant Field Values
-
-
Method Detail
-
createAuthentication
public static UserAuthentication createAuthentication(java.lang.String engineName, java.lang.String username)
-
createAuthentication
public static UserAuthentication createAuthentication(ProcessEngine processEngine, java.lang.String username)
-
createAuthentication
public static UserAuthentication createAuthentication(java.lang.String engineName, java.lang.String username, java.util.List<java.lang.String> groupIds, java.util.List<java.lang.String> tenantIds)
-
createAuthentication
public static UserAuthentication createAuthentication(ProcessEngine processEngine, java.lang.String username, java.util.List<java.lang.String> groupIds, java.util.List<java.lang.String> tenantIds)
Creates and returns a
UserAuthentication
with the following information:userId
processEngineName
groupIds
tenantIds
authorizedApps
-
getTenantsOfUser
public static java.util.List<java.lang.String> getTenantsOfUser(ProcessEngine engine, java.lang.String userId)
-
getGroupsOfUser
public static java.util.List<java.lang.String> getGroupsOfUser(ProcessEngine engine, java.lang.String userId)
-
isAuthorizedForApp
protected static boolean isAuthorizedForApp(AuthorizationService authorizationService, java.lang.String username, java.util.List<java.lang.String> groupIds, java.lang.String application)
-
getAuthsFromSession
public static Authentications getAuthsFromSession(javax.servlet.http.HttpSession session)
Allows obtaining anAuthentications
object from theHttpSession
. If no such object exists in the session, a new instance is created and returned.- Parameters:
session
- theHttpSession
instance from which to retrieve theAuthentications
.
-
revalidateSession
public static void revalidateSession(javax.servlet.http.HttpServletRequest request, UserAuthentication authentication)
Invalidates the oldHttpSession
of the current request and creates a new one. Additionally, transfers the existing authentications to the new session and adds a new one.- Parameters:
request
- theHttpServletRequest
instance from which the session is obtained and a newHttpSession
created.authentication
- the newAuthentication
instance that is created through user login. It is added to the existing authentications.
-
updateSession
public static void updateSession(javax.servlet.http.HttpSession session, Authentications authentications)
Store authentications in current session.
-
updateCache
public static void updateCache(Authentications authentications, javax.servlet.http.HttpSession session, long cacheTimeToLive)
Update/remove authentications when cache validation time (= x + TTL) is due.
The following information is updated:
groupIds
tenantIds
authorizedApps
An authorization is only removed if the user doesn't exist anymore (user was deleted).
-
getSessionMutex
protected static java.lang.Object getSessionMutex(javax.servlet.http.HttpSession session)
Returns the session mutex to synchronize on.
Avoids updating the auth cache by multiple HTTP requests in parallel.
-
-