Package org.camunda.bpm.identity.impl.ldap

Class LdapIdentityProviderSession

java.lang.Object

org.camunda.bpm.identity.impl.ldap.LdapIdentityProviderSession

All Implemented Interfaces:

ReadOnlyIdentityProvider, Session

public class LdapIdentityProviderSession
extends Object
implements ReadOnlyIdentityProvider

LDAP ReadOnlyIdentityProvider.

Author:

Daniel Meyer

Field Summary

Fields

Modifier and Type	Field	Description
protected LdapContext	initialContext
protected LdapConfiguration	ldapConfiguration

Constructor Summary

Constructors

Constructor	Description
LdapIdentityProviderSession(LdapConfiguration ldapConfiguration)

Method Summary

Modifier and Type	Method	Description
protected void	addFilter(String attributeName, String attributeValue, StringWriter writer)
boolean	checkPassword(String userId, String password)
void	close()
protected void	closeLdapCtx(LdapContext context)
protected String	composeDn(String... parts)
GroupQuery	createGroupQuery()
GroupQuery	createGroupQuery(CommandContext commandContext)
NativeUserQuery	createNativeUserQuery()	Creates a NativeUserQuery that allows to select users with native queries.
TenantQuery	createTenantQuery()
TenantQuery	createTenantQuery(CommandContext commandContext)
UserQuery	createUserQuery()
UserQueryImpl	createUserQuery(CommandContext commandContext)
protected void	ensureContextInitialized()
protected String	escapeLDAPSearchFilter(String filter)
Group	findGroupById(String groupId)
List<Group>	findGroupByQueryCriteria(LdapGroupQuery query)
long	findGroupCountByQueryCriteria(LdapGroupQuery ldapGroupQuery)
Tenant	findTenantById(String id)
User	findUserById(String userId)
List<User>	findUserByQueryCriteria(LdapUserQueryImpl query)
long	findUserCountByQueryCriteria(LdapUserQueryImpl query)
protected List<User>	findUsersByGroupId(LdapUserQueryImpl query)
List<User>	findUsersWithoutGroupId(LdapUserQueryImpl query, String userBaseDn, boolean ignorePagination)
void	flush()
protected String	getDnForGroup(String groupId)
protected String	getDnForUser(String userId)
protected String	getGroupSearchFilter(LdapGroupQuery query)
protected Integer	getPageSize()	Return the pageSize.
protected List<Control>	getSortingControls(AbstractQuery<?,?> query, StringBuilder resultLogger)	Return the list of Controls requested in the query.
protected String	getStringAttributeValue(String attrName, Attributes attributes)
protected String	getUserSearchFilter(LdapUserQueryImpl query)
protected void	initializeControls(AbstractQuery<?,?> query, StringBuilder resultLogger)	Initializes paged results and sort controls.
protected boolean	isAuthenticatedUser(UserEntity user)
protected boolean	isAuthorized(Permission permission, Resource resource, String resourceId)
protected boolean	isNextPageDetected(StringBuilder resultLogger)	Check in the context if we reach the last page on the query
protected boolean	isPaginationSupported()
protected InitialLdapContext	openContext(String userDn, String password)
protected GroupEntity	transformGroup(SearchResult result)
protected LdapUserEntity	transformUser(SearchResult result)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

ldapConfiguration

protected LdapConfiguration ldapConfiguration

initialContext

protected LdapContext initialContext

Constructor Detail

LdapIdentityProviderSession

public LdapIdentityProviderSession(LdapConfiguration ldapConfiguration)

Method Detail

flush

public void flush()

Specified by:

flush in interface Session

close

public void close()

Specified by:

close in interface Session

closeLdapCtx

protected void closeLdapCtx(LdapContext context)

openContext

protected InitialLdapContext openContext(String userDn,
                                         String password)

ensureContextInitialized

protected void ensureContextInitialized()

findUserById

public User findUserById(String userId)

Specified by:

findUserById in interface ReadOnlyIdentityProvider

Returns:

a User object for the given user id or null if no such user exists.

createUserQuery

public UserQuery createUserQuery()

Specified by:

createUserQuery in interface ReadOnlyIdentityProvider

Returns:

a UserQuery object which can be used for querying for users.

createUserQuery

public UserQueryImpl createUserQuery(CommandContext commandContext)

Specified by:

createUserQuery in interface ReadOnlyIdentityProvider

Returns:

a UserQuery object which can be used in the current command context

createNativeUserQuery

public NativeUserQuery createNativeUserQuery()

Description copied from interface: ReadOnlyIdentityProvider

Creates a NativeUserQuery that allows to select users with native queries.

Specified by:

createNativeUserQuery in interface ReadOnlyIdentityProvider

Returns:

NativeUserQuery

findUserCountByQueryCriteria

public long findUserCountByQueryCriteria(LdapUserQueryImpl query)

findUserByQueryCriteria

public List<User> findUserByQueryCriteria(LdapUserQueryImpl query)

findUsersByGroupId

protected List<User> findUsersByGroupId(LdapUserQueryImpl query)

findUsersWithoutGroupId

public List<User> findUsersWithoutGroupId(LdapUserQueryImpl query,
                                          String userBaseDn,
                                          boolean ignorePagination)

checkPassword

public boolean checkPassword(String userId,
                             String password)

Specified by:

checkPassword in interface ReadOnlyIdentityProvider

Returns:

'true' if the password matches the

getUserSearchFilter

protected String getUserSearchFilter(LdapUserQueryImpl query)

findGroupById

public Group findGroupById(String groupId)

Specified by:

findGroupById in interface ReadOnlyIdentityProvider

Returns:

a Group object for the given group id or null if no such group exists.

createGroupQuery

public GroupQuery createGroupQuery()

Specified by:

createGroupQuery in interface ReadOnlyIdentityProvider

Returns:

a GroupQuery object which can be used for querying for groups.

createGroupQuery

public GroupQuery createGroupQuery(CommandContext commandContext)

Specified by:

createGroupQuery in interface ReadOnlyIdentityProvider

Returns:

a GroupQuery object which can be used for querying for groups and can be reused in the current command context.

findGroupCountByQueryCriteria

public long findGroupCountByQueryCriteria(LdapGroupQuery ldapGroupQuery)

findGroupByQueryCriteria

public List<Group> findGroupByQueryCriteria(LdapGroupQuery query)

getGroupSearchFilter

protected String getGroupSearchFilter(LdapGroupQuery query)

getDnForUser

protected String getDnForUser(String userId)

getDnForGroup

protected String getDnForGroup(String groupId)

getStringAttributeValue

protected String getStringAttributeValue(String attrName,
                                         Attributes attributes)
                                  throws NamingException

Throws:

NamingException

addFilter

protected void addFilter(String attributeName,
                         String attributeValue,
                         StringWriter writer)

transformUser

protected LdapUserEntity transformUser(SearchResult result)
                                throws NamingException

Throws:

NamingException

transformGroup

protected GroupEntity transformGroup(SearchResult result)
                              throws NamingException

Throws:

NamingException

getSortingControls

protected List<Control> getSortingControls(AbstractQuery<?,?> query,
                                           StringBuilder resultLogger)

Return the list of Controls requested in the query. Query may be run on USERS or on GROUP

Parameters:

query - query asks, contains the order by requested

Returns:

list of control to send to LDAP

composeDn

protected String composeDn(String... parts)

isAuthenticatedUser

protected boolean isAuthenticatedUser(UserEntity user)

Returns:

true if the passed-in user is currently authenticated

isAuthorized

protected boolean isAuthorized(Permission permission,
                               Resource resource,
                               String resourceId)

escapeLDAPSearchFilter

protected final String escapeLDAPSearchFilter(String filter)

initializeControls

protected void initializeControls(AbstractQuery<?,?> query,
                                  StringBuilder resultLogger)
                           throws NamingException

Initializes paged results and sort controls. Might not be supported by all LDAP implementations.

Throws:

NamingException

isNextPageDetected

protected boolean isNextPageDetected(StringBuilder resultLogger)

Check in the context if we reach the last page on the query

Parameters:

resultLogger - Logger to send information

Returns:

new page detected

isPaginationSupported

protected boolean isPaginationSupported()

getPageSize

protected Integer getPageSize()

Return the pageSize. Returns null if pagination is disabled.

Returns:

the pageSize

createTenantQuery

public TenantQuery createTenantQuery()

Specified by:

createTenantQuery in interface ReadOnlyIdentityProvider

Returns:

a TenantQuery object which can be used for querying for tenants.

createTenantQuery

public TenantQuery createTenantQuery(CommandContext commandContext)

Specified by:

createTenantQuery in interface ReadOnlyIdentityProvider

Returns:

a TenantQuery object which can be used for querying for tenants and can be reused in the current command context.

findTenantById

public Tenant findTenantById(String id)

Specified by:

findTenantById in interface ReadOnlyIdentityProvider

Returns:

a Tenant object for the given id or null if no such tenant exists.