org.bonitasoft.engine.core.login

Class SecuredLoginServiceImpl

java.lang.Object

org.bonitasoft.engine.core.login.SecuredLoginServiceImpl

All Implemented Interfaces:

LoginService

public class SecuredLoginServiceImpl
extends Object
implements LoginService

Author:

Matthieu Chaffotte, Anthony Birembaut

Constructor Summary

Constructors

Constructor and Description
SecuredLoginServiceImpl(GenericAuthenticationService authenticationService, SessionService sessionService, SessionAccessor sessionAccessor, IdentityService identityService, TechnicalLoggerService tenantTechnicalLoggerService)

Method Summary

Modifier and Type	Method and Description
protected void	authenticationFailed() Processes the failed authentication behaviour.
protected void	debugLog(String message)
protected TechnicalUser	getTechnicalUser(long tenantId)
boolean	isValid(long sessionId)
SSession	login(Map<String,Serializable> credentials) generic login approach to handle outer authentication service like CAS or OAuth or whatever...
void	logout(long sessionId)
protected String	retrievePasswordFromCredentials(Map<String,Serializable> credentials) retrieve password from credentials assuming it is stored under the AuthenticationConstants.BASIC_PASSWORD key
protected String	retrieveUsernameFromCredentials(Map<String,Serializable> credentials) retrieve username from credentials assuming it is stored under the AuthenticationConstants.BASIC_USERNAME key

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SecuredLoginServiceImpl

public SecuredLoginServiceImpl(GenericAuthenticationService authenticationService,
                               SessionService sessionService,
                               SessionAccessor sessionAccessor,
                               IdentityService identityService,
                               TechnicalLoggerService tenantTechnicalLoggerService)

Method Detail

login

public SSession login(Map<String,Serializable> credentials)
               throws SLoginException,
                      SUserNotFoundException

Description copied from interface: LoginService

generic login approach to handle outer authentication service like CAS or OAuth or whatever...

Specified by:

login in interface LoginService

Parameters:

credentials - the parameters to use to login

Returns:

the session created if login succeeds

Throws:

SLoginException - if login fails

SUserNotFoundException - if the user does not exist in the database

authenticationFailed

protected void authenticationFailed()
                             throws SLoginException

Processes the failed authentication behaviour.

Throws:

SLoginException - the appropriate exception

retrievePasswordFromCredentials

protected String retrievePasswordFromCredentials(Map<String,Serializable> credentials)
                                          throws SLoginException

retrieve password from credentials assuming it is stored under the AuthenticationConstants.BASIC_PASSWORD key

Parameters:

credentials - the credentials to check

Returns:

the password

Throws:

SLoginException - if password is absent or if credentials is null

retrieveUsernameFromCredentials

protected String retrieveUsernameFromCredentials(Map<String,Serializable> credentials)
                                          throws SLoginException

retrieve username from credentials assuming it is stored under the AuthenticationConstants.BASIC_USERNAME key

Parameters:

credentials - the credentials to check

Returns:

the username

Throws:

SLoginException - if username is absent, blank or if credentials is null

logout

public void logout(long sessionId)
            throws SSessionNotFoundException

Specified by:

logout in interface LoginService

Throws:

SSessionNotFoundException

isValid

public boolean isValid(long sessionId)

Specified by:

isValid in interface LoginService

getTechnicalUser

protected TechnicalUser getTechnicalUser(long tenantId)
                                  throws SLoginException

Throws:

SLoginException

debugLog

protected void debugLog(String message)