org.killbill.billing.security.api

Interface SecurityApi

All Superinterfaces:

KillbillApi

public interface SecurityApi
extends KillbillApi

Method Summary

Methods

Modifier and Type	Method and Description
void	addRoleDefinition(String role, List<String> permissions, CallContext context) Add a role definition in the Shiro store (JDBCRealm)
void	addUserRoles(String username, String clearPassword, List<String> roles, CallContext context) Add a user with roles in the Shiro store (JDBCRealm)
void	checkCurrentUserPermissions(List<Permission> permissions, Logical logical, TenantContext context) Check the current user has the set of permissions.
Set<Permission>	getCurrentUserPermissions(TenantContext context) Return the set of permissions for the currently logged-in user.
List<String>	getRoleDefinition(String role, TenantContext tenantContext) Retrieves the list of permissions associated to that role in the Shiro store (JDBCRealm)
List<String>	getUserRoles(String username, TenantContext tenantContext) Retrieves the roles associated to a user in the Shiro store (JDBCRealm)
void	invalidateUser(String username, CallContext context) Invalidate a user
boolean	isSubjectAuthenticated()
void	login(Object principal, Object credentials) Perform a login attempt.
void	logout() Log out the current user and invalidate and/or remove any associated entities (e.g.
void	updateUserPassword(String username, String clearPassword, CallContext context) Update password for the user
void	updateUserRoles(String username, List<String> roles, CallContext context) Update the roles associated with the user (only the specified roles will be in effect)

Method Detail

login

void login(Object principal,
         Object credentials)

Perform a login attempt.

Parameters:

principal - account identity (e.g. username)

credentials - account credentials (e.g. password)

logout

void logout()

Log out the current user and invalidate and/or remove any associated entities (e.g. session).

isSubjectAuthenticated

boolean isSubjectAuthenticated()

Returns:

true if the subscjet is authenticated

getCurrentUserPermissions

Set<Permission> getCurrentUserPermissions(TenantContext context)

Return the set of permissions for the currently logged-in user.

Parameters:

context - tenant context

Returns:

the set of permissions for the current user

checkCurrentUserPermissions

void checkCurrentUserPermissions(List<Permission> permissions,
                               Logical logical,
                               TenantContext context)
                                 throws SecurityApiException

Check the current user has the set of permissions.

Parameters:

permissions - set of permissions to check

logical - rule to use for multiple permissions

context - tenant context

Throws:

SecurityException

SecurityApiException

addUserRoles

void addUserRoles(String username,
                String clearPassword,
                List<String> roles,
                CallContext context)
                  throws SecurityApiException

Add a user with roles in the Shiro store (JDBCRealm)

Parameters:

username - the username

clearPassword - the password (in clear)

roles - the list of (existing) roles

context - context (does not include tenant nor account info)

Throws:

SecurityApiException

updateUserPassword

void updateUserPassword(String username,
                      String clearPassword,
                      CallContext context)
                        throws SecurityApiException

Update password for the user

Parameters:

username - the username

clearPassword - the password (in clear)

context - context (does not include tenant nor account info)

Throws:

SecurityApiException

updateUserRoles

void updateUserRoles(String username,
                   List<String> roles,
                   CallContext context)
                     throws SecurityApiException

Update the roles associated with the user (only the specified roles will be in effect)

Parameters:

username - the username

roles - the new roles

context - context (does not include tenant nor account info)

Throws:

SecurityApiException

invalidateUser

void invalidateUser(String username,
                  CallContext context)
                    throws SecurityApiException

Invalidate a user

Parameters:

username - the username

context - context (does not include tenant nor account info)

Throws:

SecurityApiException

getUserRoles

List<String> getUserRoles(String username,
                        TenantContext tenantContext)

Retrieves the roles associated to a user in the Shiro store (JDBCRealm)

Parameters:

username - the username

tenantContext - dummy context

Returns:

addRoleDefinition

void addRoleDefinition(String role,
                     List<String> permissions,
                     CallContext context)
                       throws SecurityApiException

Add a role definition in the Shiro store (JDBCRealm)

Parameters:

role - the role name

permissions - the list of permissions

context - context (does not include tenant nor account info)

Throws:

SecurityApiException

See Also:

Permission

getRoleDefinition

List<String> getRoleDefinition(String role,
                             TenantContext tenantContext)

Retrieves the list of permissions associated to that role in the Shiro store (JDBCRealm)

Parameters:

role - the role name

tenantContext - dummy context

Returns: