org.apache.qpid.server.security.auth.manager

Class SimpleLDAPAuthenticationManagerImpl

java.lang.Object

org.apache.qpid.server.model.AbstractConfiguredObject<T>

org.apache.qpid.server.security.auth.manager.AbstractAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

org.apache.qpid.server.security.auth.manager.SimpleLDAPAuthenticationManagerImpl

All Implemented Interfaces:

AuthenticationProvider<SimpleLDAPAuthenticationManagerImpl>, ConfiguredObject<SimpleLDAPAuthenticationManagerImpl>, ManagedInterface, PreferencesSupportingAuthenticationProvider, SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>, UsernamePasswordAuthenticationProvider<SimpleLDAPAuthenticationManagerImpl>

public class SimpleLDAPAuthenticationManagerImpl
extends AbstractAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>
implements SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

Nested Class Summary

Nested classes/interfaces inherited from class org.apache.qpid.server.model.AbstractConfiguredObject

AbstractConfiguredObject.CallableWithArgument<V,A>, AbstractConfiguredObject.ChainedListenableFuture<V>, AbstractConfiguredObject.ChainedSettableFuture<V>, AbstractConfiguredObject.DuplicateIdException, AbstractConfiguredObject.DuplicateNameException

Field Summary

Fields inherited from class org.apache.qpid.server.model.AbstractConfiguredObject

SECURED_STRING_VALUE

Fields inherited from interface org.apache.qpid.server.security.auth.manager.SimpleLDAPAuthenticationManager

DEFAULT_LDAP_CONTEXT_FACTORY, LDAP_CONTEXT_FACTORY, PROVIDER_AUTH_URL, PROVIDER_TYPE, PROVIDER_URL, SEARCH_CONTEXT, SEARCH_PASSWORD, SEARCH_USERNAME, TRUST_STORE

Fields inherited from interface org.apache.qpid.server.model.ConfiguredObject

CONTEXT, CREATED_BY, CREATED_TIME, DESCRIPTION, DESIRED_STATE, DURABLE, ID, LAST_UPDATED_BY, LAST_UPDATED_TIME, LIFETIME_POLICY, NAME, OVER_SIZED_ATTRIBUTE_ALTERNATIVE_TEXT, STATE, TYPE

Constructor Summary

Constructors

Modifier	Constructor and Description
protected	SimpleLDAPAuthenticationManagerImpl(Map<String,Object> attributes, Broker broker)

Method Summary

Modifier and Type	Method and Description
AuthenticationResult	authenticate(SaslServer server, byte[] response) Authenticates a user using SASL negotiation.
AuthenticationResult	authenticate(String username, String password) Authenticates a user using their username and password.
SaslServer	createSaslServer(String mechanism, String localFQDN, Principal externalPrincipal) Creates a SASL server for the specified mechanism name for the given fully qualified domain name.
String	getLdapContextFactory()
List<String>	getMechanisms() Gets the SASL mechanisms known to this manager.
String	getProviderAuthUrl()
String	getProviderUrl()
String	getSearchContext()
String	getSearchFilter()
String	getSearchPassword()
String	getSearchUsername()
TrustStore	getTrustStore()
boolean	isBindWithoutSearch()
protected void	onOpen()
String	toString()
protected void	validateChange(ConfiguredObject<?> proxyForValidation, Set<String> changedAttributes)
protected void	validateOnCreate()

Methods inherited from class org.apache.qpid.server.security.auth.manager.AbstractAuthenticationManager

activate, addChildAsync, doDelete, getBroker, getDisabledMechanisms, getPreferencesProvider, getSecureOnlyMechanisms, getSubjectCreator, getVirtualHostPortBindings, onValidate, recoverUser, setPreferencesProvider, startQuiesced

Methods inherited from class org.apache.qpid.server.model.AbstractConfiguredObject

addChangeListener, applyToChildren, asObjectRecord, attainState, attributeSet, authoriseCreate, authoriseCreateChild, authoriseDelete, authoriseSetAttributes, beforeClose, changeAttribute, changeAttributes, childAdded, childRemoved, close, closeAsync, closeChildren, create, createAsync, createChild, createChildAsync, decryptSecrets, delete, deleteAsync, deleted, doAfter, doAfter, doAfter, doAfter, doAfter, doAfter, doAfterAlways, doAfterAlways, doCreation, doOnConfigThread, doOpening, doResolution, doSync, doSync, doValidation, findConfiguredObject, forceUpdateAllSecureAttributes, getActualAttributes, getAttainedChildById, getAttainedChildByName, getAttribute, getAttributeNames, getCategoryClass, getChildById, getChildByName, getChildExecutor, getChildren, getContext, getContextKeys, getContextValue, getContextValue, getCreatedBy, getCreatedTime, getDescription, getDesiredState, getId, getLastOpenedTime, getLastUpdatedBy, getLastUpdatedTime, getLifetimePolicy, getModel, getName, getObjectFactory, getParent, getSecurityManager, getState, getStatistics, getTaskExecutor, getType, getTypeClass, handleExceptionOnOpen, isDurable, managesChildStorage, notifyStateChanged, onClose, onCreate, onExceptionInOpen, onResolve, open, openAsync, parentsMap, postResolve, postResolveChildren, registerWithParents, removeChangeListener, rethrowRuntimeExceptionsOnOpen, runTask, setAttribute, setAttributes, setAttributesAsync, setEncrypter, setState, start, startAsync, stop

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Methods inherited from interface org.apache.qpid.server.model.AuthenticationProvider

getDisabledMechanisms, getPreferencesProvider, getSecureOnlyMechanisms, getSubjectCreator, getVirtualHostPortBindings, recoverUser, setPreferencesProvider

Methods inherited from interface org.apache.qpid.server.model.ConfiguredObject

addChangeListener, asObjectRecord, close, closeAsync, createChild, createChildAsync, decryptSecrets, delete, deleteAsync, findConfiguredObject, getActualAttributes, getAttainedChildById, getAttainedChildByName, getAttribute, getAttributeNames, getCategoryClass, getChildById, getChildByName, getChildExecutor, getChildren, getContext, getContextKeys, getContextValue, getContextValue, getCreatedBy, getCreatedTime, getDescription, getDesiredState, getId, getLastOpenedTime, getLastUpdatedBy, getLastUpdatedTime, getLifetimePolicy, getModel, getName, getObjectFactory, getParent, getState, getStatistics, getTaskExecutor, getType, getTypeClass, isDurable, managesChildStorage, open, openAsync, removeChangeListener, setAttribute, setAttributes, setAttributesAsync

Methods inherited from interface org.apache.qpid.server.model.PreferencesSupportingAuthenticationProvider

getPreferencesProvider, setPreferencesProvider

Constructor Detail

SimpleLDAPAuthenticationManagerImpl

protected SimpleLDAPAuthenticationManagerImpl(Map<String,Object> attributes,
                                              Broker broker)

Method Detail

validateOnCreate

protected void validateOnCreate()

Overrides:

validateOnCreate in class AbstractConfiguredObject<SimpleLDAPAuthenticationManagerImpl>

validateChange

protected void validateChange(ConfiguredObject<?> proxyForValidation,
                              Set<String> changedAttributes)

Overrides:

validateChange in class AbstractConfiguredObject<SimpleLDAPAuthenticationManagerImpl>

onOpen

protected void onOpen()

Overrides:

onOpen in class AbstractAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getProviderUrl

public String getProviderUrl()

Specified by:

getProviderUrl in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getProviderAuthUrl

public String getProviderAuthUrl()

Specified by:

getProviderAuthUrl in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getSearchContext

public String getSearchContext()

Specified by:

getSearchContext in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getSearchFilter

public String getSearchFilter()

Specified by:

getSearchFilter in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getLdapContextFactory

public String getLdapContextFactory()

Specified by:

getLdapContextFactory in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getTrustStore

public TrustStore getTrustStore()

Specified by:

getTrustStore in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getSearchUsername

public String getSearchUsername()

Specified by:

getSearchUsername in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getSearchPassword

public String getSearchPassword()

Specified by:

getSearchPassword in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>

getMechanisms

public List<String> getMechanisms()

Description copied from interface: AuthenticationProvider

Gets the SASL mechanisms known to this manager.

Specified by:

getMechanisms in interface AuthenticationProvider<SimpleLDAPAuthenticationManagerImpl>

Returns:

SASL mechanism names, space separated.

createSaslServer

public SaslServer createSaslServer(String mechanism,
                                   String localFQDN,
                                   Principal externalPrincipal)
                            throws SaslException

Description copied from interface: AuthenticationProvider

Creates a SASL server for the specified mechanism name for the given fully qualified domain name.

Specified by:

createSaslServer in interface AuthenticationProvider<SimpleLDAPAuthenticationManagerImpl>

Parameters:

mechanism - mechanism name

localFQDN - domain name

externalPrincipal - externally authenticated Principal

Returns:

SASL server

Throws:

SaslException

authenticate

public AuthenticationResult authenticate(SaslServer server,
                                         byte[] response)

Description copied from interface: AuthenticationProvider

Authenticates a user using SASL negotiation.

Specified by:

authenticate in interface AuthenticationProvider<SimpleLDAPAuthenticationManagerImpl>

Parameters:

server - SASL server

response - SASL response to process

Returns:

authentication result

authenticate

public AuthenticationResult authenticate(String username,
                                         String password)

Description copied from interface: UsernamePasswordAuthenticationProvider

Authenticates a user using their username and password.

Specified by:

authenticate in interface UsernamePasswordAuthenticationProvider<SimpleLDAPAuthenticationManagerImpl>

Parameters:

username - username

password - password

Returns:

authentication result

toString

public String toString()

Overrides:

toString in class AbstractConfiguredObject<SimpleLDAPAuthenticationManagerImpl>

isBindWithoutSearch

public boolean isBindWithoutSearch()

Specified by:

isBindWithoutSearch in interface SimpleLDAPAuthenticationManager<SimpleLDAPAuthenticationManagerImpl>