public interface SecurityManager
SecurityManager
can be obtained by the SecurityFactory
. The properties
represent the service specific properties that will be used to initialize the
SecurityManager
instance.Modifier and Type | Field and Description |
---|---|
static String |
SECURITY_MANAGER_CLASS_PROPERTY_KEY
The property key identifying the security manager in a properties file/object
|
Modifier and Type | Method and Description |
---|---|
Authentication |
authenticate(UserDetails userDetails)
Attempts to authenticate the passed user represented by
UserDetails , returning a
fully populated UserDetails object (including granted authorities) if
successful. |
void |
close()
Closes any excess resource kept by the security manager; e.g. connection to a data-source.
|
DirectoryManager |
createDirectoryManager(UserDetails userDetails)
Attempts to authenticate the passed user represented by
UserDetails , granting access
only for users that are allowed to manage the directory. |
void |
init(Properties properties)
Initializes this security manager instance with implementation specific properties, and any
resource creation/access needed.
|
static final String SECURITY_MANAGER_CLASS_PROPERTY_KEY
void init(Properties properties) throws SecurityException
properties
- properties to use configure this instance.SecurityException
Authentication authenticate(UserDetails userDetails) throws AuthenticationException
UserDetails
, returning a
fully populated UserDetails
object (including granted authorities) if
successful.userDetails
- the user request objectAuthenticationException
- if authentication failsDirectoryManager createDirectoryManager(UserDetails userDetails) throws AuthenticationException, AccessDeniedException
UserDetails
, granting access
only for users that are allowed to manage the directory.
Creates a directory manager for managing of users and roles, granting access only for users that are allowed to manage, but may be restrictive (to read-only) based on their privileges.
If the directory is to be managed by an external tool, implementors may wish to throw
DirectoryAccessDeniedException
to deny access to the API (e.g. from UI).
userDetails
- the user request objectAuthenticationException
- if authentication fails for the specified userAccessDeniedException
- if not granted sufficient access required to manage role
detailsDirectoryAccessDeniedException
- if the directory should not be managed by API.void close()
Copyright © GigaSpaces.