Package org.apache.syncope.core.spring.security

Class InstrumentedAuthDataAccessor

java.lang.Object

org.apache.syncope.core.spring.security.AuthDataAccessor

org.apache.syncope.core.spring.security.InstrumentedAuthDataAccessor

public class InstrumentedAuthDataAccessor
extends AuthDataAccessor

Nested Class Summary

Nested classes/interfaces inherited from class org.apache.syncope.core.spring.security.AuthDataAccessor

AuthDataAccessor.JWTAuthResult, AuthDataAccessor.UsernamePasswordAuthResult

Field Summary

Fields

Modifier and Type	Field	Description
protected static final Function<String,String>	DISABLED_DESC
protected static final String	DISABLED_TYPE
protected static final Function<String,String>	FAILURE_DESC
protected static final String	FAILURE_TYPE
protected static final Function<String,String>	JWT
protected final io.micrometer.core.instrument.MeterRegistry	meterRegistry
protected static final Function<String,String>	MFA_ENROLL_DESC
protected static final String	MFA_ENROLL_TYPE
protected static final Function<String,String>	MUST_CHANGE_PASSWORD_DESC
protected static final String	MUST_CHANGE_PASSWORD_TYPE
protected static final Function<String,String>	NOT_FOUND_DESC
protected static final String	NOT_FOUND_TYPE
protected static final Function<String,String>	SUCCESS_DESC
protected static final String	SUCCESS_TYPE
protected static final Function<String,String>	USERNAME

Fields inherited from class org.apache.syncope.core.spring.security.AuthDataAccessor

accessTokenDAO, ANONYMOUS_AUTHORITIES, ANYOBJECT_MANAGER_ENTITLEMENTS, anySearchDAO, auditManager, BASE_MANAGER_ENTITLEMENTS, confParamOps, connectorManager, credentialChecker, delegationDAO, encryptorManager, GROUP_MANAGER_ENTITLEMENTS, groupDAO, LOG, mappingManager, MFA_ENROLL_AUTHORITIES, MUST_CHANGE_PASSWORD_AUTHORITIES, realmSearchDAO, resourceDAO, roleDAO, securityProperties, totpCodeVerifier, USER_MANAGER_ENTITLEMENTS, userDAO

Constructor Summary

Constructors

Constructor

Description

InstrumentedAuthDataAccessor(SecurityProperties securityProperties, EncryptorManager encryptorManager, dev.samstevens.totp.code.CodeVerifier totpCodeVerifier, RealmSearchDAO realmSearchDAO, UserDAO userDAO, GroupDAO groupDAO, AnySearchDAO anySearchDAO, AccessTokenDAO accessTokenDAO, ConfParamOps confParamOps, RoleDAO roleDAO, DelegationDAO delegationDAO, ExternalResourceDAO resourceDAO, ConnectorManager connectorManager, AuditManager auditManager, MappingManager mappingManager, DefaultCredentialChecker credentialChecker, List<JWTSSOProvider> jwtSSOProviders, io.micrometer.core.instrument.MeterRegistry meterRegistry)

Method Summary

Modifier and Type	Method	Description
AuthDataAccessor.UsernamePasswordAuthResult	authenticate(Optional<Domain> domain, Authentication authentication)	Attempts to authenticate the given credentials against internal storage and pass-through resources (if configured): the first succeeding causes global success.
AuthDataAccessor.JWTAuthResult	authenticate(JWTAuthentication authentication)

Methods inherited from class org.apache.syncope.core.spring.security.AuthDataAccessor

audit, authenticateAdmin, authenticateAnonymous, authenticateUser, buildAuthorities, doAuthenticateAdmin, getAdminAuthorities, getAuthorities, getDelegatedAuthorities, getDelegationKey, getJWTSSOProvider, getPassthroughResources, getUserAuthorities, populateEntForRealms, removeExpired

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

SUCCESS_TYPE

protected static final String SUCCESS_TYPE

See Also:

• Constant Field Values

FAILURE_TYPE

protected static final String FAILURE_TYPE

See Also:

• Constant Field Values

MUST_CHANGE_PASSWORD_TYPE

protected static final String MUST_CHANGE_PASSWORD_TYPE

See Also:

• Constant Field Values

MFA_ENROLL_TYPE

protected static final String MFA_ENROLL_TYPE

See Also:

• Constant Field Values

NOT_FOUND_TYPE

protected static final String NOT_FOUND_TYPE

See Also:

• Constant Field Values

DISABLED_TYPE

protected static final String DISABLED_TYPE

See Also:

• Constant Field Values

USERNAME

protected static final Function<String,String> USERNAME

JWT

protected static final Function<String,String> JWT

SUCCESS_DESC

protected static final Function<String,String> SUCCESS_DESC

FAILURE_DESC

protected static final Function<String,String> FAILURE_DESC

MUST_CHANGE_PASSWORD_DESC

protected static final Function<String,String> MUST_CHANGE_PASSWORD_DESC

MFA_ENROLL_DESC

protected static final Function<String,String> MFA_ENROLL_DESC

NOT_FOUND_DESC

protected static final Function<String,String> NOT_FOUND_DESC

DISABLED_DESC

protected static final Function<String,String> DISABLED_DESC

meterRegistry

protected final io.micrometer.core.instrument.MeterRegistry meterRegistry

Constructor Details

InstrumentedAuthDataAccessor

public InstrumentedAuthDataAccessor(SecurityProperties securityProperties,
 EncryptorManager encryptorManager,
 dev.samstevens.totp.code.CodeVerifier totpCodeVerifier,
 RealmSearchDAO realmSearchDAO,
 UserDAO userDAO,
 GroupDAO groupDAO,
 AnySearchDAO anySearchDAO,
 AccessTokenDAO accessTokenDAO,
 ConfParamOps confParamOps,
 RoleDAO roleDAO,
 DelegationDAO delegationDAO,
 ExternalResourceDAO resourceDAO,
 ConnectorManager connectorManager,
 AuditManager auditManager,
 MappingManager mappingManager,
 DefaultCredentialChecker credentialChecker,
 List<JWTSSOProvider> jwtSSOProviders,
 io.micrometer.core.instrument.MeterRegistry meterRegistry)

Method Details

authenticate

public AuthDataAccessor.UsernamePasswordAuthResult authenticate(Optional<Domain> domain,
 Authentication authentication)

Description copied from class: AuthDataAccessor

Attempts to authenticate the given credentials against internal storage and pass-through resources (if configured): the first succeeding causes global success.

Overrides:

authenticate in class AuthDataAccessor

Parameters:

domain - domain

authentication - given credentials

Returns:

authentication result

authenticate

public AuthDataAccessor.JWTAuthResult authenticate(JWTAuthentication authentication)

Overrides:

authenticate in class AuthDataAccessor