public class DefaultIdentityService extends Object implements IdentityService
UserIdentity.Scope. If there are roles
refs present, then associate will wrap the UserIdentity with one
that uses the role references in the
UserIdentity.isUserInRole(String, org.eclipse.jetty.server.UserIdentity.Scope)
implementation. All other operations are effectively noops.NO_ROLES| Constructor and Description |
|---|
DefaultIdentityService() |
| Modifier and Type | Method and Description |
|---|---|
Object |
associate(UserIdentity user)
If there are roles refs present in the scope, then wrap the UserIdentity
with one that uses the role references in the
UserIdentity.isUserInRole(String, org.eclipse.jetty.server.UserIdentity.Scope) |
void |
disassociate(Object previous)
Disassociate the user identity from the current thread
and restore previous identity.
|
UserIdentity |
getSystemUserIdentity() |
RunAsToken |
newRunAsToken(String runAsName)
Create a new RunAsToken from a runAsName (normally a role).
|
UserIdentity |
newUserIdentity(Subject subject,
Principal userPrincipal,
String[] roles)
Create a new UserIdentity for use with this identity service.
|
Object |
setRunAs(UserIdentity user,
RunAsToken token)
Associate a runas Token with the current user and thread.
|
void |
unsetRunAs(Object lastToken)
Disassociate the current runAsToken from the thread
and reassociate the previous token.
|
public Object associate(UserIdentity user)
UserIdentity.isUserInRole(String, org.eclipse.jetty.server.UserIdentity.Scope)associate in interface IdentityServiceuser - The current user or null for no user to associated.public void disassociate(Object previous)
IdentityServicedisassociate in interface IdentityServiceprevious - The opaque object returned from a call to IdentityService.associate(UserIdentity)public Object setRunAs(UserIdentity user, RunAsToken token)
IdentityServicesetRunAs in interface IdentityServiceuser - The UserIdentitytoken - The runAsToken to associate.public void unsetRunAs(Object lastToken)
IdentityServiceunsetRunAs in interface IdentityServicelastToken - RUNAS returned from previous associateRunAs callpublic RunAsToken newRunAsToken(String runAsName)
IdentityServicenewRunAsToken in interface IdentityServicerunAsName - Normally a role namepublic UserIdentity getSystemUserIdentity()
getSystemUserIdentity in interface IdentityServicepublic UserIdentity newUserIdentity(Subject subject, Principal userPrincipal, String[] roles)
IdentityServicenewUserIdentity in interface IdentityServicesubject - Subject to include in UserIdentityuserPrincipal - Principal to include in UserIdentity. This will be returned from getUserPrincipal callsroles - set of roles to include in UserIdentity.Copyright © 1995-2015 Mort Bay Consulting. All Rights Reserved.