mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-06-30 18:15:39 +00:00
b8aaa9c372
17163: org.alfresco.repo.domain.hibernate.AclDaoComponentImpl.updateAuthority() needs to flush/dirty the session in order to work
17160: Fix HeartBeat
- Lazy initialization in scheduled job needed its own transaction
17146: Fix failing unit tests
- HibernateNodeDaoServiceImpl.moveNodeToStore() must invalidate parentAssocsCache now that it contains NodeRefs
17145: Fixes to patches for new CRC schema changes
- Sequenced patch.fixNameCrcValues-2 before all other patches
- Fixed typos in schema upgrade script and added CRCs for the repository descriptor nodes, so that the descriptor service and patch service can boot up
- HeartBeat initializes lazily so that it doesn't try to load information before the patch service has bootstrapped
- Made FixNameCrcValuesPatch industrial strength by using BatchProcessor to handle multi threading, progress reporting and transaction delineation
17097: Removal of spurious logs directory accidentally introduced in 17096
17096: Performance tuning for improved throughput during high volume import from LDAP directory
- Lucene indexer will now no longer index and then reindex the same node in the same transaction
- lucene.indexer.mergerTargetOverlaysBlockingFactor reduced to 1 (improves indexing performance and no excessive throttling observed during 10 hour test)
- HomeFolderManager fixed so that it pays attention to the eager home folder creation flag
- HibernateNodeDaoServiceImpl.parentAssocsCache 'upgraded' to hold information about root nodes and node refs so that recursive methods such as prependPaths can run entirely out of the cache
- Boolean argument added to getChildAssocs() so that preloading of all child nodes is optional
- qname_crc column added to alf_child_assoc to allow efficient lookup and indexing of child associations by QName. CRC of (qname_namespace, qname_localname).
- idx_alf_cass_qnln on qname_localname replaced with idx_alf_cass_qncrc (qname_crc, type_qname_id, parent_node_id)
- All node service lookup queries involving qname_localname modified to include qname_crc in WHERE clause
- schema patch provided
- existing org.alfresco.repo.admin.patch.impl.FixNameCrcValuesPatch extended to also fill in qname_crc column and forced to run on newer schemas
- Optimized ChainingUserRegistrySynchronizer so that it doesn't have to look up the entire set of authorities during an 'empty' incremental sync
- ChainingUserRegistrySynchronizer no longer starts an outer transaction around all its smaller transactions (used to die due to timeout)
- rule service disabled for LDAP batch processing threads
- org.alfresco.cache.parentAssocsCache and org.alfresco.cache.storeAndNodeIdCache size increased to 80,000
- Fixed case sensitivity issue with person caching in PersonServiceImpl
- Cache the people container in PersonServiceImpl for faster person lookups
- PersonDAO removed and replaced with now more efficient node service child assoc lookup methods
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@17168 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
241 lines
8.7 KiB
Java
241 lines
8.7 KiB
Java
/*
|
|
* Copyright (C) 2005-2009 Alfresco Software Limited.
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public License
|
|
* as published by the Free Software Foundation; either version 2
|
|
* of the License, or (at your option) any later version.
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
|
|
* As a special exception to the terms and conditions of version 2.0 of
|
|
* the GPL, you may redistribute this Program in connection with Free/Libre
|
|
* and Open Source Software ("FLOSS") applications as described in Alfresco's
|
|
* FLOSS exception. You should have received a copy of the text describing
|
|
* the FLOSS exception, and it is also available here:
|
|
* http://www.alfresco.com/legal/licensing"
|
|
*/
|
|
package org.alfresco.service.cmr.security;
|
|
|
|
import java.io.Serializable;
|
|
import java.util.Map;
|
|
import java.util.Set;
|
|
|
|
import org.alfresco.service.Auditable;
|
|
import org.alfresco.service.NotAuditable;
|
|
import org.alfresco.service.PublicService;
|
|
import org.alfresco.service.cmr.repository.NodeRef;
|
|
import org.alfresco.service.namespace.QName;
|
|
|
|
/**
|
|
* This service encapsulates the management of people and groups.
|
|
* <p>
|
|
* <p>
|
|
* People and groups may be managed entirely in the repository or entirely in
|
|
* some other implementation such as LDAP or via NTLM. Some properties may in
|
|
* the repository and some in another store. Individual properties may or may
|
|
* not be mutable.
|
|
* <p>
|
|
*
|
|
* @author Andy Hind
|
|
*/
|
|
@PublicService
|
|
public interface PersonService
|
|
{
|
|
/**
|
|
* Get a person by userName. The person is store in the repository. The
|
|
* person may be created as a side effect of this call, depending on the
|
|
* setting to
|
|
* {@link #setCreateMissingPeople(boolean) create missing people or not}.
|
|
*
|
|
* @param userName -
|
|
* the userName key to find the person
|
|
* @return Returns the person node, either existing or new
|
|
* @throws NoSuchPersonException
|
|
* if the user doesn't exist and could not be created
|
|
* automatically
|
|
*
|
|
* @see #setCreateMissingPeople(boolean)
|
|
* @see #createMissingPeople()
|
|
*/
|
|
@Auditable(parameters = {"userName"})
|
|
public NodeRef getPerson(String userName);
|
|
|
|
/**
|
|
* Retrieve the person NodeRef for a username key. Depending on the <code>autoCreate</code> parameter and
|
|
* configuration missing people will be created if not found, else a NoSuchPersonException exception will be thrown.
|
|
*
|
|
* @param userName
|
|
* of the person NodeRef to retrieve
|
|
* @param autoCreate
|
|
* should we auto-create the person node and home folder if they don't exist? (and configuration allows
|
|
* us to)
|
|
* @return NodeRef of the person as specified by the username
|
|
* @throws NoSuchPersonException
|
|
* if the person doesn't exist and can't be created
|
|
*/
|
|
@Auditable(parameters = {"userName", "autoCreate"})
|
|
public NodeRef getPerson(final String userName, final boolean autoCreate);
|
|
|
|
/**
|
|
* Check if a person exists.
|
|
*
|
|
* @param userName
|
|
* the user name
|
|
* @return Returns true if the user exists, otherwise false
|
|
*/
|
|
@Auditable(parameters = {"userName"})
|
|
public boolean personExists(String userName);
|
|
|
|
/**
|
|
* Does this service create people on demand if they are missing. If this is
|
|
* true, a call to getPerson() will create a person if they are missing.
|
|
*
|
|
* @return true if people are created on demand and false otherwise.
|
|
*/
|
|
@Auditable
|
|
public boolean createMissingPeople();
|
|
|
|
/**
|
|
* Set if missing people should be created.
|
|
*
|
|
* @param createMissing
|
|
* set to true to create people
|
|
*
|
|
* @see #getPerson(String)
|
|
*/
|
|
@Auditable(parameters = {"createMissing"})
|
|
public void setCreateMissingPeople(boolean createMissing);
|
|
|
|
/**
|
|
* Get the list of properties that are mutable. Some service may only allow
|
|
* a limited list of properties to be changed. This may be those persisted
|
|
* in the repository or those that can be changed in some other
|
|
* implementation such as LDAP.
|
|
*
|
|
* @return A set of QNames that identify properties that can be changed
|
|
*/
|
|
@Auditable
|
|
public Set<QName> getMutableProperties();
|
|
|
|
/**
|
|
* Set the properties on a person - some of these may be persisted in
|
|
* different locations.
|
|
*
|
|
* @param userName -
|
|
* the user for which the properties should be set.
|
|
* @param properties -
|
|
* the map of properties to set (as the NodeService)
|
|
*/
|
|
@Auditable(parameters = {"userName", "properties"})
|
|
public void setPersonProperties(String userName, Map<QName, Serializable> properties);
|
|
|
|
|
|
/**
|
|
* Set the properties on a person - some of these may be persisted in different locations.
|
|
*
|
|
* @param userName
|
|
* - the user for which the properties should be set.
|
|
* @param properties
|
|
* - the map of properties to set (as the NodeService)
|
|
* @param autoCreate
|
|
* should we auto-create the home folder if it doesn't exist? (and configuration allows us to)
|
|
*/
|
|
@Auditable(parameters = {"userName", "properties", "autoCreate"})
|
|
public void setPersonProperties(String userName, Map<QName, Serializable> properties, boolean autoCreate);
|
|
|
|
/**
|
|
* Can this service create, delete and update person information?
|
|
*
|
|
* @return true if this service allows mutation to people.
|
|
*/
|
|
@Auditable
|
|
public boolean isMutable();
|
|
|
|
/**
|
|
* Create a new person with the given properties. The userName is one of the
|
|
* properties. Users with duplicate userNames are not allowed.
|
|
*
|
|
* @param properties
|
|
* @return
|
|
*/
|
|
@Auditable(parameters = {"properties"})
|
|
public NodeRef createPerson(Map<QName, Serializable> properties);
|
|
|
|
/**
|
|
* Create a new person with the given properties, recording them against the given zone name (usually identifying an
|
|
* external user registry from which the details were obtained). The userName is one of the properties. Users with
|
|
* duplicate userNames are not allowed.
|
|
*
|
|
* @param properties
|
|
* the properties
|
|
* @param zones
|
|
* a set if zones including the identifier for the external user registry owning the person information, or <code>null</code> or an empty set
|
|
* @return the node ref
|
|
*/
|
|
@Auditable(parameters = {"properties", "zones"})
|
|
public NodeRef createPerson(Map<QName, Serializable> properties, Set<String> zones);
|
|
|
|
/**
|
|
* Delete the person identified by the given user name.
|
|
*
|
|
* @param userName
|
|
*/
|
|
@Auditable(parameters = {"userName"})
|
|
public void deletePerson(String userName);
|
|
|
|
/**
|
|
* Get all the people we know about.
|
|
*
|
|
* @return a set of people in no specific order.
|
|
*/
|
|
@Auditable
|
|
public Set<NodeRef> getAllPeople();
|
|
|
|
/**
|
|
* Get people filtered by the given property name/value pair
|
|
*
|
|
* @param propertyKey property key of property to filter people by
|
|
* @param propertyValue property value of property to filter people by
|
|
* @return people filtered by the given property name/value pair
|
|
*/
|
|
@Auditable
|
|
public Set<NodeRef> getPeopleFilteredByProperty(QName propertyKey, Serializable propertyValue);
|
|
|
|
/**
|
|
* Return the container that stores people.
|
|
*
|
|
* @return
|
|
*/
|
|
@Auditable
|
|
public NodeRef getPeopleContainer();
|
|
|
|
/**
|
|
* Are user names case sensitive?
|
|
*
|
|
* @return
|
|
*/
|
|
@Auditable
|
|
public boolean getUserNamesAreCaseSensitive();
|
|
|
|
/**
|
|
* Given the case sensitive user name find the approriate identifier from the person service.
|
|
* If the system is case sensitive it will return the same string.
|
|
* If case insentive it will return the common object.
|
|
* If the user does not exist it will return null;
|
|
*
|
|
* @param caseSensitiveUserName
|
|
* @return
|
|
*/
|
|
@NotAuditable
|
|
public String getUserIdentifier(String caseSensitiveUserName);
|
|
|
|
}
|