mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-07-07 18:25:23 +00:00
29f7f5d073
28236: ALF-8810: Removed trailing space from discussion.discussion_for Italian translation
28241: Incremented version revision for 3.4.4
28284: ALF-835 - WCM/AVM: copy (empty) folder into itself
28285: ALF-6863: More than one cifs device breaks the web UI (explorer)
28290: ALF-8840: user-*.atomentry.ftl
28291: ALF-6863: Continuation of fix by Arseny
28336: ALF-8768: Fixed typo in comment on wcm-bootstrap-context.xml
28363: Merged DEV to V3.4-BUG-FIX
28262: ALF-8847: WCM: OrphanReaper contention throws error after 39 retries.
Checkin Comment:
Use JobLockService to make sure that only one OrphanReaper job is working.
Generate list of nodes that must be processed in OrphanReaper.doBatch() transaction.
28386: ALF-9100: Merged PATCHES/V3.4.1 to V3.4-BUG-FIX
28249: ALF-8946: Avoid one full table scan per batch in full reindex
- Now each batch scans a single time sample, dynamically adjusted based on the number of transactions
in the previous sample, always aiming for 1000 transactions per sample.
28394: Fixed ALF-9090: NPE during inter-cluster subsystem messaging
- Bean ID is a List<String> and might not be recognized on receiving machine
- Log warning when bean ID is not available (unsymmetrical configuration, perhaps?)
28396: Merged DEV to V3.4-BUG-FIX
28384: ALF-6150: Initial state lost when non-versionable document is saved for the first time
Creation of new version of document before writing its content was added to
- AbstractAlfrescoMethodHandler->putDocument (this method is used by Office 2003, 2007)
- VtiIfHeaderAction->doPut (this method is used by Office 2007 and 2010 on Windows 7)
Creation of new version was added twice to AbstractAlfrescoMethodHandler to avoid affecting
initial version when transaction is committed.
28432: Merged DEV to V3.4-BUG-FIX
28431: ALF-8530: Pressing the info icon creates an unrecorded file in the ContentStore
Use ContentService.getTempWriter() in BaseContentNode$TemplateContentData.getContentAsText() method.
28435: Merged DEV/TEMPORARY to V3.4-BUG-FIX
28428: ALF-9015: cm:modifier not updated when document is updated via CIFS
In ContentDiskDriver.closeFile() added ContentModel.PROP_MODIFIER property update.
28436: ALF-8550: Number of http requests (currentThreadsBusy) increases when session times out during creation of webform
- Corrected use of read and write locks
28465: Fix for ALF-8023 Share preview doesn't work if...
fixed as outlined by Dmitry.
28478: Merged BRANCHES/DEV/ALAN/AUDIT to BRANCHES/DEV/V3.4-BUG-FIX:
28062-28477 (28062,28063,28080,28081,28302,28303,28334,28340,28464,28469,28477) ALF-8438 Need higher level audit of user actions
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@28481 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
179 lines
5.2 KiB
Java
179 lines
5.2 KiB
Java
/*
|
|
* Copyright (C) 2005-2011 Alfresco Software Limited.
|
|
*
|
|
* This file is part of Alfresco
|
|
*
|
|
* Alfresco is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Lesser General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* Alfresco is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public License
|
|
* along with Alfresco. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
package org.alfresco.service.cmr.security;
|
|
|
|
import java.util.Set;
|
|
|
|
import org.alfresco.repo.security.authentication.AuthenticationException;
|
|
import org.alfresco.service.Auditable;
|
|
import org.alfresco.service.PublicService;
|
|
|
|
/**
|
|
* The authentication service defines the API for managing authentication information
|
|
* against a user id.
|
|
*
|
|
* @author Andy Hind
|
|
*/
|
|
public interface AuthenticationService
|
|
{
|
|
/**
|
|
* Is an authentication enabled or disabled?
|
|
*/
|
|
@Auditable(parameters = {"userName"})
|
|
public boolean getAuthenticationEnabled(String userName) throws AuthenticationException;
|
|
|
|
/**
|
|
* Carry out an authentication attempt. If successful the user is set to the current user.
|
|
* The current user is a part of the thread context.
|
|
*
|
|
* @param userName the username
|
|
* @param password the passowrd
|
|
* @throws AuthenticationException
|
|
*/
|
|
@Auditable(parameters = {"userName", "password"}, recordable = {true, false})
|
|
public void authenticate(String userName, char[] password) throws AuthenticationException;
|
|
|
|
/**
|
|
* Authenticate as the guest user. This may not be allowed and throw an exception.
|
|
*
|
|
* @throws AuthenticationException
|
|
*/
|
|
@Auditable
|
|
public void authenticateAsGuest() throws AuthenticationException;
|
|
|
|
/**
|
|
* Check if Guest user authentication is allowed.
|
|
*
|
|
* @return true if Guest user authentication is allowed, false otherwise
|
|
*/
|
|
@Auditable
|
|
public boolean guestUserAuthenticationAllowed();
|
|
|
|
/**
|
|
* Check if the given authentication exists.
|
|
*
|
|
* @param userName the username
|
|
* @return Returns <tt>true</tt> if the authentication exists
|
|
*/
|
|
@Auditable(parameters = {"userName"})
|
|
public boolean authenticationExists(String userName);
|
|
|
|
/**
|
|
* Get the name of the currently authenticated user.
|
|
*
|
|
* @return
|
|
* @throws AuthenticationException
|
|
*/
|
|
@Auditable
|
|
public String getCurrentUserName() throws AuthenticationException;
|
|
|
|
/**
|
|
* Invalidate any tickets held by the user.
|
|
*/
|
|
@Auditable(parameters = {"userName"})
|
|
public void invalidateUserSession(String userName) throws AuthenticationException;
|
|
|
|
/**
|
|
* Invalidate a single ticket by ID
|
|
*
|
|
* @param ticket
|
|
* @throws AuthenticationException
|
|
*/
|
|
@Auditable(parameters = {"ticket"}, recordable = {false})
|
|
public void invalidateTicket(String ticket) throws AuthenticationException;
|
|
|
|
/**
|
|
* Validate a ticket. Set the current user name accordingly.
|
|
*
|
|
* @param ticket
|
|
* @throws AuthenticationException
|
|
*/
|
|
@Auditable(parameters = {"ticket"}, recordable = {false})
|
|
public void validate(String ticket) throws AuthenticationException;
|
|
|
|
/**
|
|
* Get the current ticket as a string
|
|
* @return
|
|
*/
|
|
@Auditable
|
|
public String getCurrentTicket();
|
|
|
|
/**
|
|
* Get a new ticket as a string
|
|
* @return
|
|
*/
|
|
@Auditable
|
|
public String getNewTicket();
|
|
|
|
/**
|
|
* Remove the current security information
|
|
*/
|
|
@Auditable
|
|
public void clearCurrentSecurityContext();
|
|
|
|
/**
|
|
* Is the current user the system user?
|
|
*/
|
|
@Auditable
|
|
public boolean isCurrentUserTheSystemUser();
|
|
|
|
/**
|
|
* Get the domain to which this instance of an authentication service applies.
|
|
*
|
|
* @return The domain name
|
|
*/
|
|
@Auditable
|
|
public Set<String> getDomains();
|
|
|
|
/**
|
|
* Does this instance alow user to be created?
|
|
*/
|
|
@Auditable
|
|
public Set<String> getDomainsThatAllowUserCreation();
|
|
|
|
/**
|
|
* Does this instance allow users to be deleted?
|
|
*/
|
|
@Auditable
|
|
public Set<String> getDomainsThatAllowUserDeletion();
|
|
|
|
/**
|
|
* Does this instance allow users to update their passwords?
|
|
*/
|
|
@Auditable
|
|
public Set<String> getDomiansThatAllowUserPasswordChanges();
|
|
|
|
/**
|
|
* Gets a set of user names who should be considered 'administrators' by default.
|
|
*
|
|
* @return a set of user names
|
|
*/
|
|
@Auditable
|
|
public Set<String> getDefaultAdministratorUserNames();
|
|
|
|
/**
|
|
* Gets a set of user names who should be considered 'guests' by default.
|
|
*
|
|
* @return a set of user names
|
|
*/
|
|
@Auditable
|
|
public Set<String> getDefaultGuestUserNames();
|
|
}
|
|
|