| /* |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, |
| * software distributed under the License is distributed on an |
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| * KIND, either express or implied. See the License for the |
| * specific language governing permissions and limitations |
| * under the License. |
| */ |
| |
| package org.apache.guacamole.net.auth; |
| |
| import java.util.Date; |
| import java.util.List; |
| import org.apache.guacamole.GuacamoleException; |
| import org.apache.guacamole.net.auth.permission.ObjectPermissionSet; |
| import org.apache.guacamole.net.auth.permission.SystemPermissionSet; |
| |
| |
| /** |
| * A user of the Guacamole web application. |
| */ |
| public interface User extends Identifiable, Attributes { |
| |
| /** |
| * All standard attribute names with semantics defined by the Guacamole web |
| * application. Extensions may additionally define their own attributes |
| * with completely arbitrary names and semantics, so long as those names do |
| * not conflict with the names listed here. All standard attribute names |
| * have a "guac-" prefix to avoid such conflicts. |
| */ |
| public static class Attribute { |
| |
| /** |
| * The user's full name. |
| */ |
| public static String FULL_NAME = "guac-full-name"; |
| |
| /** |
| * The email address of the user. |
| */ |
| public static String EMAIL_ADDRESS = "guac-email-address"; |
| |
| /** |
| * The organization, company, group, etc. that the user belongs to. |
| */ |
| public static String ORGANIZATION = "guac-organization"; |
| |
| /** |
| * The role that the user has at the organization, company, group, etc. |
| * they belong to. |
| */ |
| public static String ORGANIZATIONAL_ROLE = "guac-organizational-role"; |
| |
| } |
| |
| /** |
| * Returns this user's password. Note that the password returned may be |
| * hashed or completely arbitrary. |
| * |
| * @return A String which may (or may not) be the user's password. |
| */ |
| public String getPassword(); |
| |
| /** |
| * Sets this user's password. Note that while this function is guaranteed |
| * to change the password of this User object, there is no guarantee that |
| * getPassword() will return the value given to setPassword(). |
| * |
| * @param password The password to set. |
| */ |
| public void setPassword(String password); |
| |
| /** |
| * Returns the date and time that this user was last active. If the user |
| * was never active, the time that the user was last active is unknown, or |
| * this information is not visible to the current user, this may be null. |
| * |
| * @return |
| * The date and time this user was last active, or null if this |
| * information is unavailable or inapplicable. |
| */ |
| Date getLastActive(); |
| |
| /** |
| * Returns a list of ActivityRecords representing the login history |
| * of this user, including any active sessions. ActivityRecords |
| * in this list will be sorted in descending order of end time (active |
| * sessions are first), and then in descending order of start time |
| * (newer sessions are first). |
| * |
| * @return |
| * A list of ActivityRecords representing the login history of this |
| * User. |
| * |
| * @throws GuacamoleException |
| * If an error occurs while reading the history of this user, or if |
| * permission is denied. |
| */ |
| List<? extends ActivityRecord> getHistory() throws GuacamoleException; |
| |
| /** |
| * Returns all system-level permissions given to this user. |
| * |
| * @return |
| * A SystemPermissionSet of all system-level permissions granted to |
| * this user. |
| * |
| * @throws GuacamoleException |
| * If an error occurs while retrieving permissions, or if reading all |
| * permissions is not allowed. |
| */ |
| SystemPermissionSet getSystemPermissions() throws GuacamoleException; |
| |
| /** |
| * Returns all connection permissions given to this user. |
| * |
| * @return |
| * An ObjectPermissionSet of all connection permissions granted to this |
| * user. |
| * |
| * @throws GuacamoleException |
| * If an error occurs while retrieving permissions, or if reading all |
| * permissions is not allowed. |
| */ |
| ObjectPermissionSet getConnectionPermissions() |
| throws GuacamoleException; |
| |
| /** |
| * Returns all connection group permissions given to this user. |
| * |
| * @return |
| * An ObjectPermissionSet of all connection group permissions granted |
| * to this user. |
| * |
| * @throws GuacamoleException |
| * If an error occurs while retrieving permissions, or if reading all |
| * permissions is not allowed. |
| */ |
| ObjectPermissionSet getConnectionGroupPermissions() |
| throws GuacamoleException; |
| |
| /** |
| * Returns all sharing profile permissions given to this user. |
| * |
| * @return |
| * An ObjectPermissionSet of all sharing profile permissions granted to |
| * this user. |
| * |
| * @throws GuacamoleException |
| * If an error occurs while retrieving permissions, or if reading all |
| * permissions is not allowed. |
| */ |
| ObjectPermissionSet getSharingProfilePermissions() |
| throws GuacamoleException; |
| |
| /** |
| * Returns all permissions given to this user regarding currently-active |
| * connections. |
| * |
| * @return |
| * An ObjectPermissionSet of all active connection permissions granted |
| * to this user. |
| * |
| * @throws GuacamoleException |
| * If an error occurs while retrieving permissions, or if reading all |
| * permissions is not allowed. |
| */ |
| ObjectPermissionSet getActiveConnectionPermissions() |
| throws GuacamoleException; |
| |
| /** |
| * Returns all user permissions given to this user. |
| * |
| * @return |
| * An ObjectPermissionSet of all user permissions granted to this user. |
| * |
| * @throws GuacamoleException |
| * If an error occurs while retrieving permissions, or if reading all |
| * permissions is not allowed. |
| */ |
| ObjectPermissionSet getUserPermissions() throws GuacamoleException; |
| |
| } |