Google Git
Sign in
apache / ignite / 7528ca8e555b73939d55d2d7381149cbe58710d2 / . / modules / core / src / main / java / org / apache / ignite / plugin / security / AuthenticationContext.java
blob: 33bcfa88367439b870851ca95f1ced21b7b5b869 [file] [log] [blame]
/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.apache.ignite.plugin.security;
import java.net.InetSocketAddress;
import java.security.cert.Certificate;
import java.util.Collections;
import java.util.HashMap;
import java.util.Map;
import java.util.UUID;
import org.apache.ignite.internal.util.typedef.F;
/**
* Authentication context.
*/
public class AuthenticationContext {
/** Subject type. */
private SecuritySubjectType subjType;
/** Subject ID.w */
private UUID subjId;
/** Credentials. */
private SecurityCredentials creds;
/** Subject address. */
private InetSocketAddress addr;
/** */
private Map<String, Object> nodeAttrs;
/** True if this is a client node context. */
private boolean client;
/** Client SSL certificates. */
private Certificate[] certs;
/**
* Gets subject type.
*
* @return Subject type.
*/
public SecuritySubjectType subjectType() {
return subjType;
}
/**
* Sets subject type.
*
* @param subjType Subject type.
*/
public void subjectType(SecuritySubjectType subjType) {
this.subjType = subjType;
}
/**
* Gets subject ID.
*
* @return Subject ID.
*/
public UUID subjectId() {
return subjId;
}
/**
* Sets subject ID.
*
* @param subjId Subject ID.
*/
public void subjectId(UUID subjId) {
this.subjId = subjId;
}
/**
* Gets security credentials.
*
* @return Security credentials.
*/
public SecurityCredentials credentials() {
return creds;
}
/**
* Sets security credentials.
*
* @param creds Security credentials.
*/
public void credentials(SecurityCredentials creds) {
this.creds = creds;
}
/**
* Gets subject network address.
*
* @return Subject network address.
*/
public InetSocketAddress address() {
return addr;
}
/**
* Sets subject network address.
*
* @param addr Subject network address.
*/
public void address(InetSocketAddress addr) {
this.addr = addr;
}
/**
* Gets node attributes.
*
* @return Node attributes or empty map for {@link SecuritySubjectType#REMOTE_CLIENT}.
*/
public Map<String, Object> nodeAttributes() {
return nodeAttrs != null ? nodeAttrs : Collections.emptyMap();
}
/**
* Sets node attributes.
*
* @param nodeAttrs Node attributes.
*/
public void nodeAttributes(Map<String, ?> nodeAttrs) {
this.nodeAttrs = F.isEmpty(nodeAttrs) ? null : new HashMap<>(nodeAttrs);
}
/**
* @return Client SSL certificates.
*/
public Certificate[] certificates() {
return certs;
}
/**
* Set client SSL certificates.
* @param certs Client SSL certificates.
* @return {@code this} for chaining.
*/
public AuthenticationContext certificates(Certificate[] certs) {
this.certs = certs;
return this;
}
/**
* @return {@code true} if this is a client node context.
*/
public boolean isClient() {
return client;
}
/**
* Sets flag indicating if this is client node context.
*
* @param newVal Whether current authentication context relates to client node connection.
* @return {@code this} for chaining.
*/
public AuthenticationContext setClient(boolean newVal) {
client = newVal;
return this;
}
}