| /******************************************************************************* |
| * Licensed to the Apache Software Foundation (ASF) under one |
| * or more contributor license agreements. See the NOTICE file |
| * distributed with this work for additional information |
| * regarding copyright ownership. The ASF licenses this file |
| * to you under the Apache License, Version 2.0 (the |
| * "License"); you may not use this file except in compliance |
| * with the License. You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, |
| * software distributed under the License is distributed on an |
| * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| * KIND, either express or implied. See the License for the |
| * specific language governing permissions and limitations |
| * under the License. |
| *******************************************************************************/ |
| |
| package org.apache.ofbiz.common.authentication.api; |
| |
| import org.apache.ofbiz.service.LocalDispatcher; |
| |
| /** |
| * Authenticator |
| * |
| * Classes which implement this interface (directly) will be auto-discovered and loaded as Authenticators |
| * as long as isEnabled() returns true. All implementations MUST be in the org.apache.ofbiz top level package in |
| * order to be discovered. |
| */ |
| public interface Authenticator { |
| |
| /** |
| * Method called when authenticator is first initialized (the delegator |
| * object can be obtained from the LocalDispatcher) |
| * @param dispatcher The LocalDispatcher to use for this Authenticator |
| */ |
| public void initialize(LocalDispatcher dispatcher); |
| |
| /** |
| * Method to authenticate a user |
| * @param username User's username |
| * @param password User's password |
| * @param isServiceAuth true if authentication is for a service call |
| * @return true if the user is authenticated |
| * @throws AuthenticatorException when a fatal error occurs during authentication |
| */ |
| public boolean authenticate(String username, String password, boolean isServiceAuth) throws AuthenticatorException; |
| |
| /** |
| * Logs a user out |
| * @param username User's username |
| * @throws AuthenticatorException when logout fails |
| */ |
| public void logout(String username) throws AuthenticatorException; |
| |
| /** |
| * Reads user information and syncs it to OFBiz (i.e. UserLogin, Person, etc) |
| * Note: when creating a UserLogin object, be sure to set 'externalAuthId' |
| * @param username User's username |
| * @throws AuthenticatorException user synchronization fails |
| */ |
| public void syncUser(String username) throws AuthenticatorException; |
| |
| /** |
| * Updates a user's password |
| * @param username User's username |
| * @param password User's current password |
| * @param newPassword User's new password |
| * @throws AuthenticatorException when update password fails |
| */ |
| public void updatePassword(String username, String password, String newPassword) throws AuthenticatorException; |
| |
| /** |
| * Weight of this authenticator (lower weights are run first) |
| * @return the weight of this Authenticator |
| */ |
| public float getWeight(); |
| |
| /** |
| * Is the user synchronized back to OFBiz |
| * @return true if the user record is copied to the OFB database |
| */ |
| public boolean isUserSynchronized(); |
| |
| /** |
| * Is this expected to be the only authenticator, if so errors will be thrown when users cannot be found |
| * @return true if this is expected to be the only Authenticator |
| */ |
| public boolean isSingleAuthenticator(); |
| |
| /** |
| * Flag to test if this Authenticator is enabled |
| * @return true if the Authenticator is enabled |
| */ |
| public boolean isEnabled(); |
| } |