org.ametys.core.authentication.token

Class AuthenticationTokenManager

java.lang.Object

org.ametys.runtime.plugin.component.AbstractLogEnabled

org.ametys.core.authentication.token.AuthenticationTokenManager

All Implemented Interfaces:

LogEnabled, Initializable, Component, Serviceable

public class AuthenticationTokenManager
extends AbstractLogEnabled
implements Component, Serviceable, Initializable

The component to handle temporary authentication token.
Token can only be used once and are available for a short time only.

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static class	AuthenticationTokenManager.Token An Ametys authentication token

Field Summary

Fields

Modifier and Type	Field and Description
private CurrentUserProvider	_currentUserProvider
private String	_datasourceId
private ServiceManager	_manager
static String	ROLE The avalon role
static String	TOKEN_SEPARATOR The separator in token

Constructor Summary

Constructors

Constructor and Description
AuthenticationTokenManager()

Method Summary

Modifier and Type	Method and Description
private void	_deleteOldTokens(Connection connection) Generates the sql statement that deletes the entries of the users token database that are old
private void	_deleteUserToken(Connection connection, String id) Deletes the database entry that has this token
private CurrentUserProvider	_getCurrentUserProvider()
private PreparedStatement	_getSelectUserTokenStatement(Connection connection, String login, String populationId, String type) Generates the statement that selects the users having the specified login in the Users_Token table
private UserIdentity	_validateToken(String token, boolean forceRemove)
void	deleteTokenById(String tokenId) Destroy the given token
void	deleteTokenByValue(String token) Destroy the given token
String	generateToken(long duration, String type, String comment) Generates a new token for the current user
String	generateToken(UserIdentity user, long duration, String type, String comment) Generates a new token
List<AuthenticationTokenManager.Token>	getTokens(String type) Get the existing tokens for the connected user
List<AuthenticationTokenManager.Token>	getTokens(UserIdentity user, String type) Get the existing tokens for this user
void	initialize()
void	service(ServiceManager manager)
UserIdentity	validateToken(String token) Check if a token is valid and return the s

Methods inherited from class org.ametys.runtime.plugin.component.AbstractLogEnabled

getLogger, setLogger

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

ROLE

public static final String ROLE

The avalon role

TOKEN_SEPARATOR

public static final String TOKEN_SEPARATOR

The separator in token

See Also:

Constant Field Values

_manager

private ServiceManager _manager

_currentUserProvider

private CurrentUserProvider _currentUserProvider

_datasourceId

private String _datasourceId

Constructor Detail

AuthenticationTokenManager

public AuthenticationTokenManager()

Method Detail

service

public void service(ServiceManager manager)
             throws ServiceException

Specified by:

service in interface Serviceable

Throws:

ServiceException

initialize

public void initialize()
                throws Exception

Specified by:

initialize in interface Initializable

Throws:

Exception

_getCurrentUserProvider

private CurrentUserProvider _getCurrentUserProvider()
                                             throws RuntimeException

Throws:

RuntimeException

getTokens

public List<AuthenticationTokenManager.Token> getTokens(String type)
                                                 throws RuntimeException

Get the existing tokens for the connected user

Parameters:

type - The type of tokens to return. null to return all.

Returns:

The tokens

Throws:

RuntimeException - If there is no user connected or if there is a database error

getTokens

public List<AuthenticationTokenManager.Token> getTokens(UserIdentity user,
                                                        String type)
                                                 throws RuntimeException

Get the existing tokens for this user

Parameters:

type - The type of tokens to return. null to return all.

user - The user. Cannot be null

Returns:

The tokens identifier and associated comment

Throws:

RuntimeException - If the user is null or if there is a database error

generateToken

public String generateToken(long duration,
                            String type,
                            String comment)
                     throws RuntimeException

Generates a new token for the current user

Parameters:

duration - The time the token is valid in seconds. 0 means for ever and moreover the ticket will be reusable.

type - The type of token. Mandatory but can be anything you want between 1 to 32 characters. Such as "Cookie".

comment - An optional token comment to remember the reason of its creation

Returns:

The token

Throws:

RuntimeException - If the user is not authenticated, or if there is a database error

generateToken

public String generateToken(UserIdentity user,
                            long duration,
                            String type,
                            String comment)
                     throws RuntimeException

Generates a new token

Parameters:

user - The user that will be authenticated with the token

duration - The time the token is valid in seconds. 0 means for ever and moreover the ticket will be reusable

type - The type of token. Mandatory but can be anything you want between 1 to 32 characters. Such as "Cookie".

comment - An optional token comment to remember the reason of its creation

Returns:

The token

Throws:

RuntimeException - If the user is null or if there is a database error or if duration is negative

_validateToken

private UserIdentity _validateToken(String token,
                                    boolean forceRemove)

validateToken

public UserIdentity validateToken(String token)

Check if a token is valid and return the s

Parameters:

token - The token to validate

Returns:

The user associated to the valid token, null otherwise

deleteTokenByValue

public void deleteTokenByValue(String token)

Destroy the given token

Parameters:

token - The token to remove

deleteTokenById

public void deleteTokenById(String tokenId)

Destroy the given token

Parameters:

tokenId - The token identifier to remove

_deleteOldTokens

private void _deleteOldTokens(Connection connection)
                       throws SQLException

Generates the sql statement that deletes the entries of the users token database that are old

Parameters:

connection - the database's session

Throws:

SQLException - if a sql exception occurs

_getSelectUserTokenStatement

private PreparedStatement _getSelectUserTokenStatement(Connection connection,
                                                       String login,
                                                       String populationId,
                                                       String type)
                                                throws SQLException

Generates the statement that selects the users having the specified login in the Users_Token table

Parameters:

connection - the database's session

login - The login of the user

populationId - The populationId of the user

type - The type to filter or null to get all

Returns:

the retrieve statement

Throws:

SQLException - if a sql exception occurs

_deleteUserToken

private void _deleteUserToken(Connection connection,
                              String id)
                       throws SQLException

Deletes the database entry that has this token

Parameters:

connection - the database's session

id - the token id

Throws:

SQLException - if an error occurred