ExplicitUsersSecurityProvider (Apache Brooklyn)

java.lang.Object
- org.apache.brooklyn.rest.security.provider.AbstractSecurityProvider
- - org.apache.brooklyn.rest.security.provider.ExplicitUsersSecurityProvider

All Implemented Interfaces:

SecurityProvider
```
public class ExplicitUsersSecurityProvider
extends AbstractSecurityProvider
implements SecurityProvider
```
Security provider which validates users against passwords according to property keys, as set in BrooklynWebConfig.USERS and BrooklynWebConfig.PASSWORD_FOR_USER(String)

Field Summary

Fields
Modifier and Type Field and Description

static org.slf4j.Logger LOG

Fields
Modifier and Type	Field and Description
`static org.slf4j.Logger`	`LOG`

Constructor Summary

Constructors
Constructor and Description

ExplicitUsersSecurityProvider(ManagementContext mgmt)

Constructors
Constructor and Description
`ExplicitUsersSecurityProvider(ManagementContext mgmt)`

Method Summary

Methods
Modifier and Type	Method and Description
`boolean`	`authenticate(javax.servlet.http.HttpSession session, java.lang.String user, java.lang.String password)`
`static boolean`	`checkExplicitUserPassword(ManagementContext mgmt, java.lang.String user, java.lang.String password)` checks the supplied candidate user and password against the expect password (or SHA-256 + SALT thereof) defined as brooklyn properties.
`static boolean`	`checkPassword(java.lang.String candidatePassword, java.lang.String expectedPassword, java.lang.String expectedPasswordSha256, java.lang.String salt)` checks a candidate password against the expected credential defined for a given user.

Methods inherited from class org.apache.brooklyn.rest.security.provider.AbstractSecurityProvider
isAuthenticated, logout

Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.apache.brooklyn.rest.security.provider.SecurityProvider
isAuthenticated, logout

Field Detail

LOG

public static final org.slf4j.Logger LOG

Constructor Detail

ExplicitUsersSecurityProvider

public ExplicitUsersSecurityProvider(ManagementContext mgmt)

Method Detail

authenticate

public boolean authenticate(javax.servlet.http.HttpSession session,
                   java.lang.String user,
                   java.lang.String password)

Specified by:: authenticate in interface SecurityProvider

checkExplicitUserPassword

public static boolean checkExplicitUserPassword(ManagementContext mgmt,
                                java.lang.String user,
                                java.lang.String password)

checks the supplied candidate user and password against the expect password (or SHA-256 + SALT thereof) defined as brooklyn properties.

checkPassword
```
public static boolean checkPassword(java.lang.String candidatePassword,
                    java.lang.String expectedPassword,
                    java.lang.String expectedPasswordSha256,
                    java.lang.String salt)
```
checks a candidate password against the expected credential defined for a given user. the expected credentials can be supplied as an expectedPassword OR as a combination of the SHA-256 hash of the expected password plus a defined salt. the combination of the SHA+SALT allows credentials to be supplied in a non-plaintext manner.

Class ExplicitUsersSecurityProvider

Field Summary

Constructor Summary

Method Summary

Methods inherited from class org.apache.brooklyn.rest.security.provider.AbstractSecurityProvider

Methods inherited from class java.lang.Object

Methods inherited from interface org.apache.brooklyn.rest.security.provider.SecurityProvider

Field Detail

LOG

Constructor Detail

ExplicitUsersSecurityProvider

Method Detail

authenticate

checkExplicitUserPassword

checkPassword