Package sonia.scm.security
package sonia.scm.security
-
ClassDescriptionAn access token can be used to access scm-manager without providing username and password.The access token builder is able to create
AccessToken
.Creates newAccessTokenBuilder
.Generates cookies and invalidates access token cookies.AccessTokenEnricher is able to enhance theAccessToken
, before it is delivered to the client.AccessTokenResolver are used to parse, validate and verify anAccessToken
from aBearerToken
.Validates anAccessToken
.Available modes for anonymous accessPermission object which is assigned to a specific user or group.Event which is fired after aStoredAssignedPermission
was added, removed or changed.This type of event is fired whenever an authorization relevant data changes.CollectAuthorizationInfo
for the authenticated user.Token used for authentication with bearer tokens.Encrypts and decrypts string values.TheDAORealmHelper
provides a simple way to authenticate against theUserDAO
.Factory to createDAORealmHelper
instances.Default implementation of theCipherHandler
, which uses AES for encryption and decryption.Allows signing and verification using gpg.Event is fired whenever a user explicitly logs out.Descriptor for available permission objects.Interface for permission objects.Can be used to create signatures of data.The public key can be used to verify signatures.This event is fired when a public key was created in SCM-Manager.This event is fired when a public key was removed from SCM-Manager.Public key parser.Scope of a token.The SecuritySystem manages global permissions.Client side session id.Permission object which is stored and assigned to a specific user or group.Permission that can be represented by a string.Helper class for syncing realms.This exception is thrown if the session token is expiredCreate tokens for security reasons.Thrown by theAccessTokenResolver
when anAccessTokenValidator
fails to validate an access token.Shared constants for Xsrf related classes.