Access control and security classes for the OpenCms ACL permission system.
Interface Summary Interface Description I_CmsAuthorizationHandlerDefines general authorization methods. I_CmsAuthorizationHandler.I_PrivilegedLoginActionClass providing the privileged login action. I_CmsCredentialsResolverThis interface can be used to override or replace user names or passwords which occur in the OpenCms configuration, for example to hide passwords from users who can read the configuration files. I_CmsLoginActionInterface used to provide a protected login method. I_CmsPasswordGenerator I_CmsPasswordHandlerDefines methods for OpenCms password validation. I_CmsPasswordSecurityEvaluatorPassword handler implementing this interface allow the password security to be evaluated. I_CmsPermissionHandlerPermission handler interface. I_CmsPrincipalRepresentation of an identity in the cms (currently user or group), used to define permissions on a resource. I_CmsValidationHandlerDefines general validation methods.
Class Summary Class Description CmsAccessControlEntryAn access control entry defines the permissions of a user or group for a distinct resource. CmsAccessControlListAn access control list contains the permission sets of all principals for a distinct resource that are calculated on the permissions defined by various access control entries. CmsAdvancedPasswordHandlerValidates the user passwords in with advanced password requirements. CmsDefaultAuthorizationHandlerDefines default authorization methods. CmsDefaultCredentialsResolverDefault implementation of a I_CmsCredentialResolver, which does nothing but return the credential which was passed in. CmsDefaultPasswordGeneratorDefault Password Generator class. CmsDefaultPasswordHandlerDefault implementation for OpenCms password validation, just checks if a password is at last 4 characters long. CmsDefaultPermissionHandlerGeneric base driver interface. CmsDefaultValidationHandlerDefault implementation for the validation handler. CmsOrganizationalUnitAn organizational unit in OpenCms. CmsOrgUnitManagerThis manager provide access to the organizational unit related operations. CmsPasswordInfoValidating bean for changing the password. CmsPermissionSetAn immutable permission set that contains both allowed and denied permissions as bitsets. CmsPermissionSetCustomA custom permission set that can be modified during runtime and contains both allowed and denied permissions as bitsets. CmsPersistentLoginAuthorizationHandlerAuthorization handler which uses a special cookie sent by the user's browser for authorization. CmsPersistentLoginTokenHandlerCreates and validates persisten login tokens for users. CmsPersistentLoginTokenHandler.TokenBean representing the data encoded in a login token (user name and key). CmsPrincipalCommon methods shared among user and group principals, also contains several utility functions to deal with principal instances. CmsRoleA role is used in the OpenCms security system to check if a user has access to a certain system function. CmsRoleAsPrincipalWrapper around CmsRole objects so they can be used as principals. CmsRoleManagerThis manager provide access to the role related operations. CmsUserLogClass with static methods for logging user-related operations in a centralized manner. I_CmsPermissionHandler.CmsPermissionCheckResultEnumeration class for the results of
I_CmsPermissionHandler.hasPermissions(CmsDbContext, CmsResource, CmsPermissionSet, LockCheck, CmsResourceFilter).
MessagesConvenience class to access the localized messages of this OpenCms package.
Enum Summary Enum Description I_CmsPasswordSecurityEvaluator.SecurityLevelPassword security levels. I_CmsPermissionHandler.LockCheckEnum for the lock check mode.
Exception Summary Exception Description CmsAuthentificationExceptionSignals that an attempt to authenticate (login) has a user has failed. CmsCustomLoginExceptionCustom login exception whose message will be displayed to the user if the login fails. CmsPasswordEncryptionExceptionSignals that an attempt to encrypt a password was not successful. CmsPermissionViolationExceptionA permission violation occurs if a user without tries to access or maipulate a VFS resource without the required permissions. CmsRoleViolationExceptionA role violation occurs if a user without permissions tries to access a protected OpenCms system feature that can only be accessed by users in certain roles. CmsSecurityExceptionUsed to signal security related issues, for example example during file access and login. CmsUserDisabledExceptionSignals that an attempt to authenticate (login) a user has failed because the user had to many invalid logins.