Package org.opencms.security
package org.opencms.security
Access control and security classes for the OpenCms ACL permission system.
- Since:
- 6.0.0
-
ClassDescriptionAn access control entry defines the permissions of a user or group for a distinct resource.An access control list contains the permission sets of all principals for a distinct resource that are calculated on the permissions defined by various access control entries.Validates the user passwords in with advanced password requirements.Signals that an attempt to authenticate (login) has a user has failed.Custom login exception whose message will be displayed to the user if the login fails.Defines default authorization methods.Default implementation of a I_CmsCredentialResolver, which does nothing but return the credential which was passed in.Default Password Generator class.Default implementation for OpenCms password validation, just checks if a password is at last 4 characters long.Generic base driver interface.Default implementation for the validation handler.An organizational unit in OpenCms.This manager provide access to the organizational unit related operations.Signals that an attempt to encrypt a password was not successful.Validating bean for changing the password.An immutable permission set that contains both allowed and denied permissions as bitsets.A custom permission set that can be modified during runtime and contains both allowed and denied permissions as bitsets.A permission violation occurs if a user without tries to access or maipulate a VFS resource without the required permissions.Authorization handler which uses a special cookie sent by the user's browser for authorization.Creates and validates persisten login tokens for users.Bean representing the data encoded in a login token (user name and key).Common methods shared among user and group principals, also contains several utility functions to deal with principal instances.A role is used in the OpenCms security system to check if a user has access to a certain system function.Wrapper around CmsRole objects so they can be used as principals.This manager provide access to the role related operations.A role violation occurs if a user without permissions tries to access a protected OpenCms system feature that can only be accessed by users in certain roles.Used to signal security related issues, for example example during file access and login.Signals that an attempt to authenticate (login) a user has failed because the user had to many invalid logins.Class with static methods for logging user-related operations in a centralized manner.Defines general authorization methods.Class providing the privileged login action.This interface can be used to override or replace user names or passwords which occur in the OpenCms configuration, for example to hide passwords from users who can read the configuration files.Interface used to provide a protected login method.Defines methods for OpenCms password validation.Password handler implementing this interface allow the password security to be evaluated.Password security levels.Permission handler interface.Enumeration class for the results of
I_CmsPermissionHandler.hasPermissions(CmsDbContext, CmsResource, CmsPermissionSet, LockCheck, CmsResourceFilter).Enum for the lock check mode.Representation of an identity in the cms (currently user or group), used to define permissions on a resource.Defines general validation methods.Convenience class to access the localized messages of this OpenCms package.