Authentication (Moria Web Frontends 1.1 API)

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

no.feide.moria.webservices.v2_1
Interface Authentication

All Superinterfaces:: java.rmi.Remote

All Known Implementing Classes:: AuthenticationImpl

public interface Authentication
extends java.rmi.Remote
extends java.rmi.Remote

Version:: $Revision: 1.7 $
Author:: Bjørn Ola Smievoll <b.o.smievoll@conduct.no>

Method Summary
`Attribute[]`	`directNonInteractiveAuthentication(java.lang.String[] attributes, java.lang.String username, java.lang.String password)` Performs direct non-interactive authentication.
`java.lang.String`	`getProxyTicket(java.lang.String ticketGrantingTicket, java.lang.String proxyServicePrincipal)` Gets a proxy ticket.
`Attribute[]`	`getUserAttributes(java.lang.String serviceTicket)` Gets user attributes.
`java.lang.String`	`initiateAuthentication(java.lang.String[] attributes, java.lang.String returnURLPrefix, java.lang.String returnURLPostfix, boolean forceInteractiveAuthentication)` Initiates authentication.
`Attribute[]`	`proxyAuthentication(java.lang.String[] attributes, java.lang.String proxyTicket)` Performs proxy authentication.
`boolean`	`verifyUserExistence(java.lang.String username)` Verifies the existence of a given user in the underlying directories.

Method Detail

initiateAuthentication

java.lang.String initiateAuthentication(java.lang.String[] attributes,
                                        java.lang.String returnURLPrefix,
                                        java.lang.String returnURLPostfix,
                                        boolean forceInteractiveAuthentication)
                                        throws SOAPException

Initiates authentication. The initial call done by a service to start a login attempt.

Parameters:: attributes - The attributes the service wants returned on login; returnURLPrefix - The prefix of the url the user is to be returned to; returnURLPostfix - The optional postfix of the return url; forceInteractiveAuthentication - Whether or not cookie based authentication (SSO Light) should be allowed.
Returns:: The Moria url the client is to be redirected to.
Throws:: SOAPException - If anything fails during the call.

directNonInteractiveAuthentication

Attribute[] directNonInteractiveAuthentication(java.lang.String[] attributes,
                                               java.lang.String username,
                                               java.lang.String password)
                                               throws SOAPException

Performs direct non-interactive authentication. A redirect- and html-less login method. Only to be used in special cases where the client for some reason does not support the standard login procedure. Inherently insecure as the service will have knowledge of the plaintext password.

Parameters:: attributes - The attributes the service wants returned on login.; username - The user name of the user to be authenticated.; password - The password of the user to be authenticated.
Returns:: Array of attributes as requested.
Throws:: SOAPException - If anything fails during the call.

proxyAuthentication

Attribute[] proxyAuthentication(java.lang.String[] attributes,
                                java.lang.String proxyTicket)
                                throws SOAPException

Performs proxy authentication. Called by a subsystem to authenticate a user.

Parameters:: attributes - The attributes the service wants returned on login.; proxyTicket - The proxy ticket given to the calling system by its initiator.
Returns:: Array of attributes as requested.
Throws:: SOAPException - If anything fails during the call.

getProxyTicket

java.lang.String getProxyTicket(java.lang.String ticketGrantingTicket,
                                java.lang.String proxyServicePrincipal)
                                throws SOAPException

Gets a proxy ticket. A service may as part of the initial attribute request ask for a ticket granting ticket that later may be used in this call. The returned proxy ticket is to be handed over to the specified underlying system and may be used by that system only to authenticate the request.

Parameters:: ticketGrantingTicket - A TGT that has been issued previously.; proxyServicePrincipal - The service which the proxy ticket should be issued for.
Returns:: A proxy ticket.
Throws:: SOAPException - If anything fails during the call.

getUserAttributes

Attribute[] getUserAttributes(java.lang.String serviceTicket)
                              throws SOAPException

Gets user attributes. Called by the service when the user returns after a successful login.

Parameters:: serviceTicket - The ticket included in the return request issued by the client.
Returns:: Array of attributes as requested in initiateAuthentication.
Throws:: SOAPException - If anything fails during the call.

verifyUserExistence

boolean verifyUserExistence(java.lang.String username)
                            throws SOAPException

Verifies the existence of a given user in the underlying directories.

Parameters:: username - The username to be validated.
Returns:: true if the user is found.
Throws:: SOAPException - If anything fails during the call.