Interface IBPMUserAuthenticationService
-
Method Summary
Modifier and TypeMethodDescriptionauthenticate(String user, char[] password, String identityContext) authenticate is used for authenticating a user with the identity authentication service based on the specified user/password and returns a BPM context.authenticateOnBehalfOf(IBPMContext adminContext, String onBehalfOfUser) Admin can authenticate on behalf of another user, and get the BPM context for the user specified in onBehalfOfUsercreateContextFromRequestObject(Object request) createContextFromRequestObject is used for creating a context from a pre-authenticated environment such as a SSO based application.voiddestroyBPMContext is used for cleaning up a BPM context that is no longer needed.Gets BPM context for already authenticated user and whose identity is propagated to server The method returns valid context only if user identity is propagated to the service and context is still valid, else the method throwsBPMExceptionexception
-
Method Details
-
authenticate
authenticate is used for authenticating a user with the identity authentication service based on the specified user/password and returns a BPM context.If a
IBPMContextinstance is not used for within the timeout defined in the workflow configuration, it would become invalid and can't be used further in BPM service calls because a BPMException would be thrown. If this occurs a newIBPMContextinstance would have to be obtained. WhenIBPMContextinstance isn't needed any more (such as a logout from an application) it has to be destroyed to free up memory used in the service by that corresponding session. To destroy aIBPMContextinstance seedestroyBPMContext()method.- Parameters:
user- the name of the user who needs to be authenticatedpassword- the password of the user who needs to be authenticatedidentityContext- the identityContext (usually realm) of the user- Returns:
- IBPMContext the BPM context
- Throws:
BPMException- any exception thrown during authentication
-
authenticateOnBehalfOf
IBPMContext authenticateOnBehalfOf(IBPMContext adminContext, String onBehalfOfUser) throws BPMException Admin can authenticate on behalf of another user, and get the BPM context for the user specified in onBehalfOfUserIf a
IBPMContextinstance is not used for within the timeout defined in the workflow configuration, it would become invalid and can't be used further in BPM service calls because a BPMException would be thrown. If this occurs a newIBPMContextinstance would have to be obtained. WhenIBPMContextinstance isn't needed any more (such as a logout from an application) it has to be destroyed to free up memory used in the service by that corresponding session. To destroy aIBPMContextinstance seedestroyBPMContext()method.- Parameters:
IBPMContext- the BPM context of the adminonBehalfOfUser- The user on behalf of whom the context should be created- Returns:
- IBPMContext the BPM context for the user specified in onBehalfOfUser
- Throws:
BPMException- any exception thrown during authentication
-
getBPMContextForAuthenticatedUser
Gets BPM context for already authenticated user and whose identity is propagated to server The method returns valid context only if user identity is propagated to the service and context is still valid, else the method throwsBPMExceptionexceptionIf a
IBPMContextinstance is not used for within the timeout defined in the workflow configuration, it would become invalid and can't be used further in BPM service calls because a BPMException would be thrown. If this occurs a newIBPMContextinstance would have to be obtained. WhenIBPMContextinstance isn't needed any more (such as a logout from an application) it has to be destroyed to free up memory used in the service by that corresponding session. To destroy aIBPMContextinstance seedestroyBPMContext()method.- Returns:
IBPMContextobject.- Throws:
BPMException- any exception thrown during authentication
-
createContextFromRequestObject
createContextFromRequestObject is used for creating a context from a pre-authenticated environment such as a SSO based application. The user information is extracted from the authenticated environment and a bpm context is returned for that user (Object request (Either instance of PortletRequest or HttpServletRequest) is from an authenticated user)If a
IBPMContextinstance is not used for within the timeout defined in the workflow configuration, it would become invalid and can't be used further in BPM service calls because a BPMException would be thrown. If this occurs a newIBPMContextinstance would have to be obtained. WhenIBPMContextinstance isn't needed any more (such as a logout from an application) it has to be destroyed to free up memory used in the service by that corresponding session. To destroy aIBPMContextinstance seedestroyBPMContext()method.- Parameters:
request- The pre-authenticated HttpServletRequest/PortletRequest to create the workflow context for- Returns:
IBPMContextthe BPM context- Throws:
BPMException- any exception thrown during authentication
-
destroyBPMContext
destroyBPMContext is used for cleaning up a BPM context that is no longer needed. This will free up the memory used for storing the BPM context. This is used typically when a user logs out.- Parameters:
ctx- the BPM context- Throws:
BPMException- any exception thrown during authentication
-