Package oracle.tip.pc.services.identity
Interface BPMProvider
public interface BPMProvider
BPMProvider defines Identity Service Provider Interface-
Method Summary
Modifier and TypeMethodDescriptionvoidauthenticateUser(String name, String password) Authenticates the user in the system.Gets all the permissions associated with all the ApplicationsgetAllPermissions(String appName) Gets all the permissions associated with the ApplicationGets the default realm namegetGrantedRoles(BPMPrincipal principal, boolean direct) Gets granted roles to principalgetGrantedRoles(BPMPrincipal bpmPrincipal, boolean direct, String appName) Gets granted roles to principal for a given applicationgetGrantees(String roleName, boolean direct) Gets all grantee for given group/role namegetGranteesToAppRole(String appRole, String appName, boolean direct, Set roleChain) Gets all grantees for given application rolegetKeyStoreType(String policyStoreTypeProperty) getLocaleSpecificGroupNames(List<String> groupNames, Locale locale) Gets locale specific names of the groupsgetLocaleSpecificUserNames(List<String> usersNames, Locale locale) Gets locale specific names of the usersgetLocalizedGroupNames(List<String> groupsNames, List<Locale> locales) Gets map of localized user's display name for given local listgetLocalizedUserNames(List<String> usersNames, List<Locale> locales) Gets map of localized user's display name for given local listgetManagedRoles(BPMIdentity id, boolean direct) Gets a list of managed roles for an identitygetNameAttribute(String entityName) Get object Attributes return map - an attribute map containing the attributes of the object.getOwnedRoles(BPMPrincipal principal, boolean direct) Get roles owned by BPMPrincipalGets users who own given rolegetPermissions(BPMIdentity identity) Gets the permissions associated with an identitygetPermissions(BPMIdentity identity, String appName) Gets the permissions associated with an identity for a given applicationgetProviderAttributeName(Class classifier, String attrName) Gets provider attribute name.Gets provider config associated with this provider.Gets the active realm namegetRoleManagers(BPMRole role, boolean direct) Gets a list of managers for a group.getRoles(RoleClassifier roleType) Gets Roles of the specified type.Gets the list of user attribute names that are searchablelonggetTenantGUID(String tenantname) Gets tenant id from tenantnamegetTenantName(String tenantGUID) Gets tenant name from tenantidgetUsers()Gets all usersbooleanhasPermission(BPMIdentity identity, Permission perm, String appName) Check if identity Has permissionbooleanisAPPIDUser(String username) lookupAppRole(String appRoleName, String appName) Looks up BPMGroup in specified realm by role namelookupGroup(String name) Looks up BPMGroup in specified realm by role namelookupRole(String name) Looks up BPMRole in specified realm by role namelookupUser(String name) Looks up BPMUser in the scpecified logical realm using the given user namepopulateDetails(BPMRole role) Loads BPMRole Details.populateDetails(BPMUser user) Loads BPMUser DetailssearchRoles(RoleClassifier classifier, String attrName, String attrValue) Searches BPMRole based on teh classifier and attribute name-value pair.searchRoles(RoleClassifier classifier, SearchFilter filter) Searches BPMRole based on the classifier and search filter.searchUsers(String attrName, String attrValue) Searches BPMUsers with the given attribute name and value pair.searchUsers(SearchFilter filter) Searches BPMUsers based on the criteria specified in teh search filter.
-
Method Details
-
getProviderCfg
ProviderCfg getProviderCfg()Gets provider config associated with this provider.- Returns:
- config
-
getDefaultRealmName
Gets the default realm name- Returns:
- default realm name
- Throws:
BPMIdentityException- If exception condition occurs.
-
getRealmName
String getRealmName()Gets the active realm name- Returns:
- realm name
- Throws:
BPMIdentityException- If exception condition occurs.
-
lookupUser
Looks up BPMUser in the scpecified logical realm using the given user name- Parameters:
name- user name- Throws:
BPMIdentityException- If exception condition occurs.BPMIdentityNotFoundException- If user is not found
-
lookupGroup
Looks up BPMGroup in specified realm by role name- Parameters:
name- group name- Throws:
BPMIdentityNotFoundException- If group is not foundBPMIdentityException- If exception condition occurs.
-
lookupAppRole
BPMAppRole lookupAppRole(String appRoleName, String appName) throws BPMIdentityException, BPMIdentityNotFoundException Looks up BPMGroup in specified realm by role name- Parameters:
appRoleName- application role nameappName- application name- Throws:
BPMIdentityNotFoundException- If application role is not foundBPMIdentityException- If exception condition occurs.
-
lookupRole
Looks up BPMRole in specified realm by role name- Parameters:
name- a role name- Throws:
BPMIdentityNotFoundException- If role is not foundBPMIdentityException- If exception condition occurs.
-
getUsers
Gets all users- Throws:
BPMIdentityException- If exception condition occurs.
-
getLocaleSpecificUserNames
List<String> getLocaleSpecificUserNames(List<String> usersNames, Locale locale) throws BPMIdentityException, BPMIdentityNotFoundException Gets locale specific names of the users- Parameters:
userNames- List of userNamesLocale-- Returns:
- List of localeNames For each entry in the input list (userNames) the corresponding localeName is returned in the same position in the ouput list. In case a non-exisiting username(s) is/are provided in the input, null will be returned as the localized name for that/those user(s).
- Throws:
BPMIdentityNotFoundException- If user is not foundBPMIdentityException- If exception condition occurs.
-
getLocalizedUserNames
Map<String,Map<Locale, getLocalizedUserNamesString>> (List<String> usersNames, List<Locale> locales) throws BPMIdentityException Gets map of localized user's display name for given local list- Parameters:
usersNames- List of userNameslocales- List of Locale- Returns:
- Map of user's display name for given local list
- Throws:
BPMIdentityNotFoundExceptionBPMIdentityException
-
getLocaleSpecificGroupNames
List<String> getLocaleSpecificGroupNames(List<String> groupNames, Locale locale) throws BPMIdentityException, BPMIdentityNotFoundException Gets locale specific names of the groups- Parameters:
userNames- List of groupNamesLocale-- Returns:
- List of localeNames For each entry in the input list (groupNamess) the corresponding localeName is returned in the same position in the ouput list. In case a non-exisiting groupname(s) is/are provided in the input, null will be returned as the localized name for that/those group(s).
- Throws:
BPMIdentityNotFoundException- If group is not foundBPMIdentityException- If exception condition occurs.
-
getLocalizedGroupNames
Map<String,Map<Locale, getLocalizedGroupNamesString>> (List<String> groupsNames, List<Locale> locales) throws BPMIdentityException Gets map of localized user's display name for given local list- Parameters:
groupsNames- List of userNameslocales- List of Locale- Returns:
- Map of user's display name for given local list
- Throws:
BPMIdentityNotFoundExceptionBPMIdentityException
-
getRoles
Gets Roles of the specified type.- Parameters:
roleType- a role classifier- Throws:
BPMIdentityException- If exception condition occurs.
-
getGrantedRoles
Gets granted roles to principal- Parameters:
principal- a BPMPrincipal objectdirect- a boolean flag. if true return direct granted role, else all- Returns:
- Set of BPMRole objects
- Throws:
BPMIdentityException- If exception condition occurs.
-
getGrantedRoles
Set getGrantedRoles(BPMPrincipal bpmPrincipal, boolean direct, String appName) throws BPMIdentityException Gets granted roles to principal for a given application- Parameters:
principal- a BPMPrincipal objectdirect- a boolean flag. if true return direct granted role, else allappName- a String, the name of the application- Returns:
- Set of BPMRole objects
- Throws:
BPMIdentityException- If exception condition occurs.
-
getGrantees
Set getGrantees(String roleName, boolean direct) throws BPMIdentityException, BPMIdentityNotFoundException Gets all grantee for given group/role name- Parameters:
roleName- a role namedirect- a boolean flag. If true method returns only direct participans, else all.- Returns:
- Set of BPMUser objects for given group/role name
- Throws:
BPMIdentityException- If exception condition occurs.BPMIdentityNotFoundException
-
searchUsers
List searchUsers(String attrName, String attrValue) throws BPMIdentityException, BPMUnsupportedAttributeException Searches BPMUsers with the given attribute name and value pair.- Parameters:
attrName-attrValue-- Returns:
- List of BPMUser found according to search criteria
- Throws:
BPMIdentityException- If exception condition occurs.BPMUnsupportedAttributeException
-
searchUsers
Searches BPMUsers based on the criteria specified in teh search filter.- Parameters:
filter- a SearchFilter instance.- Returns:
- List of BPMUser found according to search criteria
- Throws:
BPMIdentityException- If exception condition occurs.BPMUnsupportedAttributeException
-
searchRoles
List searchRoles(RoleClassifier classifier, String attrName, String attrValue) throws BPMIdentityException, BPMUnsupportedAttributeException Searches BPMRole based on teh classifier and attribute name-value pair.- Parameters:
classifier- RoleClassifierattrName-attrValue-- Returns:
- List of BPMRole found according to search criteria
- Throws:
BPMIdentityException- If exception condition occurs.BPMUnsupportedAttributeException
-
searchRoles
List searchRoles(RoleClassifier classifier, SearchFilter filter) throws BPMIdentityException, BPMUnsupportedAttributeException Searches BPMRole based on the classifier and search filter.- Parameters:
classifier- RoleClassifierfilter- a SearchFilter- Returns:
- List of BPMRole found according to search criteria
- Throws:
BPMIdentityException- If exception condition occurs.BPMUnsupportedAttributeException
-
populateDetails
Loads BPMRole Details. These include the various attributes.- Returns:
- BPMRole object
- Throws:
BPMIdentityException- If exception condition occurs.BPMIdentityNotFoundException- If role is not found
-
populateDetails
Loads BPMUser Details- Parameters:
user- a BPMUser to populate- Returns:
- BPMUser object
- Throws:
BPMIdentityException- If exception condition occurs.BPMIdentityNotFoundException- if role is not found
-
getOwnedRoles
Get roles owned by BPMPrincipal- Parameters:
principal- The owner principal.direct- a boolean flag. If true method returns only directly owned roles.- Returns:
- a set groups.
- Throws:
BPMIdentityException
-
getOwners
Gets users who own given role- Parameters:
role- The role whose owners are to be founddirect- a boolean flag, if true only direct owners are returned, else all- Returns:
- set of BPMUser objects
- Throws:
BPMIdentityException- If exception condition occurs.
-
getRoleManagers
Gets a list of managers for a group.- Parameters:
role- The role for which the managers are to be fetcheddirect- a boolean flag, if true only direct managers are returned, else all- Returns:
- A list of BPMIdentity
- Throws:
BPMIdentityException
-
getManagedRoles
Gets a list of managed roles for an identity- Parameters:
id- The identity for which managed roles are to be fetcheddirect- a boolean flag, if true only direct managed roles are returned, else all- Returns:
- A list of BPMRole
- Throws:
BPMIdentityException
-
getObjectAttributes
Get object Attributes return map - an attribute map containing the attributes of the object.- Throws:
BPMIdentityException
-
authenticateUser
void authenticateUser(String name, String password) throws BPMIdentityException, BPMAuthenticationException Authenticates the user in the system.- Parameters:
name- The name of the user to be authenticated.password- The password of the user to be authenticated.- Throws:
BPMIdentityException- If exception condition occurs.BPMAuthenticationException- If the user could not be authenticated or if an exception condition occured during authentication.
-
getProviderAttributeName
Gets provider attribute name. Provider has to map provider specifc attribute names to Identity Service attribute name for all pre-defined attributes- Parameters:
classifier-attrName-- Returns:
-
hasPermission
boolean hasPermission(BPMIdentity identity, Permission perm, String appName) throws BPMIdentityException Check if identity Has permission- Parameters:
identity- the identityperm- The permissionappName- Name of the application- Returns:
- a boolean value
- Throws:
BPMIdentityException- if an exception condition occured
-
getPermissions
Gets the permissions associated with an identity- Parameters:
identity- the identity- Returns:
- a PermissionCollection
- Throws:
BPMIdentityException- if an exception condition occured
-
getPermissions
PermissionCollection getPermissions(BPMIdentity identity, String appName) throws BPMIdentityException Gets the permissions associated with an identity for a given application- Parameters:
identity- the identityappName- Name of the application- Returns:
- a PermissionCollection
- Throws:
BPMIdentityException- if an exception condition occured
-
getAllPermissions
Gets all the permissions associated with all the Applications- Returns:
- PermissionCollection
- Throws:
BPMIdentityException- if an exception condition occured
-
getAllPermissions
Gets all the permissions associated with the Application- Parameters:
appName- Name of the application- Returns:
- PermissionCollection
- Throws:
BPMIdentityException- if an exception condition occured
-
getTenantName
Gets tenant name from tenantid- Throws:
BPMIdentityException
-
getSearchableUserAttributes
Gets the list of user attribute names that are searchable- Returns:
- list of attribute names
- Throws:
BPMIdentityException- if an exception condition occured
-
getTenantGUID
Gets tenant id from tenantname- Throws:
BPMIdentityException
-
isAPPIDUser
- Throws:
BPMIdentityException
-
getGranteesToAppRole
Set<BPMIdentity> getGranteesToAppRole(String appRole, String appName, boolean direct, Set roleChain) throws BPMIdentityException, BPMIdentityNotFoundException Gets all grantees for given application role- Parameters:
appRole- The name of application roleappName- an application namedirect- a boolean flag. The method returns direct grantees if direct flag is true, else allroleChain- an role chain- Returns:
- Set of
BPMIdentityobjects - Throws:
BPMIdentityException- If exception condition occursBPMIdentityNotFoundException- Since:
- 11
-
getPolicyStoreType
- Throws:
BPMIdentityException
-
getKeyStoreType
- Throws:
BPMIdentityException
-
getNameAttribute
- Throws:
BPMIdentityException
-