Contains classes and methods for authentication for your application.
Interface Summary Interface Description AccountInterface used for account objects that combines authentication info and authorization info. AuthenticationInfoInterface used for objects that contain Authentication info.
Class Summary Class Description AuthManagerManages all tasks related to a user account including sessions and user roles. LoginErrorMessagesAn object containing all login error messages for the login dialog. SessionAn object representing a user login session. SessionManagerManages a login sessions to allow a users to login to your application. SessionManagerTest SimpleAuthenticationInfoA simple implementation of the AuthenticationInfo interface. SubjectManages all tasks related to the currently logged in user account. SubjectTest UserAccountAn object representing a user account. UserManagerManages all user accounts in the database. UserManagerTest UsernamePasswordTokenA simple username/password authentication token to support the most widely-used authentication mechanism. UserRoleAn object representing a user account role. UserRoleManagerManages all user account roles. UserRoleManagerTest UserRoleTest
Enum Summary Enum Description UserRoleManager.SystemUserRolesA List of the implemented system user roles.
Exception Summary Exception Description AccountExceptionException thrown due to a problem with the account under which an authentication attempt is being executed. AuthenticationExceptionGeneral exception thrown due to an error during the Authentication process. ConcurrentAccessExceptionThrown when an authentication attempt has been received for an account that has already been authenticated (i.e. CredentialsExceptionException thrown due to a problem with the credential(s) submitted for an account during the authentication process. DisabledAccountExceptionThrown when attempting to authenticate and the corresponding account has been disabled for some reason. ExcessiveAttemptsExceptionThrown when a system is configured to only allow a certain number of authentication attempts over a period of time and the current session has failed to authenticate successfully within that number. ExpiredCredentialsExceptionThrown during the authentication process when the system determines the submitted credential(s) has expired and will not allow login. IncorrectCredentialsExceptionThrown when attempting to authenticate with credential(s) that do not match the actual credentials associated with the account principal. LockedAccountExceptionA special kind of
DisabledAccountException, this exception is thrown when attempting to authenticate and the corresponding account has been disabled explicitly due to being locked.
PasswordHashingFailedExceptionThrown to indicate that an exception occurred while hashing a user password. UnauthenticatedExceptionException thrown when attempting to execute an authorization action when a successful authentication hasn't yet occurred. UnknownAccountExceptionThrown when attempting to authenticate with a principal that doesn't exist in the system (e.g. UserManagerExceptionThrown to indicate that a user manager checked exception was thrown, usually a SQLException.