Package | Description |
---|---|
com.iplanet.am.sdk |
This package contains interfaces and implementation for User/Identity
Management.
|
com.iplanet.services.cdm |
Provides the classes for implementing services and applications
serving multiple clients to OpenSSO.
|
com.iplanet.services.ldap.event |
Classes to handle LDAP persistent searches.
|
com.iplanet.sso |
This package contains classes fro accessing the Single Sign On service and
representing a SSOToken(Single Sign On) which contains the information
related to session.
|
com.iplanet.sso.providers.dpro |
This package contains classes that represent SSOProvider
|
com.iplanet.ums |
Deprecated classes for UMS.
|
com.iplanet.ums.cos |
Deprecated classes for UMS.
|
com.iplanet.ums.dctree |
Deprecated classes for UMS.
|
com.sun.identity.authentication |
Provides interfaces and classes for writing a Remote Java client application
to authenticate into OpenSSO.
|
com.sun.identity.authentication.internal |
Internal classes to handle Authentication.
|
com.sun.identity.authentication.server |
This package contains the classes that represent server side
functionality such as the implementation of request for
authenticating, user credential callbacks.
|
com.sun.identity.authentication.spi |
Provides interfaces and classes for writing a supplemental authentication
module to plug into OpenSSO.
|
com.sun.identity.idm |
Provides classes for accessing the Identity Repository interfaces.
|
com.sun.identity.policy |
Provides classes for policy administration and evaluation.
|
com.sun.identity.policy.client |
Provides classes necessary for a remote client to evaluate policy decisions.
|
com.sun.identity.policy.interfaces |
Deprecated interfaces for writing custom Policy plugins for Conditions,
Subjects, Referrals, ResponseProviders and Resources.
|
com.sun.identity.security |
Provides the classes to be used for performing privileged operations (like
getting the OpenSSO administrator's DN and password).
|
com.sun.identity.sm |
Provides classes for accessing the Service Management Service (SMS).
|
com.sun.identity.wss.provider |
Defines Web Services provider classes.
|
com.sun.identity.wss.security |
Defines Web Services Security Token specification and Token interfaces
with their respective implementation classes for different WS-* Security
Tokens.
|
org.forgerock.openam.session.service |
Defines interfaces and classes for the Session Service.
|
org.forgerock.openam.upgrade |
Defines interfaces and classes to perform OpenAM system upgrade.
|
Modifier and Type | Method and Description |
---|---|
protected static void |
AMStoreConnection.addToOrgMapCache(SSOToken stoken,
String dn)
Deprecated.
Protected method to update the
orgMapCache |
protected static int |
AMStoreConnection.daysSinceModified(SSOToken stoken,
String entryDN)
Deprecated.
Protected method to obtain the number of days since this DN was last
modified.
|
Map |
AMCallBack.getAttributes(SSOToken token,
String entryDN,
Set attrNames)
Deprecated.
This method provides a mechanism for applications to obtain attributes
external to the Access Manager data store.
|
ServiceSchemaManager |
AMEntityType.getServiceSchemaManager(SSOToken token)
Deprecated.
Returns the schema manager for the service defined to display this
profile in the console.
|
void |
AMCallBack.postProcessAddUser(SSOToken token,
String entryDN,
Set members,
int objectType)
Deprecated.
Method which gets invoked after users are added to a role/group.
|
void |
AMCallBack.postProcessCreate(SSOToken token,
String entryDN,
Map attributes,
int objectType)
Deprecated.
Method which gets invoked after a entry create operation is performed.
|
void |
AMCallBack.postProcessDelete(SSOToken token,
String entryDN,
Map attributes,
boolean softDelete,
int objectType)
Deprecated.
Method which gets invoked after a entry entry is deleted.
|
void |
AMCallBack.postProcessModify(SSOToken token,
String entryDN,
Map oldAttributes,
Map newAttributes,
int objectType)
Deprecated.
Method which gets invoked after a entry is modified
|
void |
AMCallBack.postProcessRemoveUser(SSOToken token,
String entryDN,
Set members,
int objectType)
Deprecated.
Method which gets invoked after users are removed from a role/group.
|
Set |
AMCallBack.preProcessAddUser(SSOToken token,
String entryDN,
Set members,
int objectType)
Deprecated.
Method which gets called before users are added to a role/group.
|
Map |
AMCallBack.preProcessCreate(SSOToken token,
String entryDN,
Map attributes,
int objectType)
Deprecated.
Method which gets invoked before a create operation is performed.
|
void |
AMCallBack.preProcessDelete(SSOToken token,
String entryDN,
Map attributes,
boolean softDeleteEnabled,
int objectType)
Deprecated.
Method which gets invoked before an entry is deleted.
|
Map |
AMCallBack.preProcessModify(SSOToken token,
String entryDN,
Map oldAttributes,
Map newAttributes,
int objectType)
Deprecated.
Method which gets invoked before a modify operation is performed.
|
Set |
AMCallBack.preProcessRemoveUser(SSOToken token,
String entryDN,
Set members,
int objectType)
Deprecated.
Method which gets called before users are removed from a role/group.
|
Constructor and Description |
---|
AMEntryExistsException(SSOToken token,
String errorCode)
Deprecated.
Protected constructor for convenience.
|
AMEntryExistsException(SSOToken token,
String errorCode,
UMSException ue)
Deprecated.
Protected constructor for convenience.
|
AMException(SSOToken token,
String errorCode)
Deprecated.
Convenience method (protected)
|
AMException(SSOToken token,
String errorCode,
UMSException ue)
Deprecated.
Constructs a new
AMException with detailed message. |
AMPostCallBackException(SSOToken token,
String errorCode)
Deprecated.
Constructs a new
AMPostCallBackException with detailed
message. |
AMPostCallBackException(SSOToken token,
String errorCode,
UMSException ue)
Deprecated.
Constructs a new
AMPostCallBackException with detailed
message. |
AMPreCallBackException(SSOToken token,
String errorCode)
Deprecated.
Constructs a new
AMPreCallBackException with detailed
message. |
AMPreCallBackException(SSOToken token,
String errorCode,
UMSException ue)
Deprecated.
Constructs a new
AMPreCallBackException with detailed
message. |
AMStoreConnection(SSOToken ssoToken)
Deprecated.
Gets the connection to the Sun Java System Access Manager data store if
the Session is valid.
|
Modifier and Type | Method and Description |
---|---|
Client |
ClientTypesManager.getClientInstance(String clientType,
SSOToken token)
Gets client object for specified client type with specified token
|
void |
ClientTypesManager.store(SSOToken token)
Save changed to persistent store.
|
Modifier and Type | Method and Description |
---|---|
protected String |
EventService.addListener(SSOToken token,
IDSEventListener listener,
String base,
int scope,
String filter,
int operations)
Adds a listener to the directory.
|
Modifier and Type | Method and Description |
---|---|
SSOToken |
SSOTokenManager.createSSOToken(javax.servlet.http.HttpServletRequest request)
Creates a single sign on token from
HttpServletRequest |
SSOToken |
SSOTokenManager.createSSOToken(String tokenId)
Creates a single sign on token from the single sign
on token ID.
|
SSOToken |
SSOTokenManager.createSSOToken(String tokenId,
String clientIP)
Creates a single sign on token from the single sign
on token ID.
|
SSOToken |
SSOTokenEvent.getToken()
Returns the
SSOToken associated with the SSO Token event. |
Modifier and Type | Method and Description |
---|---|
String |
SSOToken.dereferenceRestrictedTokenID(SSOToken requester,
String restrictedId)
Given a restricted token, returns the SSOTokenID of the master token
can only be used if the requester is an app token
|
void |
SSOTokenManager.destroyToken(SSOToken token)
Destroys a single sign on token.
|
void |
SSOTokenManager.destroyToken(SSOToken destroyer,
SSOToken destroyed)
Destroys a single sign on token.
|
Set |
SSOTokenManager.getValidSessions(SSOToken requester,
String server)
Returns a list of single sign on token objects
which correspond to valid Sessions accessible to requester.
|
boolean |
SSOTokenManager.isValidToken(SSOToken token)
Returns true if a single sign on token is valid.
|
boolean |
SSOTokenManager.isValidToken(SSOToken token,
boolean resetIdleTime)
Returns true if a single sign on token is valid, resetting the token's idle time
if and only if the flag allows us to.
|
void |
SSOTokenManager.refreshSession(SSOToken token)
Refresh the Session corresponding to the single
sign on token from the Session Server.
|
void |
SSOTokenManager.validateToken(SSOToken token)
Returns true if the single sign on token is valid.
|
Modifier and Type | Method and Description |
---|---|
void |
SSOProviderImpl.destroyToken(SSOToken destroyer,
SSOToken destroyed)
Destroys a single sign on token.
|
Set |
SSOProviderImpl.getValidSessions(SSOToken requester,
String server)
Returns a list of single sign on token objects
which correspond to valid Sessions accessible to requester.
|
Modifier and Type | Method and Description |
---|---|
static void |
PersistentObject.addAttributeValue(SSOToken token,
Guid guid,
String name,
String value)
Adds value for an attribute and saves the change in the database.
|
static PersistentObject |
UMSObject.getObject(SSOToken token,
Guid guid)
Returns the persistent object of correct subclass, for the given id.
|
static PersistentObject |
UMSObject.getObject(SSOToken token,
Guid guid,
String[] attrNames)
Returns the persistent object of correct subclass, for the given ID.
|
static PersistentObject |
UMSObject.getObjectHandle(SSOToken token,
Guid guid)
Return a PersistentObject given an authenticated token and guid.
|
static void |
PersistentObject.removeAttributeValue(SSOToken token,
Guid guid,
String name,
String value)
Removes value for an attribute and saves the change in the database.
|
static void |
UMSObject.removeObject(SSOToken token,
Guid guid)
Removes an object identified by the given ID.
|
Modifier and Type | Method and Description |
---|---|
static COSManager |
COSManager.getCOSManager(SSOToken token,
Guid guid)
This method returns an instance of a COS Manager.
|
Constructor and Description |
---|
DomainComponent(SSOToken token,
String dcName)
Given a name for domain component, construct
the dc object in memory
|
DomainComponentTree(SSOToken token,
Guid dcRoot)
Constructs a
DomainComponentTree with an authenticated
prinicipal and an identification of the root of the dc index tree. |
Modifier and Type | Method and Description |
---|---|
SSOToken |
AuthContext.getSSOToken()
Returns the Single-Sign-On (SSO) Token for the authenticated
user.
|
Constructor and Description |
---|
AuthContext(SSOToken ssoToken)
Constructs an instance of
AuthContext for a given
organization name, or sub organization name contained in the
single sign on token. |
AuthContext(SSOToken ssoToken,
boolean forceAuth)
Constructs an instance of
AuthContext for a given
organization name, or sub organization name contained in the
single sign on token. |
Modifier and Type | Method and Description |
---|---|
SSOToken |
AuthContext.getSSOToken()
Method to get the Single-Sign-On (SSO) Token.
|
Modifier and Type | Method and Description |
---|---|
SSOToken |
AuthContextLocal.getSSOToken()
Returns the Single-Sign-On (SSO) Token for the authenticated
user.Single-Sign-On token can be used as the authenticated token.
|
Modifier and Type | Method and Description |
---|---|
SSOToken |
AMLoginModule.getSSOSession()
Returns an administration SSOToken for use the OpenAM APIs.
|
Modifier and Type | Method and Description |
---|---|
Set<SSOToken> |
AMLoginModule.getUserSessions(String userName)
Returns the set of SSOTokens for a specified user
|
Modifier and Type | Method and Description |
---|---|
void |
AMPostAuthProcessInterface.onLoginSuccess(Map requestParamsMap,
javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
SSOToken ssoToken)
Post processing on successful authentication.
|
void |
AMPostAuthProcessInterface.onLogout(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
SSOToken ssoToken)
Post processing on Logout.
|
Modifier and Type | Method and Description |
---|---|
abstract int |
IdRepo.addListener(SSOToken token,
IdRepoListener listener)
Adds a listener for changes in the repository
|
abstract void |
IdRepo.assignService(SSOToken token,
IdType type,
String name,
String serviceName,
SchemaType stype,
Map<Set> attrMap)
This method is used to assign a service to the given identity.
|
void |
IdRepo.changePassword(SSOToken token,
IdType type,
String name,
String attrName,
String oldPassword,
String newPassword)
Changes password of identity.
|
abstract String |
IdRepo.create(SSOToken token,
IdType type,
String name,
Map<Set> attrMap)
Creates an identity.
|
abstract void |
IdRepo.delete(SSOToken token,
IdType type,
String name)
Deletes an identity.
|
abstract Set |
IdRepo.getAssignedServices(SSOToken token,
IdType type,
String name,
Map<Set> mapOfServicesAndOCs)
Returns the set of services assigned to this identity.
|
abstract Map<Set> |
IdRepo.getAttributes(SSOToken token,
IdType type,
String name)
Returns all attributes and values of name object
|
abstract Map<Set> |
IdRepo.getAttributes(SSOToken token,
IdType type,
String name,
Set attrNames)
Returns requested attributes and values of name object.
|
abstract Map<byte[][]> |
IdRepo.getBinaryAttributes(SSOToken token,
IdType type,
String name,
Set attrNames)
Returns requested binary attributes as an array of bytes.
|
abstract Map<byte[][]> |
IdRepo.getBinaryServiceAttributes(SSOToken token,
IdType type,
String name,
String serviceName,
Set attrNames)
Returns the requested binary attribute values of the service attributes
as an array of bytes.
|
String |
IdRepo.getFullyQualifiedName(SSOToken token,
IdType type,
String name)
Returns the fully qualified name for the identity.
|
static AMIdentity |
IdUtils.getIdentity(SSOToken token) |
static AMIdentity |
IdUtils.getIdentity(SSOToken token,
String univId) |
abstract Set |
IdRepo.getMembers(SSOToken token,
IdType type,
String name,
IdType membersType)
* Returns the memberships of an identity.
|
abstract Set |
IdRepo.getMemberships(SSOToken token,
IdType type,
String name,
IdType membershipType)
Returns the memberships of an identity.
|
abstract Map<Set> |
IdRepo.getServiceAttributes(SSOToken token,
IdType type,
String name,
String serviceName,
Set attrNames)
Returns the attribute values of the service attributes.
|
boolean |
IdRepo.isActive(SSOToken token,
IdType type,
String name)
Returns true if the
name object is active. |
abstract boolean |
IdRepo.isExists(SSOToken token,
IdType type,
String name)
Returns true if the
name object exists in the data store. |
abstract void |
IdRepo.modifyMemberShip(SSOToken token,
IdType type,
String name,
Set members,
IdType membersType,
int operation)
Modify membership of the identity.
|
abstract void |
IdRepo.modifyService(SSOToken token,
IdType type,
String name,
String serviceName,
SchemaType sType,
Map<Set> attrMap)
Modifies the attribute values of the service attributes.
|
abstract void |
IdRepo.removeAttributes(SSOToken token,
IdType type,
String name,
Set attrNames)
Removes the attributes from the identity.
|
abstract RepoSearchResults |
IdRepo.search(SSOToken token,
IdType type,
String pattern,
int maxTime,
int maxResults,
Set returnAttrs,
boolean returnAllAttrs,
int filterOp,
Map<Set> avPairs,
boolean recursive)
Search for specific type of identities.
|
abstract void |
IdRepo.setActiveStatus(SSOToken token,
IdType type,
String name,
boolean active)
Sets the object's status to
active . |
abstract void |
IdRepo.setAttributes(SSOToken token,
IdType type,
String name,
Map<Set> attributes,
boolean isAdd)
Set the values of attributes of the identity.
|
abstract void |
IdRepo.setBinaryAttributes(SSOToken token,
IdType type,
String name,
Map<byte[][]> attributes,
boolean isAdd)
Set the values of binary attributes the identity.
|
abstract void |
IdRepo.unassignService(SSOToken token,
IdType type,
String name,
String serviceName,
Map<Set> attrMap)
If the service is already assigned to the identity then
this method unassigns the service and removes the related
attributes from the entry.
|
Constructor and Description |
---|
AMIdentity(SSOToken ssotoken) |
AMIdentity(SSOToken ssotoken,
String universalId) |
AMIdentityRepository(SSOToken ssotoken,
String realmName) |
Modifier and Type | Method and Description |
---|---|
void |
Policy.addRealmSubject(SSOToken token,
String subjectName,
String realmName,
boolean exclusive)
Deprecated.
Adds a reference in the policy to a Subject defined at the realm.
|
PolicyDecision |
PolicyEvaluator.getPolicyDecision(SSOToken token,
String resourceName,
Set actionNames,
Map envParameters)
Deprecated.
Evaluates privileges of the user to perform the specified actions
on the specified resource.
|
Set |
PolicyEvaluator.getProtectedResourcesIgnoreConditions(SSOToken token,
String rootResource)
Deprecated.
Gets protected resources for a user identified by single sign on token
Conditions defined in the policies are ignored while
computing protected resources.
|
ProxyPolicyEvaluator |
ProxyPolicyEvaluatorFactory.getProxyPolicyEvaluator(SSOToken token,
String serviceType)
Deprecated.
Gets an instance of
ProxyPolicyEvaluator . |
ResourceResult |
PolicyEvaluator.getResourceResult(SSOToken token,
String resourceName,
String scope,
Map envParameters)
Deprecated.
Use
getResourceResults() |
Set |
PolicyEvaluator.getResourceResults(SSOToken token,
String resourceName,
String scope,
Map envParameters)
Deprecated.
Gets resource result objects given a resource name.
|
boolean |
PolicyEvaluator.isAllowed(SSOToken token,
String resourceName,
String actionName,
Map envParameters)
Deprecated.
Evaluates simple privileges of boolean type.
|
void |
Policy.store(SSOToken token,
String name)
Deprecated.
Stores the policy object in a persistent data store
under the organization, sub-organization or a container
object, specified as a parameter.
|
Constructor and Description |
---|
PolicyManager(SSOToken token)
Deprecated.
Constructor for
PolicyManager for the
top (or root) organization. |
PolicyManager(SSOToken token,
String name)
Deprecated.
Constructor for
PolicyManager for the
specified organization, sub organization or a container object. |
Modifier and Type | Method and Description |
---|---|
PolicyDecision |
PolicyEvaluator.getPolicyDecision(SSOToken token,
String resourceName,
Set actionNames,
Map envParameters)
Evaluates privileges of the user to perform the specified actions
on the specified resource.
|
boolean |
PolicyEvaluator.isAllowed(SSOToken token,
String resourceName,
String actionName,
Map envParameters)
Evaluates simple privileges of boolean type.
|
Modifier and Type | Method and Description |
---|---|
ConditionDecision |
Condition.getConditionDecision(SSOToken token,
Map<Set> env)
Deprecated.
Gets the decision computed by this condition object, based on the
Map of environment parameters |
PolicyDecision |
Referral.getPolicyDecision(SSOToken token,
String resourceType,
String resourceName,
Set actionNames,
Map envParameters)
Deprecated.
Gets policy results
|
Set |
Referral.getResourceNames(SSOToken token,
String serviceTypeName,
String resourceName)
Deprecated.
Gets resource names that are exact matches, sub resources or
wild card matches of argument resource name.
|
Map |
ResponseProvider.getResponseDecision(SSOToken token,
Map env)
Deprecated.
Gets the response attributes computed by this ResponseProvider object,
based on the
SSOToken and Map of
environment parameters. |
ValidValues |
Subject.getValidValues(SSOToken token)
Deprecated.
Returns a list of possible values for the
Subject
. |
ValidValues |
Referral.getValidValues(SSOToken token)
Deprecated.
Gets the valid values for this referral
|
ValidValues |
Subject.getValidValues(SSOToken token,
String pattern)
Deprecated.
Returns a list of possible values for the
Subject
that satisfy the given pattern . |
ValidValues |
Referral.getValidValues(SSOToken token,
String pattern)
Deprecated.
Gets the valid values for this referral
matching a pattern
|
Syntax |
Subject.getValueSyntax(SSOToken token)
Deprecated.
Returns the syntax of the values the
Subject implementation can have. |
Syntax |
Referral.getValueSyntax(SSOToken token)
Deprecated.
Gets the syntax for the value
|
boolean |
Subject.isMember(SSOToken token)
Deprecated.
Determines if the user belongs to this instance
of the
Subject object. |
Modifier and Type | Method and Description |
---|---|
SSOToken |
AppSSOTokenProvider.getAppSSOToken()
Returns application single sign on token.
|
SSOToken |
AdminTokenAction.run() |
Modifier and Type | Method and Description |
---|---|
static void |
OrganizationConfigManager.loadDefaultServices(SSOToken token,
OrganizationConfigManager ocm)
Loads default services to a newly created realm
|
Constructor and Description |
---|
OrganizationConfigManager(SSOToken token,
String orgName)
Constructor to obtain an instance of
OrganizationConfigManager
for an organization by providing
an authenticated identity of the user. |
ServiceConfigManager(SSOToken token,
String serviceName,
String version)
Creates an instance of
ServiceConfigManager for the given service and version. |
ServiceManager(SSOToken token)
Creates an instance of
ServiceManager . |
ServiceSchemaManager(SSOToken token,
String serviceName,
String version)
Creates an instance of
ServiceSchemaManager for the given service and version
pair. |
Modifier and Type | Field and Description |
---|---|
protected static SSOToken |
TrustAuthorityConfig.customAdminToken |
protected static SSOToken |
ProviderConfig.customAdminToken |
Modifier and Type | Method and Description |
---|---|
protected abstract void |
TrustAuthorityConfig.init(String name,
String type,
SSOToken ssoToken)
Initialize the trust authority.
|
protected abstract void |
ProviderConfig.init(String providerName,
String providerType,
SSOToken token,
boolean isEndPoint)
Initializes the provider.
|
void |
TrustAuthorityConfig.setAdminToken(SSOToken adminToken)
Sets the admin token.
|
void |
ProviderConfig.setAdminToken(SSOToken adminToken)
Sets the admin token.
|
Modifier and Type | Method and Description |
---|---|
static SecurityTokenFactory |
SecurityTokenFactory.getInstance(SSOToken credential)
Returns the Security Token factory instance.
|
Modifier and Type | Method and Description |
---|---|
void |
SessionTimeoutHandler.onIdleTimeout(SSOToken token)
Executed on idle timeout
|
void |
SessionTimeoutHandler.onMaxTimeout(SSOToken token)
Executed on max timeout
|
Modifier and Type | Method and Description |
---|---|
static void |
UpgradeUtils.addAttributeToSchema(String serviceName,
String subSchemaName,
String schemaType,
Node attributeSchemaNode,
SSOToken adminToken)
Adds new attribute schema to an existing service.
|
static void |
UpgradeUtils.removeAttributeSchema(String serviceName,
String subSchemaName,
String schemaType,
String attributeName,
SSOToken adminToken)
Remove an attribute schema from an existing service.
|
static void |
UpgradeUtils.replaceAttributeSchema(String serviceName,
String subSchemaName,
String schemaType,
String attributeName,
SSOToken adminToken,
Node attributeSchemaNode)
Replace an attribute schema from an existing service with the new one
|
Copyright © 2010-2014, ForgeRock All Rights Reserved.