public final class AuthenticationStrategies extends Object
AuthenticationStrategy
allowing to perform authentication against LDAP server through
different method.Modifier and Type | Method and Description |
---|---|
static AuthenticationStrategy |
newSaslPlainStrategy(ConnectionFactory connectionFactory,
Schema schema,
String authcIdTemplate)
Creates an
AuthenticationStrategy performing authentication against an LDAP server using a plain SASL
bind request. |
static AuthenticationStrategy |
newSearchThenBindStrategy(ConnectionFactory searchConnectionFactory,
ConnectionFactory bindConnectionFactory,
DN baseDN,
SearchScope searchScope,
String filterTemplate)
Creates an
AuthenticationStrategy performing authentication against an LDAP server by first performing a
lookup of the entry to bind with. |
static AuthenticationStrategy |
newSimpleBindStrategy(ConnectionFactory connectionFactory,
String bindDNTemplate,
Schema schema)
Creates an
AuthenticationStrategy performing simple BIND authentication against an LDAP server. |
public static AuthenticationStrategy newSimpleBindStrategy(ConnectionFactory connectionFactory, String bindDNTemplate, Schema schema)
AuthenticationStrategy
performing simple BIND authentication against an LDAP server.connectionFactory
- ConnectionFactory
to the LDAP server used to perform the bind operation.bindDNTemplate
- Tempalte of the DN to use for the bind operation. The first %s will be replaced by the provided
authentication-id (i.e: uid=%s,dc=example,dc=com)schema
- Schema
used to validate the DN format.*AuthenticationStrategy
NullPointerException
- If a parameter is nullpublic static AuthenticationStrategy newSearchThenBindStrategy(ConnectionFactory searchConnectionFactory, ConnectionFactory bindConnectionFactory, DN baseDN, SearchScope searchScope, String filterTemplate)
AuthenticationStrategy
performing authentication against an LDAP server by first performing a
lookup of the entry to bind with. This is to find the user DN to bind with from its metadata (i.e: email
address).searchConnectionFactory
- ConnectionFactory
to the LDAP server used to perform the lookup of the entry.bindConnectionFactory
- ConnectionFactory
to the LDAP server used to perform the bind one the user's DN has been
found. Can be the same than the searchConnectionFactory.baseDN
- Base DN of the search request performed to find the user's DN.searchScope
- SearchScope
of the search request performed to find the user's DN.filterTemplate
- Filter of the search request (i.e: (&(email=%s)(objectClass=inetOrgPerson)) where the first %s will be
replaced by the user's provided authentication-id.AuthenticationStrategy
NullPointerException
- If a parameter is nullpublic static AuthenticationStrategy newSaslPlainStrategy(ConnectionFactory connectionFactory, Schema schema, String authcIdTemplate)
AuthenticationStrategy
performing authentication against an LDAP server using a plain SASL
bind request.connectionFactory
- ConnectionFactory
to the LDAP server to authenticate with.authcIdTemplate
- Authentication identity template containing a single %s which will be replaced by the authenticating
user's name. (i.e: (u:%s)schema
- Schema used to perform DN validation.AuthenticationStrategy
NullPointerException
- If a parameter is nullCopyright 2010-2017 ForgeRock AS.