org.eclipse.jetty.ee8.nested.UserIdentityScope Maven / Gradle / Ivy
//
// ========================================================================
// Copyright (c) 1995 Mort Bay Consulting Pty Ltd and others.
//
// This program and the accompanying materials are made available under the
// terms of the Eclipse Public License v. 2.0 which is available at
// https://www.eclipse.org/legal/epl-2.0, or the Apache License, Version 2.0
// which is available at https://www.apache.org/licenses/LICENSE-2.0.
//
// SPDX-License-Identifier: EPL-2.0 OR Apache-2.0
// ========================================================================
//
package org.eclipse.jetty.ee8.nested;
import java.util.Map;
/**
* User object that encapsulates user identity and operations such as run-as-role actions,
* checking isUserInRole and getUserPrincipal.
*
* Implementations of UserIdentityScope should be immutable so that they may be
* cached by Authenticators and LoginServices.
*/
public interface UserIdentityScope {
/**
* @return The context handler that the identity is being considered within
*/
ContextHandler getContextHandler();
/**
* @return The context path that the identity is being considered within
*/
String getContextPath();
/**
* @return The name of the identity context. Typically this is the servlet name.
*/
String getName();
/**
* @return A map of role reference names that converts from names used by application code
* to names used by the context deployment.
*/
Map getRoleRefMap();
static String deRefRole(UserIdentityScope scope, String role) {
if (scope == null)
return role;
if (role == null)
return null;
Map roleRefMap = scope.getRoleRefMap();
if (roleRefMap == null || roleRefMap.isEmpty())
return role;
String deref = roleRefMap.get(role);
return deref == null ? role : deref;
}
}