• Home
• com.hcl.domino
• domino-jnx-api-r14
• 1.42.3
• source code
• CredentialValidationTokenHandler.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.hcl.domino.security.CredentialValidationTokenHandler Maven / Gradle / Ivy

/*
 * ==========================================================================
 * Copyright (C) 2019-2022 HCL America, Inc. ( http://www.hcl.com/ )
 *                            All rights reserved.
 * ==========================================================================
 * Licensed under the  Apache License, Version 2.0  (the "License").  You may
 * not use this file except in compliance with the License.  You may obtain a
 * copy of the License at .
 *
 * Unless  required  by applicable  law or  agreed  to  in writing,  software
 * distributed under the License is distributed on an  "AS IS" BASIS, WITHOUT
 * WARRANTIES OR  CONDITIONS OF ANY KIND, either express or implied.  See the
 * License for the  specific language  governing permissions  and limitations
 * under the License.
 * ==========================================================================
 */
package com.hcl.domino.security;

import java.util.Optional;

import javax.naming.AuthenticationException;
import javax.naming.AuthenticationNotSupportedException;
import javax.naming.NameNotFoundException;

import com.hcl.domino.DominoClient;

/**
 * This service interface represents a provider that is able to process a token
 * supplied to {@link DominoClient#validateCredentialsWithToken(String, Object)}
 * and retrieve
 * the user's distinguished name.
 *
 * @param  the class consumed by this handler
 * @author Jesse Gallagher
 * @since 1.0.19
 */
public interface CredentialValidationTokenHandler extends UserTokenHandler {
  /**
   * Processes the provided token object to look up the user DN.
   * 

   * This method is potentially called when {@link #canProcess(Object)} returns
   * {@code true}
   * and should either:
   * 
   * 

   * 
Return an {@code Optional} describing a user DN if found,
   * 
Return an empty optional if the token was processable but no matching
   * user exists (e.g. if
   * this object represents one of many potential directories), or
   * 
Throw an exception if the token was invalid or otherwise
   * unprocessable.
   * 
   *
   * @param token               the token to process
   * @param serverName          the name of the server to look up on (may be
   *                            ignored by implementations)
   * @param contextDominoClient the {@link DominoClient} instance calling the
   *                            method
   * @return an {@link Optional} describing the user's DN, or an empty one if a
   *         matching user cannot be located
   * @throws NameNotFoundException               if the token does not match a
   *                                             user but this implementation is
   *                                             considered fully authoritative
   * @throws AuthenticationException             if the credential matches a user
   *                                             but does not meet authentication
   *                                             requirements (e.g. if the
   *                                             password is incorrect)
   * @throws AuthenticationNotSupportedException if the user exists but is not
   *                                             configured to authenticate with
   *                                             this token
   */
  Optional getUserDn(T token, String serverName, DominoClient contextDominoClient)
      throws NameNotFoundException, AuthenticationException, AuthenticationNotSupportedException;
}