• Home
• org.jboss.resteasy
• jaxrs-api
• 2.0.1.GA
• source code
• SecurityContext.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

javax.ws.rs.core.SecurityContext Maven / Gradle / Ivy

/*
 * The contents of this file are subject to the terms
 * of the Common Development and Distribution License
 * (the "License").  You may not use this file except
 * in compliance with the License.
 * 
 * You can obtain a copy of the license at
 * http://www.opensource.org/licenses/cddl1.php
 * See the License for the specific language governing
 * permissions and limitations under the License.
 */

package javax.ws.rs.core;

import java.security.Principal;

/**
 * An injectable interface that provides access to security related
 * information.
 *
 * @see Context
 */
public interface SecurityContext
{

   /**
    * String identifier for Basic authentication. Value "BASIC"
    */
   public static final String BASIC_AUTH = "BASIC";

   /**
    * String identifier for Client Certificate authentication. Value "CLIENT_CERT"
    */
   public static final String CLIENT_CERT_AUTH = "CLIENT_CERT";

   /**
    * String identifier for Digest authentication. Value "DIGEST"
    */
   public static final String DIGEST_AUTH = "DIGEST";

   /**
    * String identifier for Form authentication. Value "FORM"
    */
   public static final String FORM_AUTH = "FORM";

   /**
    * Returns a java.security.Principal object containing the
    * name of the current authenticated user. If the user
    * has not been authenticated, the method returns null.
    *
    * @return a java.security.Principal containing the name
    *         of the user making this request; null if the user has not been
    *         authenticated
    * @throws java.lang.IllegalStateException
    *          if called outside the scope of a request
    */
   public Principal getUserPrincipal();

   /**
    * Returns a boolean indicating whether the authenticated user is included
    * in the specified logical "role". If the user has not been authenticated,
    * the method returns false.
    *
    * @param role a String specifying the name of the role
    * @return a boolean indicating whether the user making
    *         the request belongs to a given role; false if the user
    *         has not been authenticated
    * @throws java.lang.IllegalStateException
    *          if called outside the scope of a request
    */
   public boolean isUserInRole(String role);

   /**
    * Returns a boolean indicating whether this request was made
    * using a secure channel, such as HTTPS.
    *
    * @return true if the request was made using a secure
    *         channel, false otherwise
    * @throws java.lang.IllegalStateException
    *          if called outside the scope of a request
    */
   public boolean isSecure();

   /**
    * Returns the string value of the authentication scheme used to protect
    * the resource. If the resource is not authenticated, null is returned.
    * 

    * Values are the same as the CGI variable AUTH_TYPE
    *
    * @return one of the static members BASIC_AUTH, FORM_AUTH,
    *         CLIENT_CERT_AUTH, DIGEST_AUTH (suitable for == comparison) or the
    *         container-specific string indicating the authentication scheme,
    *         or null if the request was not authenticated.
    * @throws java.lang.IllegalStateException
    *          if called outside the scope of a request
    */
   public String getAuthenticationScheme();

}