public class AuthorizationServer extends Object
Users belong to an authorization server
and are authenticated against it.
In the majority of cases, there is a 1-1 relationship between an AuthorizationServer and
AuthorizedClient, though this is not a requirement.
In the case that an authorization server has multiple clients, users are
shared between clients. This allows, for example, a tenant with multiple store-fronts to share a
single login across different storefronts.
Keep in mind that any unique user requirements, such as unique email addresses, usernames, etc. are unique to an authorization server.
AuthorizedClient| Constructor and Description |
|---|
AuthorizationServer() |
| Modifier and Type | Method and Description |
|---|---|
protected boolean |
canEqual(Object other) |
boolean |
equals(Object o) |
Map<String,Object> |
getAttributes()
Additional attributes associated with this authorization server.
|
String |
getDefaultRedirectUri()
The default redirect URI to use if a user accesses a login page without a valid redirect
cookie
|
Set<UserPermissionRef> |
getDefaultUserPermissions()
The default permissions a user is assigned when authenticating against this server.
|
Set<UserRoleRef> |
getDefaultUserRoles()
The default roles a user is assigned when authenticating against this server.
|
Integer |
getFailedLoginAttemptsAllowed()
How many failed login attempts are allowed before a user is locked out.
|
String |
getFriendlyName()
The friendly name of this authorization server.
|
String |
getId()
The primary ID of this server
|
Integer |
getInactivityTimeoutSeconds()
The period of time, in seconds, that the user's session will timeout if no action is taken.
|
String |
getLockedUserCanResetPassword()
Can a locked user initiate a password reset? See
User.isLocked() |
Long |
getLockoutDurationMinutes()
The time, in minutes, a user is locked out if they exceed the allowed number of failed login
attempts.
|
Long |
getLoginFailDecayMinutes()
How long, in minutes, it takes for failed login attempts to "decay".
|
String |
getName()
The unique name for this authorization server.
|
Integer |
getRequireLoginTimeoutSeconds()
The maximum amount of time, in seconds, a user's session will persist before requiring
re-login.
|
String |
getResetPasswordUnlocksUser()
Will a successful reset password unlock this user if they're locked? See
User.isLocked() |
String |
getTemplatePath()
The path on the classpath to the authorization servers templates.
|
String |
getTenantId()
The ID of the tenant this authorization server is associated with.
|
int |
hashCode() |
boolean |
isCrossOrigin()
Whether or not the user's session with this authorization server is active for cross-origin
requests.
|
boolean |
isEmbeddedLoginEnabled()
Whether this server allows embedded login and registration submissions as opposed to only
allowing Universal Login.
|
boolean |
isSsoEnabled()
Whether or not SSO is enabled for this authorization server.
|
void |
setAttributes(Map<String,Object> attributes)
Additional attributes associated with this authorization server.
|
void |
setCrossOrigin(boolean crossOrigin)
Whether or not the user's session with this authorization server is active for cross-origin
requests.
|
void |
setDefaultRedirectUri(String defaultRedirectUri)
The default redirect URI to use if a user accesses a login page without a valid redirect
cookie
|
void |
setDefaultUserPermissions(Set<UserPermissionRef> defaultUserPermissions)
The default permissions a user is assigned when authenticating against this server.
|
void |
setDefaultUserRoles(Set<UserRoleRef> defaultUserRoles)
The default roles a user is assigned when authenticating against this server.
|
void |
setEmbeddedLoginEnabled(boolean embeddedLoginEnabled)
Whether this server allows embedded login and registration submissions as opposed to only
allowing Universal Login.
|
void |
setFailedLoginAttemptsAllowed(Integer failedLoginAttemptsAllowed)
How many failed login attempts are allowed before a user is locked out.
|
void |
setFriendlyName(String friendlyName)
The friendly name of this authorization server.
|
void |
setId(String id)
The primary ID of this server
|
void |
setInactivityTimeoutSeconds(Integer inactivityTimeoutSeconds)
The period of time, in seconds, that the user's session will timeout if no action is taken.
|
void |
setLockedUserCanResetPassword(String lockedUserCanResetPassword)
Can a locked user initiate a password reset? See
User.isLocked() |
void |
setLockoutDurationMinutes(Long lockoutDurationMinutes)
The time, in minutes, a user is locked out if they exceed the allowed number of failed login
attempts.
|
void |
setLoginFailDecayMinutes(Long loginFailDecayMinutes)
How long, in minutes, it takes for failed login attempts to "decay".
|
void |
setName(String name)
The unique name for this authorization server.
|
void |
setRequireLoginTimeoutSeconds(Integer requireLoginTimeoutSeconds)
The maximum amount of time, in seconds, a user's session will persist before requiring
re-login.
|
void |
setResetPasswordUnlocksUser(String resetPasswordUnlocksUser)
Will a successful reset password unlock this user if they're locked? See
User.isLocked() |
void |
setSsoEnabled(boolean ssoEnabled)
Whether or not SSO is enabled for this authorization server.
|
void |
setTemplatePath(String templatePath)
The path on the classpath to the authorization servers templates.
|
void |
setTenantId(String tenantId)
The ID of the tenant this authorization server is associated with.
|
String |
toString() |
public String getId()
public String getTenantId()
public String getName()
public String getFriendlyName()
public Integer getInactivityTimeoutSeconds()
public Integer getRequireLoginTimeoutSeconds()
public String getTemplatePath()
public boolean isSsoEnabled()
public boolean isCrossOrigin()
public Set<UserRoleRef> getDefaultUserRoles()
public Set<UserPermissionRef> getDefaultUserPermissions()
public Map<String,Object> getAttributes()
public String getDefaultRedirectUri()
public Integer getFailedLoginAttemptsAllowed()
public Long getLockoutDurationMinutes()
public Long getLoginFailDecayMinutes()
public boolean isEmbeddedLoginEnabled()
public String getResetPasswordUnlocksUser()
User.isLocked()public String getLockedUserCanResetPassword()
User.isLocked()public void setId(String id)
public void setTenantId(String tenantId)
public void setName(String name)
public void setFriendlyName(String friendlyName)
public void setInactivityTimeoutSeconds(Integer inactivityTimeoutSeconds)
public void setRequireLoginTimeoutSeconds(Integer requireLoginTimeoutSeconds)
public void setTemplatePath(String templatePath)
public void setSsoEnabled(boolean ssoEnabled)
public void setCrossOrigin(boolean crossOrigin)
public void setDefaultUserRoles(Set<UserRoleRef> defaultUserRoles)
public void setDefaultUserPermissions(Set<UserPermissionRef> defaultUserPermissions)
public void setAttributes(Map<String,Object> attributes)
public void setDefaultRedirectUri(String defaultRedirectUri)
public void setFailedLoginAttemptsAllowed(Integer failedLoginAttemptsAllowed)
public void setLockoutDurationMinutes(Long lockoutDurationMinutes)
public void setLoginFailDecayMinutes(Long loginFailDecayMinutes)
public void setEmbeddedLoginEnabled(boolean embeddedLoginEnabled)
embeddedLoginEnabled - Whether this server allows embedded login and registration
submissions as opposed to only allowing Universal Login.public void setResetPasswordUnlocksUser(String resetPasswordUnlocksUser)
User.isLocked()public void setLockedUserCanResetPassword(String lockedUserCanResetPassword)
User.isLocked()protected boolean canEqual(Object other)
Copyright © 2021. All rights reserved.