org.jivesoftware.openfire.auth (Openfire 3.8.1 Javadoc)

Overview

Package

Class

Tree

Deprecated

Index

Help

Openfire 3.8.1 Javadoc

PREV PACKAGE NEXT PACKAGE

FRAMES NO FRAMES

Package org.jivesoftware.openfire.auth

Authentication and Authorization service interfaces and classes.

See:
Description

Interface Summary
AuthorizationMapping	This is the interface the used to provide default defualt authorization ID's when none was selected by the client.
AuthorizationPolicy	This is the interface the AuthorizationManager uses to conduct authorizations.
AuthProvider	Provider interface for authentication.

Class Summary
AuthFactory	Pluggable authentication service.
AuthorizationManager	Manages the AuthorizationProvider objects.
AuthToken	A token that proves that a user has successfully authenticated.
DefaultAuthorizationMapping	This is the interface the used to provide default default authorization ID's when none was selected by the client.
DefaultAuthorizationPolicy	Different clients perform authentication differently, so this policy will authorize any principal to a requested user that match specific conditions that are considered secure defaults for most installations.
DefaultAuthProvider	Default AuthProvider implementation.
HybridAuthProvider	The hybrid auth provider allows up to three AuthProvider implementations to be strung together to do chained authentication checking.
JDBCAuthProvider	The JDBC auth provider allows you to authenticate users against any database that you can connect to with JDBC.
NativeAuthProvider	Authenticates using the native operating system authentication method.
POP3AuthProvider	An AuthProvider that authenticates using a POP3 server.

Enum Summary
JDBCAuthProvider.PasswordType	Indicates how the password is stored.

Exception Summary
ConnectionException	Thrown when Openfire is not able to connect to the user and group system.
InternalUnauthenticatedException	Thrown when Openfire is not able to authenticate itself into the user and group system.
UnauthenticatedException	Thrown if a user does not have permission to access a particular method.
UnauthorizedException	Thrown if a user does not have permission to access a particular method.

Authentication and Authorization service interfaces and classes. There are three compoents:

Authentication. Authentication is the process of verifying a user. Custom authentication implementations can be created by extending the AuthProvider interface.
Authorization. Authorization is the process of allowing an authenticated identity to choose a username. Default authorization will authorize an authenticated username to the same username only. Custom authorization implementations can be created by extending the AuthorizationPolicy interface.
Authorization Mapping. Mapping occurs when the client did not request any specific username. This provides a method of giving a default username in these situations. Custom authorization mappings can be created by extending the AuthorizationMapping interface.