Class DefaultSyncConfigImpl
- java.lang.Object
-
- org.apache.jackrabbit.oak.spi.security.authentication.external.basic.DefaultSyncConfig
-
- org.apache.jackrabbit.oak.spi.security.authentication.external.impl.DefaultSyncConfigImpl
-
public class DefaultSyncConfigImpl extends DefaultSyncConfig
DefaultSyncConfig
defines how users and groups from an external source are synced into the repository using theDefaultSyncHandler
.
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from class org.apache.jackrabbit.oak.spi.security.authentication.external.basic.DefaultSyncConfig
DefaultSyncConfig.Authorizable, DefaultSyncConfig.Group, DefaultSyncConfig.User
-
-
Field Summary
-
Fields inherited from class org.apache.jackrabbit.oak.spi.security.authentication.external.basic.DefaultSyncConfig
DEFAULT_NAME
-
-
Constructor Summary
Constructors Constructor Description DefaultSyncConfigImpl()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static DefaultSyncConfig
of(ConfigurationParameters params)
Creates a new LDAP provider configuration based on the properties store in the given parameters.-
Methods inherited from class org.apache.jackrabbit.oak.spi.security.authentication.external.basic.DefaultSyncConfig
getName, group, setName, user
-
-
-
-
Field Detail
-
PARAM_NAME
public static final String PARAM_NAME
- See Also:
DefaultSyncConfig.getName()
, Constant Field Values
-
PARAM_NAME_DEFAULT
public static final String PARAM_NAME_DEFAULT
- See Also:
DefaultSyncConfig.getName()
, Constant Field Values
-
PARAM_USER_EXPIRATION_TIME
public static final String PARAM_USER_EXPIRATION_TIME
-
PARAM_USER_EXPIRATION_TIME_DEFAULT
public static final String PARAM_USER_EXPIRATION_TIME_DEFAULT
-
PARAM_USER_AUTO_MEMBERSHIP
public static final String PARAM_USER_AUTO_MEMBERSHIP
-
PARAM_USER_AUTO_MEMBERSHIP_DEFAULT
public static final String[] PARAM_USER_AUTO_MEMBERSHIP_DEFAULT
-
PARAM_USER_PROPERTY_MAPPING
public static final String PARAM_USER_PROPERTY_MAPPING
-
PARAM_USER_PROPERTY_MAPPING_DEFAULT
public static final String[] PARAM_USER_PROPERTY_MAPPING_DEFAULT
-
PARAM_USER_PATH_PREFIX
public static final String PARAM_USER_PATH_PREFIX
-
PARAM_USER_PATH_PREFIX_DEFAULT
public static final String PARAM_USER_PATH_PREFIX_DEFAULT
-
PARAM_USER_MEMBERSHIP_EXPIRATION_TIME
public static final String PARAM_USER_MEMBERSHIP_EXPIRATION_TIME
-
PARAM_USER_MEMBERSHIP_EXPIRATION_TIME_DEFAULT
public static final String PARAM_USER_MEMBERSHIP_EXPIRATION_TIME_DEFAULT
-
PARAM_USER_MEMBERSHIP_NESTING_DEPTH
public static final String PARAM_USER_MEMBERSHIP_NESTING_DEPTH
-
PARAM_USER_MEMBERSHIP_NESTING_DEPTH_DEFAULT
public static final int PARAM_USER_MEMBERSHIP_NESTING_DEPTH_DEFAULT
-
PARAM_USER_DYNAMIC_MEMBERSHIP
public static final String PARAM_USER_DYNAMIC_MEMBERSHIP
Configuration option to enable dynamic group membership. If enabled the implementation will no longer synchronized group accounts into the repository but instead will enable a dedicated principal management: This results in external users having their complete principal set as defined external IDP synchronized to the repository asserting proper population of theSubject
upon login. Please note that the external groups are reflected through the built-in principal management and thus can be retrieved for authorization purposes. However, the information is no longer reflected through the Jackrabbit user management API.
-
PARAM_USER_DYNAMIC_MEMBERSHIP_DEFAULT
public static final boolean PARAM_USER_DYNAMIC_MEMBERSHIP_DEFAULT
-
PARAM_USER_ENFORCE_DYNAMIC_MEMBERSHIP
public static final String PARAM_USER_ENFORCE_DYNAMIC_MEMBERSHIP
Configuration option to enforce dynamic group membership upon user sync. If enabled the implementation will clean up previous synchronized membership information that is not yet dynamic.
-
PARAM_USER_ENFORCE_DYNAMIC_MEMBERSHIP_DEFAULT
public static final boolean PARAM_USER_ENFORCE_DYNAMIC_MEMBERSHIP_DEFAULT
-
PARAM_DISABLE_MISSING_USERS
public static final String PARAM_DISABLE_MISSING_USERS
-
PARAM_DISABLE_MISSING_USERS_DEFAULT
public static final boolean PARAM_DISABLE_MISSING_USERS_DEFAULT
-
PARAM_GROUP_EXPIRATION_TIME
public static final String PARAM_GROUP_EXPIRATION_TIME
-
PARAM_GROUP_EXPIRATION_TIME_DEFAULT
public static final String PARAM_GROUP_EXPIRATION_TIME_DEFAULT
-
PARAM_GROUP_AUTO_MEMBERSHIP
public static final String PARAM_GROUP_AUTO_MEMBERSHIP
-
PARAM_GROUP_AUTO_MEMBERSHIP_DEFAULT
public static final String[] PARAM_GROUP_AUTO_MEMBERSHIP_DEFAULT
-
PARAM_GROUP_PROPERTY_MAPPING
public static final String PARAM_GROUP_PROPERTY_MAPPING
-
PARAM_GROUP_PROPERTY_MAPPING_DEFAULT
public static final String[] PARAM_GROUP_PROPERTY_MAPPING_DEFAULT
-
PARAM_GROUP_PATH_PREFIX
public static final String PARAM_GROUP_PATH_PREFIX
-
PARAM_GROUP_PATH_PREFIX_DEFAULT
public static final String PARAM_GROUP_PATH_PREFIX_DEFAULT
-
PARAM_GROUP_DYNAMIC_GROUPS
public static final String PARAM_GROUP_DYNAMIC_GROUPS
-
PARAM_GROUP_DYNAMIC_GROUPS_DEFAULT
public static final boolean PARAM_GROUP_DYNAMIC_GROUPS_DEFAULT
-
PARAM_ENABLE_RFC7613_USERCASE_MAPPED_PROFILE
public static final String PARAM_ENABLE_RFC7613_USERCASE_MAPPED_PROFILE
-
PARAM_ENABLE_RFC7613_USERCASE_MAPPED_PROFILE_DEFAULT
public static final boolean PARAM_ENABLE_RFC7613_USERCASE_MAPPED_PROFILE_DEFAULT
-
-
Method Detail
-
of
public static DefaultSyncConfig of(ConfigurationParameters params)
Creates a new LDAP provider configuration based on the properties store in the given parameters.- Parameters:
params
- the configuration parameters.- Returns:
- the config
-
-