Interface ExternalIdentityConstants


  • public interface ExternalIdentityConstants
    Constants used by the external identity management.
    Since:
    Oak 1.5.3
    • Field Detail

      • REP_EXTERNAL_PRINCIPAL_NAMES

        static final String REP_EXTERNAL_PRINCIPAL_NAMES
        Name of the property storing the principal names of the external groups a given external identity (user) is member. Not that the set depends on the configured nesting depth. The existence of this property is optional and will only be created if DefaultSyncConfig.User.getDynamicMembership() is turned on. This property is of type Type.STRINGS. Please note, that for security reasons is system maintained and protected on the Oak level and cannot be manipulated by regular ContentSession objects irrespective of the effective permissions.
        See Also:
        Constant Field Values
      • RESERVED_PROPERTY_NAMES

        static final Set<String> RESERVED_PROPERTY_NAMES
        The set of served property names defined by this interface.
      • PARAM_PROTECT_EXTERNAL_IDS

        static final String PARAM_PROTECT_EXTERNAL_IDS
        Configuration parameter to enable special protection of external IDs
        See Also:
        OAK-4301, Constant Field Values
      • PARAM_PROTECT_EXTERNAL_IDENTITIES

        static final String PARAM_PROTECT_EXTERNAL_IDENTITIES
        Configuration parameter to enable special protection of external users and groups and the subtrees they define.
        See Also:
        OAK-9799, Constant Field Values
      • VALUE_PROTECT_EXTERNAL_IDENTITIES_WARN

        static final String VALUE_PROTECT_EXTERNAL_IDENTITIES_WARN
        Value for the PARAM_PROTECT_EXTERNAL_IDENTITIES configuration option that will log warnings upon modification synchronized external users/groups but doesn't enforce the protection.
        See Also:
        Constant Field Values
      • PARAM_SYSTEM_PRINCIPAL_NAMES

        static final String PARAM_SYSTEM_PRINCIPAL_NAMES
        Configuration parameter to define names of SystemUserPrincipals that should be excluded from the protection verification for any of the RESERVED_PROPERTY_NAMES in addition to the built in system principal.
        See Also:
        OAK-9663, Constant Field Values