A B C D E F G H I J L N O P R S T U V W X

A

abort() - Method in class org.exoplatform.web.login.FilterDisabledLoginModule

abort() - Method in class org.exoplatform.web.security.InitSharedStateLoginModule

abort() - Method in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

AbstractCodec - Class in org.exoplatform.web.security.codec

Abstract codec used to encode/decode password stored/loaded on/from token entry

AbstractCodec() - Constructor for class org.exoplatform.web.security.codec.AbstractCodec

AbstractCodecBuilder - Class in org.exoplatform.web.security.codec

AbstractCodecBuilder() - Constructor for class org.exoplatform.web.security.codec.AbstractCodecBuilder

AbstractTokenService<T extends Token,K> - Class in org.exoplatform.web.security.security

Created by The eXo Platform SAS Author : liem.nguyen ncliam@gmail.com Jun 5, 2009 todo julien : - make delay configuration from init param and @Managed setter - start/stop expiration daemon - manually invoke the daemon via @Managed

AbstractTokenService(InitParams) - Constructor for class org.exoplatform.web.security.security.AbstractTokenService

accept(HttpServletRequest, PortalContainer, URI) - Method in class org.exoplatform.web.security.proxy.ProxyFilterService

Returns true if access to a remote URI should be granted.

afterInit(ServletConfig) - Method in class org.exoplatform.web.login.LoginServlet

Register WCI authentication listener, which is used to bind credentials to temporary authentication registry after each successful login

ATTRIBUTE_AUTHENTICATED_PORTAL_USER_FOR_JAAS - Static variable in class org.exoplatform.web.login.RememberMeFilter

AUTHENTICATED_CREDENTIALS - Static variable in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

AuthenticationRegistry - Interface in org.exoplatform.web.security

Temporary registry for hold credentials (and potentially other attributes) during login process.

AuthenticationRegistryImpl - Class in org.exoplatform.web.security

Temporary registry for hold credentials (and potentially other attributes) during login process to avoid store them in session.

AuthenticationRegistryImpl() - Constructor for class org.exoplatform.web.security.AuthenticationRegistryImpl

AuthenticationRegistryListener - Class in org.exoplatform.web.security

AuthenticationRegistryListener() - Constructor for class org.exoplatform.web.security.AuthenticationRegistryListener

AutoReseedRandom - Class in org.exoplatform.web.security.security

Subclass of SecureRandom which is able to reseed itself every reseedingPeriod milliseconds.

AutoReseedRandom() - Constructor for class org.exoplatform.web.security.security.AutoReseedRandom

AutoReseedRandom(String, String, int, long) - Constructor for class org.exoplatform.web.security.security.AutoReseedRandom

B

badLoginAttempt(String, String, String) - Method in class org.exoplatform.web.security.errorlogin.InvalidLoginAttemptsService

This should be called each time when invalid login attempt is detected (typically from HttpFilter)

begin(OrganizationService) - Method in class org.exoplatform.web.CacheUserProfileFilter

begin(OrganizationService) - Method in class org.exoplatform.web.login.RememberMeFilter

bindCredentialsToConversationState(Credentials) - Method in class org.exoplatform.web.login.ConversationStateUpdateFilter

Add credentials to ConversationState.

build(Map<String, String>) - Method in class org.exoplatform.web.security.codec.AbstractCodecBuilder

build(Map<String, String>) - Method in class org.exoplatform.web.security.codec.JCASymmetricCodecBuilder

C

CacheUserProfileFilter - Class in org.exoplatform.web

CacheUserProfileFilter() - Constructor for class org.exoplatform.web.CacheUserProfileFilter

cancelLogout() - Static method in class org.exoplatform.web.login.LogoutControl

changePass(String, String, String) - Method in interface org.exoplatform.web.login.recovery.PasswordRecoveryService

changePass(String, String, String) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

cleanExpiredTokens() - Method in class org.exoplatform.web.security.security.AbstractTokenService

cleanExpiredTokens() - Method in class org.exoplatform.web.security.security.CookieTokenService

cleanExpiredTokens() - Method in class org.exoplatform.web.security.security.PlainTokenService

cleanExpiredTokens() - Method in class org.exoplatform.web.security.security.TokenContainer

cleanLegacyTokens() - Method in class org.exoplatform.web.security.security.TokenContainer

Removes all tokens in preGateIn-3.5.1 format, i.e.

CLEANUP_PERIOD_TIME - Static variable in class org.exoplatform.web.security.security.AbstractTokenService

ClusteredSSOFilter - Class in org.exoplatform.web.login

Deprecated.

This filter is no longer needed. Cluster SSO is handled by JBoss AS ClusteredValve and PortalClusteredSSOSupportValve Filter class should be removed in the future together with PortalLoginModule

ClusteredSSOFilter() - Constructor for class org.exoplatform.web.login.ClusteredSSOFilter

Deprecated.

CodecInitializer - Class in org.exoplatform.web.security.codec

Initialize codec from configuration.properties.

CodecInitializer(InitParams) - Constructor for class org.exoplatform.web.security.codec.CodecInitializer

commit() - Method in class org.exoplatform.web.login.FilterDisabledLoginModule

commit() - Method in class org.exoplatform.web.security.InitSharedStateLoginModule

commit() - Method in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

ConversationStateUpdateFilter - Class in org.exoplatform.web.login

Filter is used to update ConversationState with necessary attributes after login of user.

ConversationStateUpdateFilter() - Constructor for class org.exoplatform.web.login.ConversationStateUpdateFilter

COOKIE_NAME - Static variable in class org.exoplatform.web.login.LoginServlet

.

CookieToken - Class in org.exoplatform.web.security.security

Data obejct with parsing and serializing functionality.

CookieToken(String) - Constructor for class org.exoplatform.web.security.security.CookieToken

CookieToken(String, String) - Constructor for class org.exoplatform.web.security.security.CookieToken

CookieTokenService - Class in org.exoplatform.web.security.security

Created by The eXo Platform SAS Author : liem.nguyen ncliam@gmail.com Jun 5, 2009

CookieTokenService(InitParams, ChromatticManager, CodecInitializer) - Constructor for class org.exoplatform.web.security.security.CookieTokenService

createToken(Credentials) - Method in class org.exoplatform.web.security.security.CookieTokenService

createToken() - Method in class org.exoplatform.web.security.security.TokenContainer

createToken(Credentials) - Method in class org.exoplatform.web.security.security.TransientTokenService

createToken(Credentials) - Method in interface org.exoplatform.web.security.TokenStore

Create a token and returns it.

D

decode(String) - Method in class org.exoplatform.web.security.codec.AbstractCodec

decode(String) - Method in class org.exoplatform.web.security.codec.JCASymmetricCodec

decode(String) - Method in class org.exoplatform.web.security.codec.NoCodec

Returns encodedInput, does no decoding.

decode(String) - Method in interface org.exoplatform.web.security.hash.SaltedHashCodec

Parses the given String to a SaltedHash.

decode(String) - Method in class org.exoplatform.web.security.hash.XmlSafeSaltedHashCodec

decodeKey(String) - Method in class org.exoplatform.web.security.security.AbstractTokenService

Decode a key from its string representation.

decodeKey(String) - Method in class org.exoplatform.web.security.security.CookieTokenService

decodeKey(String) - Method in class org.exoplatform.web.security.security.TransientTokenService

DEFAULT_HASH_BYTE_LENGTH - Static variable in class org.exoplatform.web.security.hash.JCASaltedHashService

DEFAULT_ITERATION_COUNT - Static variable in class org.exoplatform.web.security.hash.JCASaltedHashService

DEFAULT_RANDOM_ALGORITHM - Static variable in class org.exoplatform.web.security.security.AutoReseedRandom

Default random algorithm "SHA1PRNG".

DEFAULT_RANDOM_ALGORITHM_PROVIDER - Static variable in class org.exoplatform.web.security.security.AutoReseedRandom

Default random algorithm provider.

DEFAULT_RESEEDING_PERIOD - Static variable in class org.exoplatform.web.security.security.AutoReseedRandom

Default expiration time in milliseconds, an equivalent of 24 hours.

DEFAULT_SALT_BYTE_LENGTH - Static variable in class org.exoplatform.web.security.hash.JCASaltedHashService

DEFAULT_SEED_LENGTH - Static variable in class org.exoplatform.web.security.security.AutoReseedRandom

Default seed length 32.

DEFAULT_TOKEN_BYTE_LENGTH - Static variable in class org.exoplatform.web.security.security.AbstractTokenService

See AbstractTokenService.tokenByteLength.

delay_time - Variable in class org.exoplatform.web.security.security.AbstractTokenService

deleteAll() - Method in class org.exoplatform.web.security.security.CookieTokenService

Removes all tokens stored in the TokenContainer.

deleteToken(K) - Method in class org.exoplatform.web.security.security.AbstractTokenService

deleteToken(String) - Method in class org.exoplatform.web.security.security.CookieTokenService

deleteToken(String) - Method in class org.exoplatform.web.security.security.TransientTokenService

deleteTokensOfUser(String) - Method in class org.exoplatform.web.security.security.CookieTokenService

The UI should offer a way to delete all existing tokens of the current user.

destroy() - Method in class org.exoplatform.web.CacheUserProfileFilter

destroy() - Method in class org.exoplatform.web.login.ClusteredSSOFilter

Deprecated.

destroy() - Method in class org.exoplatform.web.login.ConversationStateUpdateFilter

destroy() - Method in class org.exoplatform.web.login.RememberMeFilter

destroy() - Method in class org.exoplatform.web.security.errorlogin.ErrorLoginFilter

destroy() - Method in class org.exoplatform.web.security.errorlogin.LoginDetectorFilter

DISABLED_USER_ERROR - Static variable in class org.exoplatform.web.login.LoginError

DISABLED_USER_NAME - Static variable in class org.exoplatform.web.login.FilterDisabledLoginModule

dispatch(String, ServletContext, HttpServletRequest, HttpServletResponse) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.exoplatform.web.CacheUserProfileFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.exoplatform.web.login.ClusteredSSOFilter

Deprecated.

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.exoplatform.web.login.ConversationStateUpdateFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.exoplatform.web.login.RememberMeFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.exoplatform.web.security.errorlogin.ErrorLoginFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.exoplatform.web.security.errorlogin.LoginDetectorFilter

doGet(HttpServletRequest, HttpServletResponse) - Method in class org.exoplatform.web.login.LoginServlet

doPost(HttpServletRequest, HttpServletResponse) - Method in class org.exoplatform.web.login.LoginServlet

E

encode(String) - Method in class org.exoplatform.web.security.codec.AbstractCodec

encode(String) - Method in class org.exoplatform.web.security.codec.JCASymmetricCodec

encode(String) - Method in class org.exoplatform.web.security.codec.NoCodec

Returns plainInput, does no encoding.

encode(SaltedHash) - Method in interface org.exoplatform.web.security.hash.SaltedHashCodec

Transforms the given SaltedHash to String.

encode(SaltedHash) - Method in class org.exoplatform.web.security.hash.XmlSafeSaltedHashCodec

end(OrganizationService) - Method in class org.exoplatform.web.CacheUserProfileFilter

end(OrganizationService) - Method in class org.exoplatform.web.login.RememberMeFilter

equals(Object) - Method in class org.exoplatform.web.security.hash.SaltedHash

equals(Object) - Method in class org.exoplatform.web.security.security.CookieToken

ERROR_PARAM - Static variable in class org.exoplatform.web.login.LoginError

ErrorLoginFilter - Class in org.exoplatform.web.security.errorlogin

Filter should be called to detect invalid login attempt to portal.

ErrorLoginFilter() - Constructor for class org.exoplatform.web.security.errorlogin.ErrorLoginFilter

escapeXssCharacters(String) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

execute(ControllerContext) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

EXPIRE_MILI - Static variable in class org.exoplatform.web.security.GateInToken

F

FilterDisabledLoginModule - Class in org.exoplatform.web.login

FilterDisabledLoginModule() - Constructor for class org.exoplatform.web.login.FilterDisabledLoginModule

G

GateInToken - Class in org.exoplatform.web.security

Created by The eXo Platform SAS Author : Tan Pham Dinh tan.pham@exoplatform.com May 6, 2009

GateInToken(long, Credentials) - Constructor for class org.exoplatform.web.security.GateInToken

generateSeed(int) - Method in class org.exoplatform.web.security.security.AutoReseedRandom

getAlgorithm() - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

getAlgorithm() - Method in class org.exoplatform.web.security.hash.SaltedHash

getAlgorithm() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

getAllTokens() - Method in class org.exoplatform.web.security.security.PlainTokenService

getAllTokens() - Method in class org.exoplatform.web.security.security.TransientTokenService

getAttributeOfClient(HttpServletRequest, String) - Method in interface org.exoplatform.web.security.AuthenticationRegistry

getAttributeOfClient(HttpServletRequest, String) - Method in class org.exoplatform.web.security.AuthenticationRegistryImpl

getCode() - Method in class org.exoplatform.web.login.LoginError

getCodec() - Method in class org.exoplatform.web.security.codec.CodecInitializer

getCodec() - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

getCredentials(HttpServletRequest) - Method in interface org.exoplatform.web.security.AuthenticationRegistry

getCredentials(HttpServletRequest) - Method in class org.exoplatform.web.security.AuthenticationRegistryImpl

getCurrentHttpServletRequest() - Method in class org.exoplatform.web.login.FilterDisabledLoginModule

getCurrentLocale() - Static method in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

getData() - Method in class org.exoplatform.web.login.LoginError

getEmailSubject(User, ResourceBundle) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

getExpirationTime() - Method in class org.exoplatform.web.security.security.TokenEntry

getExpirationTimeMillis() - Method in class org.exoplatform.web.security.GateInToken

getExpirationTimeMillis() - Method in interface org.exoplatform.web.security.Token

getHandlerName() - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

getHash() - Method in class org.exoplatform.web.security.hash.SaltedHash

getHashByteLength() - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

getHashedToken() - Method in class org.exoplatform.web.security.security.HashedToken

getId() - Method in class org.exoplatform.web.security.security.CookieToken

getId() - Method in class org.exoplatform.web.security.security.TokenEntry

getInstance(Class<T>) - Static method in class org.exoplatform.web.security.security.AbstractTokenService

getIterationCount() - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

getIterationCount() - Method in class org.exoplatform.web.security.hash.SaltedHash

getLogger() - Method in class org.exoplatform.web.login.FilterDisabledLoginModule

getLogger() - Method in class org.exoplatform.web.security.InitSharedStateLoginModule

getLogger() - Method in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

getName() - Method in class org.exoplatform.web.security.codec.AbstractCodec

getName() - Method in class org.exoplatform.web.security.security.AbstractTokenService

getOauthRememberMeTokenCookie(HttpServletRequest) - Static method in class org.exoplatform.web.login.LoginServlet

getPassword() - Method in class org.exoplatform.web.security.security.TokenEntry

getPasswordRecoverURL(String, String) - Method in interface org.exoplatform.web.login.recovery.PasswordRecoveryService

getPasswordRecoverURL(String, String) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

getPayload() - Method in class org.exoplatform.web.security.GateInToken

getPayload() - Method in interface org.exoplatform.web.security.Token

getPeriodTime() - Method in class org.exoplatform.web.security.security.AbstractTokenService

getRandomString() - Method in class org.exoplatform.web.security.security.CookieToken

getRememberMeTokenCookie(HttpServletRequest) - Static method in class org.exoplatform.web.login.LoginServlet

Extract the remember me token from the request or returns null.

getRequiresLifeCycle() - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

getSalt() - Method in class org.exoplatform.web.security.hash.SaltedHash

getSaltByteLength() - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

getSaltedHash(String) - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

getSaltedHash(String) - Method in class org.exoplatform.web.security.hash.NoSaltedHashService

getSaltedHash(String) - Method in interface org.exoplatform.web.security.hash.SaltedHashService

Computes a salted hash of given plaintext password suitable for storing in a database.

getSecureRandom() - Method in class org.exoplatform.web.security.security.SecureRandomService

getSenderEmail() - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

getSenderName() - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

getSSORedirectURLSuffix() - Method in class org.exoplatform.web.security.sso.SSOHelper

getToken(K) - Method in class org.exoplatform.web.security.security.AbstractTokenService

getToken(String) - Method in class org.exoplatform.web.security.security.CookieTokenService

getToken(String) - Method in class org.exoplatform.web.security.security.TokenContainer

getToken() - Method in class org.exoplatform.web.security.security.TokenEntry

getToken(String) - Method in class org.exoplatform.web.security.security.TransientTokenService

getTokens() - Method in class org.exoplatform.web.security.security.TokenContainer

getUserName() - Method in class org.exoplatform.web.security.security.TokenEntry

getValidityTime() - Method in class org.exoplatform.web.security.security.AbstractTokenService

H

handleCredentialsRemoving(HttpServletRequest) - Method in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

Remove credentials of authenticated user from AuthenticationRegistry.

HASH_SERVICE_INIT_PARAM - Static variable in class org.exoplatform.web.security.security.CookieTokenService

hashCode() - Method in class org.exoplatform.web.security.hash.SaltedHash

hashCode() - Method in class org.exoplatform.web.security.security.CookieToken

HashedToken - Class in org.exoplatform.web.security.security

HashedToken is done as mixin to stay backwards compatible.

HashedToken() - Constructor for class org.exoplatform.web.security.security.HashedToken

I

INIT_URL - Static variable in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

initCodec() - Method in class org.exoplatform.web.security.codec.CodecInitializer

Codec initialization.

InitSharedStateLoginModule - Class in org.exoplatform.web.security

Login module is used to add credentials from JAAS callback into shared state.

InitSharedStateLoginModule() - Constructor for class org.exoplatform.web.security.InitSharedStateLoginModule

INSTANCE - Static variable in class org.exoplatform.web.security.hash.XmlSafeSaltedHashCodec

InvalidLoginAttemptsService - Class in org.exoplatform.web.security.errorlogin

Service can be used to track invalid login attempts of users and do some actions when some number of successive login attempts is detected.

InvalidLoginAttemptsService(InitParams, MailService) - Constructor for class org.exoplatform.web.security.errorlogin.InvalidLoginAttemptsService

InvalidLoginPolicy - Enum in org.exoplatform.web.security.errorlogin

Policy for indication that invalid login attempts are coming from same source.

isClusteredSSO() - Static method in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

isExpired() - Method in class org.exoplatform.web.security.GateInToken

isExpired() - Method in interface org.exoplatform.web.security.Token

isLogoutRequired() - Static method in class org.exoplatform.web.login.LogoutControl

isSSOEnabled() - Method in class org.exoplatform.web.security.sso.SSOHelper

J

JCASaltedHashService - Class in org.exoplatform.web.security.hash

A SaltedHashService implementation using a SecretKeyFactory for salted hashing.

JCASaltedHashService(String, int, int, int, SaltedHashCodec) - Constructor for class org.exoplatform.web.security.hash.JCASaltedHashService

JCASaltedHashService() - Constructor for class org.exoplatform.web.security.hash.JCASaltedHashService

JCASymmetricCodec - Class in org.exoplatform.web.security.codec

Symmetric codec bases on Java Cryptography Library

JCASymmetricCodecBuilder - Class in org.exoplatform.web.security.codec

JCASymmetricCodecBuilder() - Constructor for class org.exoplatform.web.security.codec.JCASymmetricCodecBuilder

L

LANG - Static variable in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

LIFECYCLE_NAME - Static variable in class org.exoplatform.web.security.security.CookieTokenService

.

log - Static variable in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

log - Static variable in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

log - Variable in class org.exoplatform.web.security.security.AbstractTokenService

login() - Method in class org.exoplatform.web.login.FilterDisabledLoginModule

login() - Method in class org.exoplatform.web.security.InitSharedStateLoginModule

Adding credentials from JAAS callback to shared state

login() - Method in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

LoginDetectorFilter - Class in org.exoplatform.web.security.errorlogin

Filter should be called to detect successful login of user into portal and call InvalidLoginAttemptsService.

LoginDetectorFilter() - Constructor for class org.exoplatform.web.security.errorlogin.LoginDetectorFilter

LoginError - Class in org.exoplatform.web.login

LoginError(int, String) - Constructor for class org.exoplatform.web.login.LoginError

LoginServlet - Class in org.exoplatform.web.login

The login servlet which proceeds as.

LoginServlet() - Constructor for class org.exoplatform.web.login.LoginServlet

logout() - Method in class org.exoplatform.web.login.FilterDisabledLoginModule

logout() - Method in class org.exoplatform.web.security.InitSharedStateLoginModule

logout() - Method in class org.exoplatform.web.security.PortalLoginModule

Deprecated.

LogoutControl - Class in org.exoplatform.web.login

LogoutControl() - Constructor for class org.exoplatform.web.login.LogoutControl

N

NAME - Static variable in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

name - Variable in class org.exoplatform.web.security.security.AbstractTokenService

nextBoolean() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextBytes(byte[]) - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextDouble() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextFloat() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextGaussian() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextInt() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextInt(int) - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextLong() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

nextRandom() - Method in class org.exoplatform.web.security.security.AbstractTokenService

nextTokenId() - Method in class org.exoplatform.web.security.security.AbstractTokenService

nextTokenId() - Method in class org.exoplatform.web.security.security.CookieTokenService

nextTokenId() - Method in class org.exoplatform.web.security.security.RemindPasswordTokenService

NoCodec - Class in org.exoplatform.web.security.codec

Does not do any transformations, simply returns the input in both NoCodec.decode(String) and NoCodec.encode(String).

NoCodec() - Constructor for class org.exoplatform.web.security.codec.NoCodec

NoSaltedHashService - Class in org.exoplatform.web.security.hash

A SaltedHashService implementation which does not do any hashing at all.

NoSaltedHashService() - Constructor for class org.exoplatform.web.security.hash.NoSaltedHashService

O

OAUTH_COOKIE_NAME - Static variable in class org.exoplatform.web.login.LoginServlet

onSessionCreated(ExoContainer, HttpSessionEvent) - Method in class org.exoplatform.web.security.AuthenticationRegistryListener

onSessionDestroyed(ExoContainer, HttpSessionEvent) - Method in class org.exoplatform.web.security.AuthenticationRegistryListener

org.exoplatform.web - package org.exoplatform.web

org.exoplatform.web.login - package org.exoplatform.web.login

org.exoplatform.web.login.recovery - package org.exoplatform.web.login.recovery

org.exoplatform.web.security - package org.exoplatform.web.security

org.exoplatform.web.security.codec - package org.exoplatform.web.security.codec

org.exoplatform.web.security.errorlogin - package org.exoplatform.web.security.errorlogin

org.exoplatform.web.security.hash - package org.exoplatform.web.security.hash

org.exoplatform.web.security.proxy - package org.exoplatform.web.security.proxy

org.exoplatform.web.security.security - package org.exoplatform.web.security.security

org.exoplatform.web.security.sso - package org.exoplatform.web.security.sso

P

parse(String) - Static method in class org.exoplatform.web.login.LoginError

PASSWORD - Static variable in class org.exoplatform.web.security.GateInToken

PasswordRecoveryHandler - Class in org.exoplatform.web.login.recovery

PasswordRecoveryHandler() - Constructor for class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

PasswordRecoveryService - Interface in org.exoplatform.web.login.recovery

PasswordRecoveryServiceImpl - Class in org.exoplatform.web.login.recovery

PasswordRecoveryServiceImpl(OrganizationService, MailService, ResourceBundleService, RemindPasswordTokenService, WebAppController) - Constructor for class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

PBKDF2_WITH_HMAC_SHA1 - Static variable in class org.exoplatform.web.security.hash.JCASaltedHashService

PlainTokenService<T extends Token,K> - Class in org.exoplatform.web.security.security

An abstraction layer adding PlainTokenService.getAllTokens().

PlainTokenService(InitParams) - Constructor for class org.exoplatform.web.security.security.PlainTokenService

PortalLoginModule - Class in org.exoplatform.web.security

Deprecated.

Cluster authentication is now handled by PortalClusteredSSOSupportValve and this login module is no longer used. Likely will be removed in the future.

PortalLoginModule() - Constructor for class org.exoplatform.web.security.PortalLoginModule

Deprecated.

ProxyFilterService - Class in org.exoplatform.web.security.proxy

The proxy filter service is used for filtering http access when it is performed by GateIn.

ProxyFilterService(InitParams) - Constructor for class org.exoplatform.web.security.proxy.ProxyFilterService

R

RANDOM_ALGORITHM - Static variable in class org.exoplatform.web.security.security.SecureRandomService

RANDOM_ALGORITHM_PROVIDER - Static variable in class org.exoplatform.web.security.security.SecureRandomService

RANDOM_RESEEDING_PERIOD_MILLISECONDS - Static variable in class org.exoplatform.web.security.security.SecureRandomService

RANDOM_SEED_LENGTH_BYTES - Static variable in class org.exoplatform.web.security.security.SecureRandomService

RememberMeFilter - Class in org.exoplatform.web.login

The remember me filter performs an authentication using the ServletContainer when the current request is a GET request, the user is not authenticated and there is a remember me token cookie in the request.

RememberMeFilter() - Constructor for class org.exoplatform.web.login.RememberMeFilter

RemindPasswordTokenService - Class in org.exoplatform.web.security.security

RemindPasswordTokenService(InitParams, ChromatticManager, CodecInitializer) - Constructor for class org.exoplatform.web.security.security.RemindPasswordTokenService

remove() - Method in class org.exoplatform.web.security.security.TokenEntry

removeAll() - Method in class org.exoplatform.web.security.security.TokenContainer

removeAttributeOfClient(HttpServletRequest, String) - Method in interface org.exoplatform.web.security.AuthenticationRegistry

removeAttributeOfClient(HttpServletRequest, String) - Method in class org.exoplatform.web.security.AuthenticationRegistryImpl

removeClient(String) - Method in interface org.exoplatform.web.security.AuthenticationRegistry

removeClient(String) - Method in class org.exoplatform.web.security.AuthenticationRegistryImpl

removeCredentials(HttpServletRequest) - Method in interface org.exoplatform.web.security.AuthenticationRegistry

removeCredentials(HttpServletRequest) - Method in class org.exoplatform.web.security.AuthenticationRegistryImpl

removeToken(String) - Method in class org.exoplatform.web.security.security.TokenContainer

REQ_PARAM_ACTION - Static variable in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

requirePortalEnvironment() - Method in class org.exoplatform.web.security.AuthenticationRegistryListener

run() - Method in class org.exoplatform.web.security.security.AutoReseedRandom

Called from the reseeding Thread.

S

SaltedHash - Class in org.exoplatform.web.security.hash

An ancillary data object representing a salted hash.

SaltedHash(String, int, byte[], byte[]) - Constructor for class org.exoplatform.web.security.hash.SaltedHash

SaltedHashCodec - Interface in org.exoplatform.web.security.hash

An interface for serializing and deserializing SaltedHash objects.

SaltedHashEncodingException - Exception in org.exoplatform.web.security.hash

SaltedHashEncodingException() - Constructor for exception org.exoplatform.web.security.hash.SaltedHashEncodingException

SaltedHashEncodingException(String, Throwable) - Constructor for exception org.exoplatform.web.security.hash.SaltedHashEncodingException

SaltedHashEncodingException(String) - Constructor for exception org.exoplatform.web.security.hash.SaltedHashEncodingException

SaltedHashEncodingException(Throwable) - Constructor for exception org.exoplatform.web.security.hash.SaltedHashEncodingException

SaltedHashException - Exception in org.exoplatform.web.security.hash

SaltedHashException() - Constructor for exception org.exoplatform.web.security.hash.SaltedHashException

SaltedHashException(String) - Constructor for exception org.exoplatform.web.security.hash.SaltedHashException

SaltedHashException(Throwable) - Constructor for exception org.exoplatform.web.security.hash.SaltedHashException

SaltedHashException(String, Throwable) - Constructor for exception org.exoplatform.web.security.hash.SaltedHashException

SaltedHashService - Interface in org.exoplatform.web.security.hash

Interface for creating salted hashes from plaintext passwords and for validating passwords against stored salted hashes.

saveToken(ChromatticSession, String, String, Credentials, Date) - Method in class org.exoplatform.web.security.security.TokenContainer

SecureRandomService - Class in org.exoplatform.web.security.security

A central service for getting a SecureRandom that is granted to be reseeded regularly.

SecureRandomService() - Constructor for class org.exoplatform.web.security.security.SecureRandomService

SecureRandomService(InitParams) - Constructor for class org.exoplatform.web.security.security.SecureRandomService

sendRecoverPasswordEmail(User, Locale, HttpServletRequest) - Method in interface org.exoplatform.web.login.recovery.PasswordRecoveryService

sendRecoverPasswordEmail(User, Locale, HttpServletRequest) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

SERVICE_CONFIG - Static variable in class org.exoplatform.web.security.security.AbstractTokenService

SESSION_ATTRIBUTE_REMEMBER_ME - Static variable in class org.exoplatform.web.login.LoginServlet

setAlgorithm(String) - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

setAttributeOfClient(HttpServletRequest, String, Object) - Method in interface org.exoplatform.web.security.AuthenticationRegistry

setAttributeOfClient(HttpServletRequest, String, Object) - Method in class org.exoplatform.web.security.AuthenticationRegistryImpl

setCodec(SaltedHashCodec) - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

setCredentials(HttpServletRequest, Credentials) - Method in interface org.exoplatform.web.security.AuthenticationRegistry

setCredentials(HttpServletRequest, Credentials) - Method in class org.exoplatform.web.security.AuthenticationRegistryImpl

setExpirationTime(Date) - Method in class org.exoplatform.web.security.security.TokenEntry

setHashedToken(String) - Method in class org.exoplatform.web.security.security.HashedToken

setHashLength(int) - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

setInvalidLoginPolicy(InvalidLoginPolicy) - Method in class org.exoplatform.web.security.errorlogin.InvalidLoginAttemptsService

Allows to set custom invalidLoginPolicy

setIterationCount(int) - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

setPassword(String) - Method in class org.exoplatform.web.security.security.TokenEntry

setSaltLength(int) - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

setSeed(byte[]) - Method in class org.exoplatform.web.security.security.AutoReseedRandom

setSeed(long) - Method in class org.exoplatform.web.security.security.AutoReseedRandom

setUserName(String) - Method in class org.exoplatform.web.security.security.TokenEntry

size() - Method in class org.exoplatform.web.security.security.AbstractTokenService

size() - Method in class org.exoplatform.web.security.security.CookieTokenService

size() - Method in class org.exoplatform.web.security.security.TokenContainer

size() - Method in class org.exoplatform.web.security.security.TransientTokenService

skipJSPRedirection() - Method in class org.exoplatform.web.security.sso.SSOHelper

SSOHelper - Class in org.exoplatform.web.security.sso

Helper for SSO related things

SSOHelper(InitParams) - Constructor for class org.exoplatform.web.security.sso.SSOHelper

start() - Method in class org.exoplatform.web.security.security.AbstractTokenService

start() - Method in class org.exoplatform.web.security.security.CookieTokenService

start() - Method in class org.exoplatform.web.security.security.SecureRandomService

stop() - Method in class org.exoplatform.web.security.security.AbstractTokenService

stop() - Method in class org.exoplatform.web.security.security.SecureRandomService

successfulLoginAttempt(String, String, String) - Method in class org.exoplatform.web.security.errorlogin.InvalidLoginAttemptsService

This should be called each time successful login attempt is detected.

T

toBytes(String) - Method in class org.exoplatform.web.security.hash.XmlSafeSaltedHashCodec

TOKEN - Static variable in class org.exoplatform.web.login.recovery.PasswordRecoveryHandler

Token - Interface in org.exoplatform.web.security

A token.

tokenByteLength - Variable in class org.exoplatform.web.security.security.AbstractTokenService

The number of random bits generared by AbstractTokenService.nextRandom().

TokenContainer - Class in org.exoplatform.web.security.security

TokenContainer() - Constructor for class org.exoplatform.web.security.security.TokenContainer

TokenEntry - Class in org.exoplatform.web.security.security

TokenEntry() - Constructor for class org.exoplatform.web.security.security.TokenEntry

TokenException - Exception in org.exoplatform.web.security.security

TokenException() - Constructor for exception org.exoplatform.web.security.security.TokenException

TokenException(String) - Constructor for exception org.exoplatform.web.security.security.TokenException

TokenException(Throwable) - Constructor for exception org.exoplatform.web.security.security.TokenException

TokenException(String, Throwable) - Constructor for exception org.exoplatform.web.security.security.TokenException

TokenExistsException - Exception in org.exoplatform.web.security.security

Exception is thrown if there is attempt to create token with ID, which already exists in the token container

TokenExistsException() - Constructor for exception org.exoplatform.web.security.security.TokenExistsException

TokenParseException - Exception in org.exoplatform.web.security.security

TokenParseException() - Constructor for exception org.exoplatform.web.security.security.TokenParseException

TokenParseException(String, Throwable) - Constructor for exception org.exoplatform.web.security.security.TokenParseException

TokenParseException(String) - Constructor for exception org.exoplatform.web.security.security.TokenParseException

TokenParseException(Throwable) - Constructor for exception org.exoplatform.web.security.security.TokenParseException

tokens - Variable in class org.exoplatform.web.security.security.TransientTokenService

TokenServiceInitializationException - Exception in org.exoplatform.web.security.security

TokenServiceInitializationException() - Constructor for exception org.exoplatform.web.security.security.TokenServiceInitializationException

TokenServiceInitializationException(String, Throwable) - Constructor for exception org.exoplatform.web.security.security.TokenServiceInitializationException

TokenServiceInitializationException(String) - Constructor for exception org.exoplatform.web.security.security.TokenServiceInitializationException

TokenServiceInitializationException(Throwable) - Constructor for exception org.exoplatform.web.security.security.TokenServiceInitializationException

TokenStore - Interface in org.exoplatform.web.security

The token store is a place where temporary tokens are held.

toString() - Method in class org.exoplatform.web.login.LoginError

toString() - Method in class org.exoplatform.web.security.hash.SaltedHash

toString(byte[]) - Method in class org.exoplatform.web.security.hash.XmlSafeSaltedHashCodec

toString() - Method in class org.exoplatform.web.security.security.CookieToken

TransientTokenService - Class in org.exoplatform.web.security.security

Created by The eXo Platform SAS Author : liem.nguyen ncliam@gmail.com Jun 5, 2009

TransientTokenService(InitParams) - Constructor for class org.exoplatform.web.security.security.TransientTokenService

U

USER_PROFILE - Static variable in class org.exoplatform.web.CacheUserProfileFilter

"subject".

USERNAME - Static variable in class org.exoplatform.web.security.GateInToken

V

validate(String, String) - Method in class org.exoplatform.web.security.hash.JCASaltedHashService

validate(String, String) - Method in class org.exoplatform.web.security.hash.NoSaltedHashService

validate(String, String) - Method in interface org.exoplatform.web.security.hash.SaltedHashService

Checks whether given plaintext password corresponds to the given saltedHash.

validateToken(String, boolean) - Method in class org.exoplatform.web.security.security.AbstractTokenService

validateToken(String, boolean) - Method in interface org.exoplatform.web.security.TokenStore

Validates a token.

validityMillis - Variable in class org.exoplatform.web.security.security.AbstractTokenService

valueOf(String) - Static method in enum org.exoplatform.web.security.errorlogin.InvalidLoginPolicy

Returns the enum constant of this type with the specified name.

values() - Static method in enum org.exoplatform.web.security.errorlogin.InvalidLoginPolicy

Returns an array containing the constants of this enum type, in the order they are declared.

verifyToken(String) - Method in interface org.exoplatform.web.login.recovery.PasswordRecoveryService

verifyToken(String) - Method in class org.exoplatform.web.login.recovery.PasswordRecoveryServiceImpl

W

wantLogout() - Static method in class org.exoplatform.web.login.LogoutControl

X

XmlSafeSaltedHashCodec - Class in org.exoplatform.web.security.hash

A codec able to transform a SaltedHash to and from String.

XmlSafeSaltedHashCodec() - Constructor for class org.exoplatform.web.security.hash.XmlSafeSaltedHashCodec

A B C D E F G H I J L N O P R S T U V W X