All Known Implementing Classes:

DefaultSecuritySystem
```
public interface SecuritySystem
```
SecuritySystem:

Method Summary

All Methods Instance Methods Abstract Methods
Modifier and Type	Method	Description
`SecuritySession`	`authenticate(AuthenticationDataSource source)`
`AuthorizationResult`	`authorize(SecuritySession session, String permission)`
`AuthorizationResult`	`authorize(SecuritySession session, String permission, String resource)`	return AuthorizationResult without changing authorization
`AuthorizationResult`	`authorize(User user, String permission, String resource)`
`KeyManager`	`getKeyManager()`
`UserSecurityPolicy`	`getPolicy()`
`TokenManager`	`getTokenManager()`	Returns the token manager implementation.
`UserManager`	`getUserManager()`
`boolean`	`isAuthenticated(AuthenticationDataSource source)`
`boolean`	`isAuthorized(SecuritySession session, String permission)`
`boolean`	`isAuthorized(SecuritySession session, String permission, String resource)`
`boolean`	`userManagerReadOnly()`

Method Detail

authenticate

SecuritySession authenticate(AuthenticationDataSource source)
                      throws AuthenticationException,
                             UserNotFoundException,
                             AccountLockedException,
                             MustChangePasswordException,
                             UserManagerException

Throws:: AuthenticationException; UserNotFoundException; AccountLockedException; MustChangePasswordException; UserManagerException

isAuthenticated

boolean isAuthenticated(AuthenticationDataSource source)
                 throws AuthenticationException,
                        UserNotFoundException,
                        AccountLockedException,
                        MustChangePasswordException,
                        UserManagerException

Throws:: AuthenticationException; UserNotFoundException; AccountLockedException; MustChangePasswordException; UserManagerException

authorize

AuthorizationResult authorize(SecuritySession session,
                              String permission)
                       throws AuthorizationException

Throws:: AuthorizationException

isAuthorized

boolean isAuthorized(SecuritySession session,
                     String permission)
              throws AuthorizationException

Throws:: AuthorizationException

authorize

AuthorizationResult authorize(SecuritySession session,
                              String permission,
                              String resource)
                       throws AuthorizationException

return AuthorizationResult without changing authorization

Parameters:: session -; permission -; resource -
Returns:
Throws:: AuthorizationException

authorize

AuthorizationResult authorize(User user,
                              String permission,
                              String resource)
                       throws AuthorizationException

Parameters:: user -; permission -; resource -
Returns:
Throws:: AuthorizationException
Since:: 2.3

isAuthorized

boolean isAuthorized(SecuritySession session,
                     String permission,
                     String resource)
              throws AuthorizationException

Throws:: AuthorizationException

getUserManager
```
UserManager getUserManager()
```

getKeyManager
```
KeyManager getKeyManager()
```

getPolicy
```
UserSecurityPolicy getPolicy()
```

userManagerReadOnly
```
boolean userManagerReadOnly()
```
Returns:

is it possible to modify user datas (some userManager cannot i.e ldap)

Since:

2.1

getTokenManager
```
TokenManager getTokenManager()
```
Returns the token manager implementation.

Since:

2.2

Interface SecuritySystem

Method Summary

Method Detail

authenticate

isAuthenticated

authorize

isAuthorized

authorize

authorize

isAuthorized

getUserManager

getKeyManager

getPolicy

userManagerReadOnly

getTokenManager