Package org.hippoecm.hst.core.jcr

Interface SessionSecurityDelegation

public interface SessionSecurityDelegation

Component that has facility methods for creating NON POOLED session (security delegates) that are optionally logged out automatically at the end of the hst request processing

Method Summary

Modifier and Type	Method	Description
void	cleanupSessionDelegates(HstRequestContext requestContext)	cleans up any sessions that are not yet logged out and were created either through getOrCreateLiveSecurityDelegate(javax.jcr.Credentials, String), or through getOrCreatePreviewSecurityDelegate(javax.jcr.Credentials, String) or through one of the create methods with autoLogout set to true
Session	createLiveSecurityDelegate(Credentials delegate, boolean autoLogout)
Session	createPreviewSecurityDelegate(Credentials delegate, boolean autoLogout)
Session	createSecurityDelegate(Credentials cred1, Credentials cred2, boolean autoLogout, DomainRuleExtension... domainExtensions)
Session	getDelegatedSession(Credentials creds)
Session	getOrCreateLiveSecurityDelegate(Credentials delegate, String key)	Deprecated. since 13.0.1 and 13.1.0 : Use createLiveSecurityDelegate(Credentials, boolean) instead.
Session	getOrCreatePreviewSecurityDelegate(Credentials delegate, String key)	Deprecated. since 13.0.1 and 13.1.0 : Use createPreviewSecurityDelegate(Credentials, boolean) instead.

Method Details

cleanupSessionDelegates

void cleanupSessionDelegates(HstRequestContext requestContext)

cleans up any sessions that are not yet logged out and were created either through getOrCreateLiveSecurityDelegate(javax.jcr.Credentials, String), or through getOrCreatePreviewSecurityDelegate(javax.jcr.Credentials, String) or through one of the create methods with autoLogout set to true

Parameters:

requestContext -

getDelegatedSession

Session getDelegatedSession(Credentials creds)
                     throws RepositoryException

Returns:

A non pooled jcr session which is not automatically logged out and is NOT combined with the credentials of any other session: This is a plane delegated repository login, not a security delegate.

Throws:

RepositoryException

getOrCreateLiveSecurityDelegate

@Deprecated
Session getOrCreateLiveSecurityDelegate(Credentials delegate,
 String key)
                                 throws RepositoryException,
IllegalStateException

Deprecated.

since 13.0.1 and 13.1.0 : Use createLiveSecurityDelegate(Credentials, boolean) instead. The key parameter is not needed any more since we don't support returning same jcr session based on cachekey any more. Use autologout = true if you replace this method

Throws:

RepositoryException

IllegalStateException

createLiveSecurityDelegate

Session createLiveSecurityDelegate(Credentials delegate,
 boolean autoLogout)
                            throws RepositoryException,
IllegalStateException

Parameters:

delegate - the credentials of the Session to combine the access with the live session

autoLogout - whether the HST should take care of automatically logging out the session at the end of the request

Returns:

a security delegated session which combines the access control rules for Session belonging to delegate and the normal hst live session credentials with the addition of an extra wildcard domain rule hippo:availability = live

Throws:

RepositoryException

IllegalStateException - if securityDelegationEnabled is false or in case the created sessions are not of type HippoSession or when autoLogout is true but there is not HstRequestContext available

getOrCreatePreviewSecurityDelegate

@Deprecated
Session getOrCreatePreviewSecurityDelegate(Credentials delegate,
 String key)
                                    throws RepositoryException,
IllegalStateException

Deprecated.

since 13.0.1 and 13.1.0 : Use createPreviewSecurityDelegate(Credentials, boolean) instead. The key parameter is not needed any more since we don't support returning same jcr session based on cachekey any more. Use autologout = true if you replace this method

Throws:

RepositoryException

IllegalStateException

createPreviewSecurityDelegate

Session createPreviewSecurityDelegate(Credentials delegate,
 boolean autoLogout)
                               throws RepositoryException,
IllegalStateException

Parameters:

delegate - the credentials of the Session to combine the access with the preview session

autoLogout - whether the HST should take care of automatically logging out the session at the end of the request

Returns:

a security delegated session which combines the access control rules for Session belonging to delegate and the normal hst preview session credentials with the addition of an extra wildcard domain rule hippo:availability = preview

Throws:

RepositoryException

IllegalStateException - if securityDelegationEnabled is false or in case the created sessions are not of type HippoSession or when autoLogout is true but there is not HstRequestContext available

createSecurityDelegate

Session createSecurityDelegate(Credentials cred1,
 Credentials cred2,
 boolean autoLogout,
 DomainRuleExtension... domainExtensions)
                        throws RepositoryException,
IllegalStateException

Parameters:

cred1 - credentials for the first Session

cred2 - credentials for the second Session

autoLogout - whether the HST should take care of automatically logging out the session at the end of the request

domainExtensions - optional extra domain rules for the created delegate

Returns:

a security delegated session which combines the access control rules for Session belonging to cred1 and cred2 with the optional addition of custom domain rules domainExtensions

Throws:

RepositoryException

IllegalStateException - if securityDelegationEnabled is false or in case the created sessions are not of type HippoSession or when autoLogout is true but there is not HstRequestContext available