org.olat.lms.security.authentication.ldap

类 LDAPLoginManagerImpl

java.lang.Object

org.olat.system.commons.manager.BasicManager

org.olat.lms.security.authentication.ldap.LDAPLoginManager

org.olat.lms.security.authentication.ldap.LDAPLoginManagerImpl

所有已实现的接口:

GenericEventListener

public class LDAPLoginManagerImpl
extends LDAPLoginManager
implements GenericEventListener

Description: This manager handles communication between LDAP and OLAT. LDAP access is done by JNDI. The synching is done only on node 1 of a cluster.

LDAPLoginMangerImpl

作者:

Maurus Rohrer

嵌套类概要

嵌套类

限定符和类型	类和说明
static interface	LDAPLoginManagerImpl.LdapVisitor

字段概要

从类继承的字段 org.olat.lms.security.authentication.ldap.LDAPLoginManager

ldapSyncLockOres

方法概要

方法

限定符和类型	方法和说明
boolean	acquireSyncLock() Acquire lock for administration jobs
javax.naming.ldap.LdapContext	bindSystem() Connect to the LDAP server with System DN and Password Configuration: LDAP URL = olatextconfig.xml (property=ldapURL) System DN = olatextconfig.xml (property=ldapSystemDN) System PW = olatextconfig.xml (property=ldapSystemPW)
javax.naming.directory.Attributes	bindUser(java.lang.String uid, java.lang.String pwd, LDAPError errors) Connect to LDAP with the User-Name and Password given as parameters Configuration: LDAP URL = olatextconfig.xml (property=ldapURL) LDAP Base = olatextconfig.xml (property=ldapBase) LDAP Attributes Map = olatextconfig.xml (property=userAttrs)
boolean	canChangePassword(Identity identity)
void	changePassword(Identity identity, java.lang.String pwd, LDAPError errors) Change the password on the LDAP server.
void	createAndPersistUser(javax.naming.directory.Attributes userAttributes) Creates User in OLAT and ads user to LDAP securityGroup Required Attributes have to be checked before this method.
void	deletIdentities(java.util.List<Identity> identityList) Delete all Identities in List and removes them from LDAPSecurityGroup
boolean	doBatchSync(LDAPError errors) Execute Batch Sync.
void	event(Event event)
Identity	findIdentyByLdapAuthentication(java.lang.String uid, LDAPError errors) Searches for Identity in OLAT.
void	freeSyncLock() Release lock for administration jobs
java.util.List<Identity>	getIdentitysDeletedInLdap(javax.naming.ldap.LdapContext ctx) Creates list of all OLAT Users which have been deleted out of the LDAP directory but still exits in OLAT Configuration: Required Attributes = olatextconfig.xml (property=reqAttrs) LDAP Base = olatextconfig.xml (property=ldapBase)
java.util.Date	getLastSyncDate()
java.util.List<javax.naming.directory.Attributes>	getUserAttributesModifiedSince(java.util.Date syncTime, javax.naming.ldap.LdapContext ctx) Creates list of all LDAP Users or changed Users since syncTime Configuration: userAttr = olatextconfig.xml (property=userAttrs) LDAP Base = olatextconfig.xml (property=ldapBase)
boolean	isControllerAndNotDisposed()
java.util.Map<java.lang.String,java.lang.String>	prepareUserPropertyForSync(javax.naming.directory.Attributes attributes, Identity identity) Checks if LDAP properties are different then OLAT properties of a User.
void	syncUser(java.util.Map<java.lang.String,java.lang.String> olatPropertyMap, Identity identity) Sync all OLATPropertys in Map of Identity

从类继承的方法 java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

方法详细资料

event

public void event(Event event)

指定者:

event 在接口中 GenericEventListener

bindSystem

public javax.naming.ldap.LdapContext bindSystem()

Connect to the LDAP server with System DN and Password Configuration: LDAP URL = olatextconfig.xml (property=ldapURL) System DN = olatextconfig.xml (property=ldapSystemDN) System PW = olatextconfig.xml (property=ldapSystemPW)

指定者:

bindSystem 在类中 LDAPLoginManager

返回:

The LDAP connection (LdapContext) or NULL if connect fails

抛出:

javax.naming.NamingException

bindUser

public javax.naming.directory.Attributes bindUser(java.lang.String uid,
                                         java.lang.String pwd,
                                         LDAPError errors)

Connect to LDAP with the User-Name and Password given as parameters Configuration: LDAP URL = olatextconfig.xml (property=ldapURL) LDAP Base = olatextconfig.xml (property=ldapBase) LDAP Attributes Map = olatextconfig.xml (property=userAttrs)

指定者:

bindUser 在类中 LDAPLoginManager

参数:

uid - The users LDAP login name (can't be null)

pwd - The users LDAP password (can't be null)

返回:

After successful bind Attributes otherwise NULL

抛出:

javax.naming.NamingException

changePassword

public void changePassword(Identity identity,
                  java.lang.String pwd,
                  LDAPError errors)

Change the password on the LDAP server.

指定者:

changePassword 在类中 LDAPLoginManager

getUserAttributesModifiedSince

public java.util.List<javax.naming.directory.Attributes> getUserAttributesModifiedSince(java.util.Date syncTime,
                                                                               javax.naming.ldap.LdapContext ctx)

Creates list of all LDAP Users or changed Users since syncTime Configuration: userAttr = olatextconfig.xml (property=userAttrs) LDAP Base = olatextconfig.xml (property=ldapBase)

指定者:

getUserAttributesModifiedSince 在类中 LDAPLoginManager

参数:

syncTime - The time to search in LDAP for changes since this time. SyncTime has to formatted: JJJJMMddHHmm

ctx - The LDAP system connection, if NULL or closed NamingExecpiton is thrown

返回:

Returns list of Arguments of found users or empty list if search fails or nothing is changed

抛出:

javax.naming.NamingException

deletIdentities

public void deletIdentities(java.util.List<Identity> identityList)

Delete all Identities in List and removes them from LDAPSecurityGroup

指定者:

deletIdentities 在类中 LDAPLoginManager

参数:

identityList - List of Identities to delete

syncUser

public void syncUser(java.util.Map<java.lang.String,java.lang.String> olatPropertyMap,
            Identity identity)

Sync all OLATPropertys in Map of Identity

指定者:

syncUser 在类中 LDAPLoginManager

参数:

olatPropertyMap - Map of changed OLAT properties (OLATProperty,LDAPValue)

identity - Identity to sync

createAndPersistUser

public void createAndPersistUser(javax.naming.directory.Attributes userAttributes)

Creates User in OLAT and ads user to LDAP securityGroup Required Attributes have to be checked before this method.

指定者:

createAndPersistUser 在类中 LDAPLoginManager

参数:

userAttributes - Set of LDAP Attribute of User to be created

prepareUserPropertyForSync

public java.util.Map<java.lang.String,java.lang.String> prepareUserPropertyForSync(javax.naming.directory.Attributes attributes,
                                                                          Identity identity)

Checks if LDAP properties are different then OLAT properties of a User. If they are different a Map (OlatPropertyName,LDAPValue) is returned.

指定者:

prepareUserPropertyForSync 在类中 LDAPLoginManager

参数:

attributes - Set of LDAP Attribute of Identity

identity - Identity to compare

返回:

Map(OlatPropertyName,LDAPValue) of properties Identity, where property has changed. NULL is returned it no attributes have to be synced

findIdentyByLdapAuthentication

public Identity findIdentyByLdapAuthentication(java.lang.String uid,
                                      LDAPError errors)

Searches for Identity in OLAT.

指定者:

findIdentyByLdapAuthentication 在类中 LDAPLoginManager

参数:

uid - Name of Identity

errors - LDAPError Object if user exits but not member of LDAPSecurityGroup

返回:

Identity if it's found and member of LDAPSecurityGroup, null otherwise (if user exists but not managed by LDAP, error Object is modified)

getIdentitysDeletedInLdap

public java.util.List<Identity> getIdentitysDeletedInLdap(javax.naming.ldap.LdapContext ctx)

Creates list of all OLAT Users which have been deleted out of the LDAP directory but still exits in OLAT Configuration: Required Attributes = olatextconfig.xml (property=reqAttrs) LDAP Base = olatextconfig.xml (property=ldapBase)

指定者:

getIdentitysDeletedInLdap 在类中 LDAPLoginManager

参数:

syncTime - The time to search in LDAP for changes since this time. SyncTime has to formatted: JJJJMMddHHmm

ctx - The LDAP system connection, if NULL or closed NamingExecpiton is thrown

返回:

Returns list of Identity from the user which have been deleted in LDAP

抛出:

javax.naming.NamingException

doBatchSync

public boolean doBatchSync(LDAPError errors)

Execute Batch Sync. Will update all Attributes of LDAP users in OLAt, create new users and delete users in OLAT. Can be configured in olatextconfig.xml

指定者:

doBatchSync 在类中 LDAPLoginManager

参数:

LDAPError -

getLastSyncDate

public java.util.Date getLastSyncDate()

指定者:

getLastSyncDate 在类中 LDAPLoginManager

acquireSyncLock

public boolean acquireSyncLock()

Acquire lock for administration jobs

指定者:

acquireSyncLock 在类中 LDAPLoginManager

freeSyncLock

public void freeSyncLock()

Release lock for administration jobs

指定者:

freeSyncLock 在类中 LDAPLoginManager

isControllerAndNotDisposed

public boolean isControllerAndNotDisposed()

指定者:

isControllerAndNotDisposed 在接口中 GenericEventListener

返回:

canChangePassword

public boolean canChangePassword(Identity identity)

指定者:

canChangePassword 在类中 LDAPLoginManager