JRun Administrator's Guide
JRun Security

Defining a custom user manager

JRun uses the default user manager for the following purposes:

• Authentication and authorization  In the default JRun security scenario, the user manager is tightly linked to XMLLoginModule, the default login module for authentication and authorization. When using a login module that accesses users and roles from some other data store (such as a JDBC database), the user manager is not related to authentication and authorization.
• User store management  In the default JRun security scenario, the JMC uses the user manager to manage users, roles, and user-role assignments. When using another user store (such as a JDBC database), you typically manage users, roles, and user-role assignments through a tool other than the JMC. However, you can optionally code a user manager, which allows the JMC to dynamically update your user store.

When using a customized user manager, JMC users can update users, roles, and role assignments in the user store, as the following figure shows:

• Code a user manager.
• Update the JRunUserManager service in the jrun.xml file.

A customized user manager must extend jrunx.kernal.ServiceAdapter, implement jrun.security.JRunUserManager, and implement the following methods:

• public void setSecurityStore(String storename);
• public boolean isUser(String username);
• public boolean isRole(String rolename);
• public boolean addUser(String username, String password, String description);
• public boolean addRole(String roleName, String description);
• public boolean addUserToRole(String rolename, String username);
• public int addUsersToRole(String rolename, Collection usernames);
• public boolean removeUser(String username);
• public boolean removeFromRole(String rolename, String username);
• public boolean removeRole(String roleName);
• public char[] getPassword(String username);
• public String getPasswordString(String username);
• public boolean changePassword(String username, String oldpassword, String newpassword);
• public Collection getUsers(String roleName); - Return a Collection of Strings containing usernames in this role.
• public Collection getRoles(String userName); - Return a Collection of Strings containing rolesnames this user belongs to.
• public boolean isUserInRole(String username, String rolename);
• public String getRoleDescription(String roleName);
• public String getUserDescription(String userName);
• public boolean changeUserDescription(String username, String newdescription);
• public boolean changeRoleDescription(String rolename, String newdescription);
• public void clearAll();

Send me an e-mail when comments are added to this page | Comment Report

Current page: http://livedocs.adobe.com/jrun/4/JRun_Administrators_Guide/authentic6.htm

Add Comment