Package cz.metacentrum.perun.core.impl

Class UsersManagerImpl

java.lang.Object

cz.metacentrum.perun.core.impl.UsersManagerImpl

All Implemented Interfaces:

UsersManagerImplApi

public class UsersManagerImpl
extends Object
implements UsersManagerImplApi

UsersManager implementation.

Author:

Michal Prochazka michalp@ics.muni.cz, Slavek Licehammer glory@ics.muni.cz, Sona Mastrakova

Field Summary

Fields

Modifier and Type	Field	Description
static final RowMapper<BlockedLogin>	BLOCKED_LOGINS_MAPPER
protected static final RowMapper<User>	USER_MAPPER
protected static final ResultSetExtractor<List<Pair<User,String>>>	USERBLACKLIST_EXTRACTOR
protected static final String	userExtSourceMappingSelectQuery
protected static final String	userMappingSelectQuery

Constructor Summary

Constructors

Constructor	Description
UsersManagerImpl(DataSource perunPool)	Constructor.

Method Summary

Modifier and Type	Method	Description
void	addSpecificUserOwner(PerunSession sess, User user, User specificUser)	Add specificUser owner (the user).
UserExtSource	addUserExtSource(PerunSession sess, User user, UserExtSource userExtSource)	Adds user's external sources.
User	anonymizeUser(PerunSession sess, User user)	Anonymizes users data in DB - sets names and titles to NULL and sets anonymized flag to true.
void	blockLogin(PerunSession sess, String login, String namespace, Integer relatedUserId)	Block login for given namespace or block login globally (if no namespace is selected)
void	checkPasswordResetRequestIsValid(PerunSession sess, UUID uuid)	Checks if the password reset request link is valid.
void	checkReservedLogins(PerunSession sess, String namespace, String login, boolean ignoreCase)	Check if login exists in specified namespace or in any namespace (if namespace is null).
void	checkUserExists(PerunSession sess, User user)	Check if user exists in underlaying data source.
void	checkUserExtSourceExists(PerunSession sess, UserExtSource userExtSource)	Check if userExtSource exists in underlaying data source by identity (login/extSource combination)
void	checkUserExtSourceExistsById(PerunSession sess, int id)	Check if userExtSource exists in underlaying data source by its ID.
User	createUser(PerunSession sess, User user)	Creates the user, stores it in the DB.
void	deleteReservedLogin(PerunSession sess, Pair<String,String> login)	Deletes given login reservations.
void	deleteSponsorLinks(PerunSession sess, User sponsor)	Deletes all links to sponsors, even those marked as inactive.
void	deleteUser(PerunSession sess, User user)	Deletes user (normal or specific) including all relations to other users (normal,specific,sponsor)
void	deleteUsersApplications(User user)	Delete all applications and submitted data for specific user.
void	deleteUsersReservedLogins(User user)	Delete all reserved logins for specific user (pair is namespace and login)
void	disableOwnership(PerunSession sess, User user, User specificUser)	Set ownership for user and specificUser to DISABLE (1).
void	enableOwnership(PerunSession sess, User user, User specificUser)	Set ownership for user and specificUser to ENABLE (0).
List<User>	findUsers(PerunSession sess, String searchString)	Returns list of users who matches the searchString, searching name, id, uuid, member attributes, user attributes and userExtSource attributes (listed in perun.properties).
List<User>	findUsersByExactMatch(PerunSession sess, String searchString)	Returns list of users who matches the searchString, searching name (exact match), id, uuid, member attributes, user attributes and userExtSource attributes (listed in perun.properties).
List<User>	findUsersByExactName(PerunSession sess, String searchString)	Returns list of users who exactly matches the searchString
List<User>	findUsersByName(PerunSession sess, String searchString)	Returns list of users who matches the searchString
List<User>	findUsersByName(PerunSession sess, String titleBefore, String firstName, String middleName, String lastName, String titleAfter)	Returns list of users who matches the fields.
List<User>	findUsersWithExtSourceAttributeValueEnding(PerunSessionImpl sess, String attributeName, String valueEnd, List<String> excludeValueEnds)	Implements search for #UsersManagerBl.findUsersWithExtSourceAttributeValueEnding().
List<UserExtSource>	getActiveUserExtSources(PerunSession sess, User user)	Get all users userExtSources with last_access not older than (now - m), where 'm' is number of months defined in CONSTANT in UsersManagerImpl.
List<BlockedLogin>	getAllBlockedLoginsInNamespaces(PerunSession sess)	Returns all blocked logins in namespaces (if namespace is null, then this login is blocked globally)
List<Resource>	getAllowedResources(PerunSession sess, User user)	Return all resources, where user is allowed by all his members.
List<UserExtSource>	getAllUserExtSourcesByTypeAndLogin(PerunSession sess, String extType, String extLogin)	Gets list of all users external sources by specific type and extLogin.
List<Resource>	getAssignedResources(PerunSession sess, Facility facility, User user)	Return all resources of specified facility, where user is assigned through all his members.
List<Resource>	getAssignedResources(PerunSession sess, User user)	Return all resources, where user is assigned through all his members.
List<RichResource>	getAssignedRichResources(PerunSession sess, User user)	Return all rich resources, where user is assigned through all his members.
List<Resource>	getAssociatedResources(PerunSession sess, Facility facility, User user)	Return all resources of specified facility with which user is associated through all his members.
List<Resource>	getAssociatedResources(PerunSession sess, User user)	Get all resources with which user can be associated (similar to assigned resources, but does not require ACTIVE group-resource assignment).
BlockedLogin	getBlockedLoginById(PerunSession sess, int id)	Get blocked login by id
Paginated<BlockedLogin>	getBlockedLoginsPage(PerunSession sess, BlockedLoginsPageQuery query)	Get page of blocked logins.
List<Group>	getGroupsWhereUserIsAdmin(PerunSession sess, User user)	Returns list of Groups in Perun, where the User is a direct Administrator or he is a VALID member of any group which is Administrator of some of these Groups.
List<Group>	getGroupsWhereUserIsAdmin(PerunSession sess, Vo vo, User user)	Returns list of Groups in selected Vo, where the User is a direct Administrator or he is a VALID member of any group which is Administrator of some of these Groups.
int	getIdOfBlockedLogin(PerunSession sess, String login, String namespace)	Return ID of blocked login
PasswordManagerModule	getPasswordManagerModule(PerunSession session, String namespace)	Return instance of PasswordManagerModule for specified namespace or NULL if class for module is not found.
List<String>	getPendingPreferredEmailChanges(PerunSession sess, User user)	Return list of email addresses of user, which are awaiting validation and are inside time window for validation.
String	getPreferredEmailChangeRequest(PerunSession sess, User user, UUID uuid)	Get new preferred email value from user's original request
Integer	getRelatedUserIdByBlockedLoginInNamespace(PerunSession sess, String login, String namespace)	Get user id of the user who was related to the given login in the past
List<Pair<String,String>>	getReservedLoginsByApp(PerunSession sess, int appId)	Gets reserved logins which used in the given application.
List<Pair<String,String>>	getReservedLoginsOnlyByGivenApp(PerunSession sess, int appId)	Gets reserved logins which can be deleted - they are used only in the given application.
List<User>	getSpecificUsers(PerunSession sess)	Return all specific Users (only specific users) Return also users who has no owners.
List<User>	getSpecificUsersByUser(PerunSession sess, User user)	Return all specificUsers who are owned by the user and their ownership is not in status disabled
List<User>	getSponsors(PerunSession sess, Member sponsoredMember)	Gets list of user that sponsored a member.
User	getUserById(PerunSession sess, int id)	Returns user by its id.
User	getUserByMember(PerunSession sess, Member member)	Returns user by VO member.
User	getUserByUserExtSource(PerunSession sess, UserExtSource userExtSource)	Returns user by his login in external source.
UserExtSource	getUserExtSourceByExtLogin(PerunSession sess, ExtSource source, String extLogin)	Gets user's external source by the user's external login and external source.
UserExtSource	getUserExtSourceById(PerunSession sess, int id)	Get the user ext source by its id.
UserExtSource	getUserExtSourceByUniqueAttributeValue(PerunSession sess, int attrId, String uniqueValue)	Return userExtSource for specific attribute id and unique value.
List<UserExtSource>	getUserExtSources(PerunSession sess, User user)	Get List of user ext sources by user
List<UserExtSource>	getUserExtSourcesByIds(PerunSession sess, List<Integer> ids)	Gets user ext sources by their ids.
List<User>	getUsers(PerunSession sess)	Returns all users (included specific users).
List<User>	getUsersByAttribute(PerunSession sess, Attribute attribute)	Returns all users who have set the attribute with the value.
List<User>	getUsersByAttribute(PerunSession sess, Attribute attribute, boolean ignoreCase)	Returns all users who have set the attribute with the value IGNORING CASE in the comparison.
List<User>	getUsersByAttributeValue(PerunSession sess, AttributeDefinition attributeDefinition, String attributeValue)	Returns all users who have the attribute with the value.
List<User>	getUsersByExtSourceTypeAndLogin(PerunSession perunSession, String extSourceType, String login)	Get all the users who have given type of the ExtSource and login.
List<User>	getUsersByIds(PerunSession sess, List<Integer> usersIds)	Gets users by their ids.
List<User>	getUsersBySpecificUser(PerunSession sess, User specificUser)	Return all users who owns the specificUser and their ownership is not in status disabled
List<User>	getUsersByVo(PerunSession sess, Vo vo)	Return users which have member in VO.
int	getUsersCount(PerunSession sess)	Get count of all users.
Paginated<User>	getUsersPage(PerunSession sess, UsersPageQuery query)	Get page of users.
List<Pair<String,String>>	getUsersReservedLogins(User user)	Return list of all reserved logins for specific user (pair is namespace and login)
List<User>	getUsersWithoutVoAssigned(PerunSession sess)	Returns all users who are not member of any VO.
List<Vo>	getVosWhereUserIsAdmin(PerunSession sess, User user)	Returns list of VOs, where the user is an Administrator.
List<Vo>	getVosWhereUserIsMember(PerunSession sess, User user)	Returns list of Vos' ids, where the user is member.
boolean	isLoginBlocked(PerunSession sess, String login, boolean ignoreCase)	Return true if login is blocked (globally - for all namespaces per instance OR for some namespace), false if not.
boolean	isLoginBlockedForNamespace(PerunSession sess, String login, String namespace, boolean ignoreCase)	Return true if login is blocked for given namespace, false if not When the namespace is null, then the method behaves like isLoginBlockedGlobally(), so it checks if the login is blocked globally.
boolean	isLoginBlockedGlobally(PerunSession sess, String login)	Return true if login is blocked globally (for all namespaces per instance - represented by namespace = null), false if not.
boolean	isLoginReserved(PerunSession sess, String namespace, String login, boolean ignoreCase)	Return true if login is already reserved in specified namespace or in any namespace (if namespace is null), false if not.
boolean	isUserAnonymized(PerunSession sess, User user)	Checks whether user has been anonymized or not.
boolean	isUserPerunAdmin(PerunSession sess, User user)	Returns true if the user is PERUNADMIN.
Map<String,Object>	loadPasswordResetRequest(PerunSession sess, UUID uuid)	Returns only valid password reset request with specified UUID.
void	removeAllAuthorships(PerunSession sess, User user)	Removes all authorships of user when user is deleted from DB (author records on all his publications).
void	removeAllPasswordResetRequests(PerunSession sess, User user)	Removes all password reset requests associated with user.
void	removeAllPreferredEmailChangeRequests(PerunSession sess, User user)	Removes all mail change requests related to user.
void	removeAllUserExtSources(PerunSession sess, User user)	Removes all user's external sources.
void	removeSpecificUserOwner(PerunSession sess, User user, User specificUser)	Remove specificUser owner (the user) Only disable ownership of user and specificUser
void	removeUserExtSource(PerunSession sess, User user, UserExtSource userExtSource)	Removes user's external sources.
UUID	requestPreferredEmailChange(PerunSession sess, User user, String email)	Store request of change of user's preferred email address.
User	setSpecificUserType(PerunSession sess, User user, SpecificUserType specificUserType)	Set flag for specific user type for the user.
boolean	specificUserOwnershipExists(PerunSession sess, User user, User specificUser)	Return true if ownership between user and specificUser already exists.
void	unblockLogin(PerunSession sess, String login, String namespace)	Unblock login for given namespace or unblock login globally (if no namespace is selected)
void	unblockLoginsById(PerunSession sess, List<Integer> loginIds)	Unblock logins by id globally, or in the namespace they were initially blocked.
User	unsetSpecificUserType(PerunSession sess, User user, SpecificUserType specificUserType)	Unset flag for specific user type for the user.
User	updateNameTitles(PerunSession sess, User user)	Updates titles before/after users name.
User	updateUser(PerunSession sess, User user)	Updates users data in DB.
UserExtSource	updateUserExtSource(PerunSession sess, UserExtSource userExtSource)	Updates user;s userExtSource in DB.
void	updateUserExtSourceLastAccess(PerunSession sess, UserExtSource userExtSource)	Updates user's userExtSource last access time in DB.
boolean	userExists(PerunSession sess, User user)	Check if user exists in underlaying data source.
boolean	userExtSourceExists(PerunSession sess, UserExtSource userExtSource)	Check if userExtSource exists in underlaying data source.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

userMappingSelectQuery

protected static final String userMappingSelectQuery

See Also:

• Constant Field Values

userExtSourceMappingSelectQuery

protected static final String userExtSourceMappingSelectQuery

See Also:

• Constant Field Values

USER_MAPPER

protected static final RowMapper<User> USER_MAPPER

USERBLACKLIST_EXTRACTOR

protected static final ResultSetExtractor<List<Pair<User,String>>> USERBLACKLIST_EXTRACTOR

BLOCKED_LOGINS_MAPPER

public static final RowMapper<BlockedLogin> BLOCKED_LOGINS_MAPPER

Constructor Details

UsersManagerImpl

public UsersManagerImpl(DataSource perunPool)

Constructor.

Parameters:

perunPool - connection pool

Method Details

getUserById

public User getUserById(PerunSession sess,
 int id)
                 throws UserNotExistsException

Description copied from interface: UsersManagerImplApi

Returns user by its id.

Specified by:

getUserById in interface UsersManagerImplApi

Returns:

user

Throws:

UserNotExistsException

getUserByUserExtSource

public User getUserByUserExtSource(PerunSession sess,
 UserExtSource userExtSource)
                            throws UserNotExistsException

Description copied from interface: UsersManagerImplApi

Returns user by his login in external source.

Specified by:

getUserByUserExtSource in interface UsersManagerImplApi

Returns:

user by its userExtSource or throws UserNotExistsException

Throws:

UserNotExistsException

getUsersByExtSourceTypeAndLogin

public List<User> getUsersByExtSourceTypeAndLogin(PerunSession perunSession,
 String extSourceType,
 String login)

Description copied from interface: UsersManagerImplApi

Get all the users who have given type of the ExtSource and login.

Specified by:

getUsersByExtSourceTypeAndLogin in interface UsersManagerImplApi

Parameters:

perunSession - perun session

extSourceType - type of the user extSource

login - login of the user

Returns:

all users with given parameters

getUserByMember

public User getUserByMember(PerunSession sess,
 Member member)

Description copied from interface: UsersManagerImplApi

Returns user by VO member.

Specified by:

getUserByMember in interface UsersManagerImplApi

Returns:

user

getUsersByVo

public List<User> getUsersByVo(PerunSession sess,
 Vo vo)

Description copied from interface: UsersManagerImplApi

Return users which have member in VO.

Specified by:

getUsersByVo in interface UsersManagerImplApi

Returns:

list of users

getUsers

public List<User> getUsers(PerunSession sess)

Description copied from interface: UsersManagerImplApi

Returns all users (included specific users).

Specified by:

getUsers in interface UsersManagerImplApi

Returns:

list of all users

getSpecificUsersByUser

public List<User> getSpecificUsersByUser(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Return all specificUsers who are owned by the user and their ownership is not in status disabled

Specified by:

getSpecificUsersByUser in interface UsersManagerImplApi

user - the user

Returns:

list of specificUsers who are owned by the user

getUsersBySpecificUser

public List<User> getUsersBySpecificUser(PerunSession sess,
 User specificUser)

Description copied from interface: UsersManagerImplApi

Return all users who owns the specificUser and their ownership is not in status disabled

Specified by:

getUsersBySpecificUser in interface UsersManagerImplApi

specificUser - the specific User

Returns:

list of user who owns the specificUser

removeSpecificUserOwner

public void removeSpecificUserOwner(PerunSession sess,
 User user,
 User specificUser)
                             throws SpecificUserOwnerAlreadyRemovedException

Description copied from interface: UsersManagerImplApi

Remove specificUser owner (the user) Only disable ownership of user and specificUser

Specified by:

removeSpecificUserOwner in interface UsersManagerImplApi

user - the user

specificUser - the specificUser

Throws:

SpecificUserOwnerAlreadyRemovedException - if there are 0 rows affected by deleting from DB

addSpecificUserOwner

public void addSpecificUserOwner(PerunSession sess,
 User user,
 User specificUser)

Description copied from interface: UsersManagerImplApi

Add specificUser owner (the user). If not exists, create new ownership. If exists, only enable ownership for user and specificUser

Specified by:

addSpecificUserOwner in interface UsersManagerImplApi

user - the user

specificUser - the specificUser

enableOwnership

public void enableOwnership(PerunSession sess,
 User user,
 User specificUser)

Description copied from interface: UsersManagerImplApi

Set ownership for user and specificUser to ENABLE (0).

Specified by:

enableOwnership in interface UsersManagerImplApi

disableOwnership

public void disableOwnership(PerunSession sess,
 User user,
 User specificUser)

Description copied from interface: UsersManagerImplApi

Set ownership for user and specificUser to DISABLE (1).

Specified by:

disableOwnership in interface UsersManagerImplApi

specificUserOwnershipExists

public boolean specificUserOwnershipExists(PerunSession sess,
 User user,
 User specificUser)

Description copied from interface: UsersManagerImplApi

Return true if ownership between user and specificUser already exists. Return false if not.

Specified by:

specificUserOwnershipExists in interface UsersManagerImplApi

Returns:

true if ownership exists, false if not

getSpecificUsers

public List<User> getSpecificUsers(PerunSession sess)

Description copied from interface: UsersManagerImplApi

Return all specific Users (only specific users) Return also users who has no owners.

Specified by:

getSpecificUsers in interface UsersManagerImplApi

Returns:

list of all specific users in perun

deleteUser

public void deleteUser(PerunSession sess,
 User user)
                throws UserAlreadyRemovedException,
SpecificUserAlreadyRemovedException

Description copied from interface: UsersManagerImplApi

Deletes user (normal or specific) including all relations to other users (normal,specific,sponsor)

Specified by:

deleteUser in interface UsersManagerImplApi

Parameters:

sess - Session for authz

user - User to delete

Throws:

UserAlreadyRemovedException - When user is already deleted

SpecificUserAlreadyRemovedException - When specific user is already deleted

createUser

public User createUser(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Creates the user, stores it in the DB. This method will fill id and uuid to the given user object, but returns a new user object loaded from the DB.

Specified by:

createUser in interface UsersManagerImplApi

user - user bean with filled properties

Returns:

user with user.id filled

setSpecificUserType

public User setSpecificUserType(PerunSession sess,
 User user,
 SpecificUserType specificUserType)

Description copied from interface: UsersManagerImplApi

Set flag for specific user type for the user.

Specified by:

setSpecificUserType in interface UsersManagerImplApi

user - the user

specificUserType - specific type of user

Returns:

unsetSpecificUserType

public User unsetSpecificUserType(PerunSession sess,
 User user,
 SpecificUserType specificUserType)

Description copied from interface: UsersManagerImplApi

Unset flag for specific user type for the user.

Specified by:

unsetSpecificUserType in interface UsersManagerImplApi

user - the user

specificUserType - specific type of user

Returns:

updateUser

public User updateUser(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Updates users data in DB.

Specified by:

updateUser in interface UsersManagerImplApi

Returns:

updated user

updateNameTitles

public User updateNameTitles(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Updates titles before/after users name. New titles must be set inside User object. Setting any title to null will remove title from name. Other user's properties are ignored.

Specified by:

updateNameTitles in interface UsersManagerImplApi

Returns:

updated user with new titles before/after name

anonymizeUser

public User anonymizeUser(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Anonymizes users data in DB - sets names and titles to NULL and sets anonymized flag to true.

Specified by:

anonymizeUser in interface UsersManagerImplApi

Returns:

user

isUserAnonymized

public boolean isUserAnonymized(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Checks whether user has been anonymized or not.

Specified by:

isUserAnonymized in interface UsersManagerImplApi

Returns:

true if user has been anonymized, false otherwise.

updateUserExtSourceLastAccess

public void updateUserExtSourceLastAccess(PerunSession sess,
 UserExtSource userExtSource)

Description copied from interface: UsersManagerImplApi

Updates user's userExtSource last access time in DB.

Specified by:

updateUserExtSourceLastAccess in interface UsersManagerImplApi

updateUserExtSource

public UserExtSource updateUserExtSource(PerunSession sess,
 UserExtSource userExtSource)
                                  throws UserExtSourceExistsException

Description copied from interface: UsersManagerImplApi

Updates user;s userExtSource in DB.

Specified by:

updateUserExtSource in interface UsersManagerImplApi

Returns:

updated user

Throws:

UserExtSourceExistsException - When UES with same login/extSource already exists.

addUserExtSource

public UserExtSource addUserExtSource(PerunSession sess,
 User user,
 UserExtSource userExtSource)

Description copied from interface: UsersManagerImplApi

Adds user's external sources.

Specified by:

addUserExtSource in interface UsersManagerImplApi

Returns:

user external source with userExtSource.id filled

getUserExtSourceByExtLogin

public UserExtSource getUserExtSourceByExtLogin(PerunSession sess,
 ExtSource source,
 String extLogin)
                                         throws UserExtSourceNotExistsException

Description copied from interface: UsersManagerImplApi

Gets user's external source by the user's external login and external source.

Specified by:

getUserExtSourceByExtLogin in interface UsersManagerImplApi

Returns:

user external source object

Throws:

UserExtSourceNotExistsException

getActiveUserExtSources

public List<UserExtSource> getActiveUserExtSources(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Get all users userExtSources with last_access not older than (now - m), where 'm' is number of months defined in CONSTANT in UsersManagerImpl.

Specified by:

getActiveUserExtSources in interface UsersManagerImplApi

user - user to get extSources for

Returns:

list of active user extSources (not older than now - m)

getAllUserExtSourcesByTypeAndLogin

public List<UserExtSource> getAllUserExtSourcesByTypeAndLogin(PerunSession sess,
 String extType,
 String extLogin)

Description copied from interface: UsersManagerImplApi

Gets list of all users external sources by specific type and extLogin.

Specified by:

getAllUserExtSourcesByTypeAndLogin in interface UsersManagerImplApi

extType - - type of extSource (ex. 'IDP')

extLogin - - extLogin of userExtSource

Returns:

list of userExtSources with type and login, empty list if no such userExtSource exists

getUserExtSourceById

public UserExtSource getUserExtSourceById(PerunSession sess,
 int id)
                                   throws UserExtSourceNotExistsException

Description copied from interface: UsersManagerImplApi

Get the user ext source by its id.

Specified by:

getUserExtSourceById in interface UsersManagerImplApi

Returns:

user external source for the id

Throws:

UserExtSourceNotExistsException

getUserExtSourceByUniqueAttributeValue

public UserExtSource getUserExtSourceByUniqueAttributeValue(PerunSession sess,
 int attrId,
 String uniqueValue)
                                                     throws UserExtSourceNotExistsException

Description copied from interface: UsersManagerImplApi

Return userExtSource for specific attribute id and unique value. If not found, throw and exception. It looks for exactly one value of the specific attribute type: - Integer -> exactly match - String -> exactly match - Map -> exactly match of "key=value" - ArrayList -> exactly match of one of the value

Specified by:

getUserExtSourceByUniqueAttributeValue in interface UsersManagerImplApi

attrId - attribute id we are looking for

uniqueValue - value used for searching

Returns:

userExtSource found by attribute id and it's unique value

Throws:

UserExtSourceNotExistsException - if userExtSource can't be found

getUserExtSourcesByIds

public List<UserExtSource> getUserExtSourcesByIds(PerunSession sess,
 List<Integer> ids)

Description copied from interface: UsersManagerImplApi

Gets user ext sources by their ids. Silently skips non-existing user ext sources.

Specified by:

getUserExtSourcesByIds in interface UsersManagerImplApi

Returns:

List of UserExtSources with specified ids

getUserExtSources

public List<UserExtSource> getUserExtSources(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Get List of user ext sources by user

Specified by:

getUserExtSources in interface UsersManagerImplApi

Parameters:

sess - session

user - owner of extSources

Returns:

List of user's UserExtSources

removeUserExtSource

public void removeUserExtSource(PerunSession sess,
 User user,
 UserExtSource userExtSource)
                         throws UserExtSourceAlreadyRemovedException

Description copied from interface: UsersManagerImplApi

Removes user's external sources.

Specified by:

removeUserExtSource in interface UsersManagerImplApi

Throws:

UserExtSourceAlreadyRemovedException - if there are 0 rows affected by deleting from DB

removeAllUserExtSources

public void removeAllUserExtSources(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Removes all user's external sources.

Specified by:

removeAllUserExtSources in interface UsersManagerImplApi

getGroupsWhereUserIsAdmin

public List<Group> getGroupsWhereUserIsAdmin(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Returns list of Groups in Perun, where the User is a direct Administrator or he is a VALID member of any group which is Administrator of some of these Groups.

Specified by:

getGroupsWhereUserIsAdmin in interface UsersManagerImplApi

Returns:

list of Groups, where user or some of his groups is an Administrator

getGroupsWhereUserIsAdmin

public List<Group> getGroupsWhereUserIsAdmin(PerunSession sess,
 Vo vo,
 User user)

Description copied from interface: UsersManagerImplApi

Returns list of Groups in selected Vo, where the User is a direct Administrator or he is a VALID member of any group which is Administrator of some of these Groups.

Specified by:

getGroupsWhereUserIsAdmin in interface UsersManagerImplApi

vo - selected Vo under which we are looking for groups

user - manager of groups we are looking for

Returns:

list of Groups, where user or some of his groups (in the Vo) is an Administrator

getVosWhereUserIsAdmin

public List<Vo> getVosWhereUserIsAdmin(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Returns list of VOs, where the user is an Administrator. Including VOs, where the user is a VALID member of authorized group.

Specified by:

getVosWhereUserIsAdmin in interface UsersManagerImplApi

Returns:

list of VOs, where the user is an Administrator.

getVosWhereUserIsMember

public List<Vo> getVosWhereUserIsMember(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Returns list of Vos' ids, where the user is member.

Specified by:

getVosWhereUserIsMember in interface UsersManagerImplApi

Returns:

list of Vos, where the user is member

getUsersByAttribute

public List<User> getUsersByAttribute(PerunSession sess,
 Attribute attribute)

Description copied from interface: UsersManagerImplApi

Returns all users who have set the attribute with the value. Searching only def and opt attributes.

Specified by:

getUsersByAttribute in interface UsersManagerImplApi

Returns:

list of users

getUsersByAttribute

public List<User> getUsersByAttribute(PerunSession sess,
 Attribute attribute,
 boolean ignoreCase)

Description copied from interface: UsersManagerImplApi

Returns all users who have set the attribute with the value IGNORING CASE in the comparison. Searching only def and opt attributes.

Specified by:

getUsersByAttribute in interface UsersManagerImplApi

ignoreCase - TRUE to perform case-insensitive check

Returns:

list of users

getUsersByAttributeValue

public List<User> getUsersByAttributeValue(PerunSession sess,
 AttributeDefinition attributeDefinition,
 String attributeValue)

Description copied from interface: UsersManagerImplApi

Returns all users who have the attribute with the value. attributeValue is not converted to the attribute type, it is always type of String.

Specified by:

getUsersByAttributeValue in interface UsersManagerImplApi

Returns:

list of users

findUsers

public List<User> findUsers(PerunSession sess,
 String searchString)

Description copied from interface: UsersManagerImplApi

Returns list of users who matches the searchString, searching name, id, uuid, member attributes, user attributes and userExtSource attributes (listed in perun.properties).

Specified by:

findUsers in interface UsersManagerImplApi

Parameters:

sess - perun session

searchString - it will be looking for this search string in the specific parameters in DB

Returns:

list of users

findUsersByExactMatch

public List<User> findUsersByExactMatch(PerunSession sess,
 String searchString)

Description copied from interface: UsersManagerImplApi

Returns list of users who matches the searchString, searching name (exact match), id, uuid, member attributes, user attributes and userExtSource attributes (listed in perun.properties).

Specified by:

findUsersByExactMatch in interface UsersManagerImplApi

Parameters:

sess - perun session

searchString - it will be looking for this search string in the specific parameters in DB

Returns:

list of users

findUsersByName

public List<User> findUsersByName(PerunSession sess,
 String searchString)

Description copied from interface: UsersManagerImplApi

Returns list of users who matches the searchString

Specified by:

findUsersByName in interface UsersManagerImplApi

Returns:

list of users

findUsersByName

public List<User> findUsersByName(PerunSession sess,
 String titleBefore,
 String firstName,
 String middleName,
 String lastName,
 String titleAfter)

Description copied from interface: UsersManagerImplApi

Returns list of users who matches the fields.

Specified by:

findUsersByName in interface UsersManagerImplApi

Returns:

list of users

findUsersByExactName

public List<User> findUsersByExactName(PerunSession sess,
 String searchString)

Description copied from interface: UsersManagerImplApi

Returns list of users who exactly matches the searchString

Specified by:

findUsersByExactName in interface UsersManagerImplApi

Returns:

list of users

getUsersPage

public Paginated<User> getUsersPage(PerunSession sess,
 UsersPageQuery query)

Description copied from interface: UsersManagerImplApi

Get page of users.

Specified by:

getUsersPage in interface UsersManagerImplApi

Parameters:

sess - session

query - query with page information

Returns:

page of requested users

isUserPerunAdmin

public boolean isUserPerunAdmin(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Returns true if the user is PERUNADMIN.

Specified by:

isUserPerunAdmin in interface UsersManagerImplApi

Returns:

true if the user is PERUNADMIN, false otherwise.

userExists

public boolean userExists(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Check if user exists in underlaying data source.

Specified by:

userExists in interface UsersManagerImplApi

user - user to check

Returns:

true if user exists in underlaying data source, false otherwise

checkUserExtSourceExists

public void checkUserExtSourceExists(PerunSession sess,
 UserExtSource userExtSource)
                              throws UserExtSourceNotExistsException

Description copied from interface: UsersManagerImplApi

Check if userExtSource exists in underlaying data source by identity (login/extSource combination)

Specified by:

checkUserExtSourceExists in interface UsersManagerImplApi

Throws:

UserExtSourceNotExistsException

checkUserExtSourceExistsById

public void checkUserExtSourceExistsById(PerunSession sess,
 int id)
                                  throws UserExtSourceNotExistsException

Description copied from interface: UsersManagerImplApi

Check if userExtSource exists in underlaying data source by its ID.

Specified by:

checkUserExtSourceExistsById in interface UsersManagerImplApi

Throws:

UserExtSourceNotExistsException

checkReservedLogins

public void checkReservedLogins(PerunSession sess,
 String namespace,
 String login,
 boolean ignoreCase)
                         throws AlreadyReservedLoginException

Description copied from interface: UsersManagerImplApi

Check if login exists in specified namespace or in any namespace (if namespace is null).

Specified by:

checkReservedLogins in interface UsersManagerImplApi

namespace - namespace for login, null for all namespace

login - login to check

ignoreCase - TRUE to perform case-insensitive check

Throws:

AlreadyReservedLoginException - throw this exception if login already exist in table of reserved logins

isLoginReserved

public boolean isLoginReserved(PerunSession sess,
 String namespace,
 String login,
 boolean ignoreCase)

Description copied from interface: UsersManagerImplApi

Return true if login is already reserved in specified namespace or in any namespace (if namespace is null), false if not.

Specified by:

isLoginReserved in interface UsersManagerImplApi

namespace - namespace for login, null for all namespace

login - login to check

ignoreCase - TRUE to perform case-insensitive check

Returns:

true if login exist, false if not exist

getAllBlockedLoginsInNamespaces

public List<BlockedLogin> getAllBlockedLoginsInNamespaces(PerunSession sess)

Description copied from interface: UsersManagerImplApi

Returns all blocked logins in namespaces (if namespace is null, then this login is blocked globally)

Specified by:

getAllBlockedLoginsInNamespaces in interface UsersManagerImplApi

Returns:

list of all blocked logins in namespaces

isLoginBlocked

public boolean isLoginBlocked(PerunSession sess,
 String login,
 boolean ignoreCase)

Description copied from interface: UsersManagerImplApi

Return true if login is blocked (globally - for all namespaces per instance OR for some namespace), false if not. Globally banned logins are ALWAYS case-insensitive (ignoreCase value is not taken into account for them).

Specified by:

isLoginBlocked in interface UsersManagerImplApi

login - login to check

Returns:

true if login is blocked

isLoginBlockedGlobally

public boolean isLoginBlockedGlobally(PerunSession sess,
 String login)

Description copied from interface: UsersManagerImplApi

Return true if login is blocked globally (for all namespaces per instance - represented by namespace = null), false if not. Globally banned logins are ALWAYS case-insensitive.

Specified by:

isLoginBlockedGlobally in interface UsersManagerImplApi

login - login to check

Returns:

true if login is blocked globally

isLoginBlockedForNamespace

public boolean isLoginBlockedForNamespace(PerunSession sess,
 String login,
 String namespace,
 boolean ignoreCase)

Description copied from interface: UsersManagerImplApi

Return true if login is blocked for given namespace, false if not When the namespace is null, then the method behaves like isLoginBlockedGlobally(), so it checks if the login is blocked globally. Globally banned logins are ALWAYS case-insensitive.

Specified by:

isLoginBlockedForNamespace in interface UsersManagerImplApi

login - login to check

namespace - namespace for login

Returns:

true if login is blocked for given namespace (or globally for null namespace)

blockLogin

public void blockLogin(PerunSession sess,
 String login,
 String namespace,
 Integer relatedUserId)
                throws LoginIsAlreadyBlockedException

Description copied from interface: UsersManagerImplApi

Block login for given namespace or block login globally (if no namespace is selected)

Specified by:

blockLogin in interface UsersManagerImplApi

login - login to be blocked

namespace - namespace where the login should be blocked (null means block the login globally)

relatedUserId - id of the user related to the login or null if the relatedUserId should not be stored

Throws:

LoginIsAlreadyBlockedException

unblockLogin

public void unblockLogin(PerunSession sess,
 String login,
 String namespace)
                  throws LoginIsNotBlockedException

Description copied from interface: UsersManagerImplApi

Unblock login for given namespace or unblock login globally (if no namespace is selected)

Specified by:

unblockLogin in interface UsersManagerImplApi

login - login to be unblocked

namespace - namespace where the login should be unblocked (null means unblock the login globally)

Throws:

LoginIsNotBlockedException

getBlockedLoginsPage

public Paginated<BlockedLogin> getBlockedLoginsPage(PerunSession sess,
 BlockedLoginsPageQuery query)

Description copied from interface: UsersManagerImplApi

Get page of blocked logins.

Specified by:

getBlockedLoginsPage in interface UsersManagerImplApi

Parameters:

sess - session

query - query with page information

Returns:

page of requested blocked logins

unblockLoginsById

public void unblockLoginsById(PerunSession sess,
 List<Integer> loginIds)

Description copied from interface: UsersManagerImplApi

Unblock logins by id globally, or in the namespace they were initially blocked.

Specified by:

unblockLoginsById in interface UsersManagerImplApi

Parameters:

sess - session

loginIds - list of login ids

getBlockedLoginById

public BlockedLogin getBlockedLoginById(PerunSession sess,
 int id)
                                 throws LoginIsNotBlockedException

Description copied from interface: UsersManagerImplApi

Get blocked login by id

Specified by:

getBlockedLoginById in interface UsersManagerImplApi

Parameters:

sess - session

id - id of blocked login

Returns:

blocked login

Throws:

LoginIsNotBlockedException - when login is not blocked

getIdOfBlockedLogin

public int getIdOfBlockedLogin(PerunSession sess,
 String login,
 String namespace)

Description copied from interface: UsersManagerImplApi

Return ID of blocked login

Specified by:

getIdOfBlockedLogin in interface UsersManagerImplApi

Parameters:

sess - session

login - login

namespace - namespace

Returns:

id of login blocked in specified namespace

getRelatedUserIdByBlockedLoginInNamespace

public Integer getRelatedUserIdByBlockedLoginInNamespace(PerunSession sess,
 String login,
 String namespace)
                                                  throws LoginIsNotBlockedException

Description copied from interface: UsersManagerImplApi

Get user id of the user who was related to the given login in the past

Specified by:

getRelatedUserIdByBlockedLoginInNamespace in interface UsersManagerImplApi

Parameters:

sess - session

login - blocked login

namespace - namespace where the login is blocked

Returns:

user id or null if there is no related user id

Throws:

LoginIsNotBlockedException

userExtSourceExists

public boolean userExtSourceExists(PerunSession sess,
 UserExtSource userExtSource)

Description copied from interface: UsersManagerImplApi

Check if userExtSource exists in underlaying data source.

Specified by:

userExtSourceExists in interface UsersManagerImplApi

userExtSource - userExtSource to check

Returns:

true if userExtSource exists in underlaying data source, false otherwise

getUsersByIds

public List<User> getUsersByIds(PerunSession sess,
 List<Integer> usersIds)

Description copied from interface: UsersManagerImplApi

Gets users by their ids. Silently skips non-existing users.

Specified by:

getUsersByIds in interface UsersManagerImplApi

Returns:

List of users with specified ids

getUsersWithoutVoAssigned

public List<User> getUsersWithoutVoAssigned(PerunSession sess)

Description copied from interface: UsersManagerImplApi

Returns all users who are not member of any VO.

Specified by:

getUsersWithoutVoAssigned in interface UsersManagerImplApi

Returns:

list of users who are not member of any VO

removeAllAuthorships

public void removeAllAuthorships(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Removes all authorships of user when user is deleted from DB (author records on all his publications).

Specified by:

removeAllAuthorships in interface UsersManagerImplApi

getUsersReservedLogins

public List<Pair<String,String>> getUsersReservedLogins(User user)

Description copied from interface: UsersManagerImplApi

Return list of all reserved logins for specific user (pair is namespace and login)

Specified by:

getUsersReservedLogins in interface UsersManagerImplApi

Parameters:

user - for which get reserved logins

Returns:

list of pairs namespace and login

deleteUsersReservedLogins

public void deleteUsersReservedLogins(User user)

Description copied from interface: UsersManagerImplApi

Delete all reserved logins for specific user (pair is namespace and login)

Specified by:

deleteUsersReservedLogins in interface UsersManagerImplApi

Parameters:

user - for which get delete reserved logins

deleteUsersApplications

public void deleteUsersApplications(User user)

Description copied from interface: UsersManagerImplApi

Delete all applications and submitted data for specific user.

Specified by:

deleteUsersApplications in interface UsersManagerImplApi

Parameters:

user - for which delete applications and submitted data

requestPreferredEmailChange

public UUID requestPreferredEmailChange(PerunSession sess,
 User user,
 String email)

Description copied from interface: UsersManagerImplApi

Store request of change of user's preferred email address. Change in attribute value is not done, until email address is verified by link in email notice. (urn:perun:user:attribute-def:def:preferredEmail)

Specified by:

requestPreferredEmailChange in interface UsersManagerImplApi

Returns:

UUID of change request

getPreferredEmailChangeRequest

public String getPreferredEmailChangeRequest(PerunSession sess,
 User user,
 UUID uuid)

Description copied from interface: UsersManagerImplApi

Get new preferred email value from user's original request

Specified by:

getPreferredEmailChangeRequest in interface UsersManagerImplApi

Parameters:

sess - PerunSession

user - User to get new email address for

uuid - UUID of the email change request

Returns:

String return new preferred email

removeAllPreferredEmailChangeRequests

public void removeAllPreferredEmailChangeRequests(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Removes all mail change requests related to user.

Specified by:

removeAllPreferredEmailChangeRequests in interface UsersManagerImplApi

Parameters:

sess - PerunSession

user - User to remove preferred email change requests for

getPendingPreferredEmailChanges

public List<String> getPendingPreferredEmailChanges(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Return list of email addresses of user, which are awaiting validation and are inside time window for validation. If there is no preferred email change request pending or requests are outside time window for validation, returns empty list.

Specified by:

getPendingPreferredEmailChanges in interface UsersManagerImplApi

Parameters:

sess - PerunSession

user - User to check pending request for

Returns:

List user's email addresses pending validation

checkPasswordResetRequestIsValid

public void checkPasswordResetRequestIsValid(PerunSession sess,
 UUID uuid)
                                      throws PasswordResetLinkExpiredException,
PasswordResetLinkNotValidException

Description copied from interface: UsersManagerImplApi

Checks if the password reset request link is valid. The request is valid, if it was created, never used and hasn't expired yet.

Specified by:

checkPasswordResetRequestIsValid in interface UsersManagerImplApi

Parameters:

sess - PerunSession

uuid - UUID of the request to check

Throws:

PasswordResetLinkExpiredException - when the password reset request expired

PasswordResetLinkNotValidException - when the password reset request was already used or has never existed

loadPasswordResetRequest

public Map<String,Object> loadPasswordResetRequest(PerunSession sess,
 UUID uuid)
                                            throws PasswordResetLinkExpiredException,
PasswordResetLinkNotValidException

Description copied from interface: UsersManagerImplApi

Returns only valid password reset request with specified UUID. Validity is determined by time since request creation and actual usage (only once). If no valid entry is found, exception is thrown. Entry is invalidated once loaded.

Specified by:

loadPasswordResetRequest in interface UsersManagerImplApi

Parameters:

sess - PerunSession

uuid - UUID of the request to get

Returns:

Map with 3 keys: - "user_id" = ID of the user who requested this password reset, value is Integer - "namespace" = namespace user wants to reset password, value is String - "mail" = mail used for notification, value is String

Throws:

PasswordResetLinkExpiredException - when the password reset request expired

PasswordResetLinkNotValidException - when the password reset request was already used or has never existed

removeAllPasswordResetRequests

public void removeAllPasswordResetRequests(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Removes all password reset requests associated with user. This is used when deleting user from Perun.

Specified by:

removeAllPasswordResetRequests in interface UsersManagerImplApi

Parameters:

sess - PerunSession

user - User to remove all pwdreset requests

getUsersCount

public int getUsersCount(PerunSession sess)

Description copied from interface: UsersManagerImplApi

Get count of all users.

Specified by:

getUsersCount in interface UsersManagerImplApi

Returns:

count of all users

checkUserExists

public void checkUserExists(PerunSession sess,
 User user)
                     throws UserNotExistsException

Description copied from interface: UsersManagerImplApi

Check if user exists in underlaying data source.

Specified by:

checkUserExists in interface UsersManagerImplApi

Throws:

UserNotExistsException

getPasswordManagerModule

public PasswordManagerModule getPasswordManagerModule(PerunSession session,
 String namespace)

Description copied from interface: UsersManagerImplApi

Return instance of PasswordManagerModule for specified namespace or NULL if class for module is not found. Throws exception if class can't be instantiated.

Specified by:

getPasswordManagerModule in interface UsersManagerImplApi

Parameters:

session - Session with authz

namespace - Namespace to get PWDMGR module.

Returns:

Instance of password manager module or NULL if not exists for passed namespace.

getSponsors

public List<User> getSponsors(PerunSession sess,
 Member sponsoredMember)

Description copied from interface: UsersManagerImplApi

Gets list of user that sponsored a member.

Specified by:

getSponsors in interface UsersManagerImplApi

Parameters:

sess - perun session

sponsoredMember - member which is sponsored

Returns:

list of users that sponsored a member.

deleteSponsorLinks

public void deleteSponsorLinks(PerunSession sess,
 User sponsor)

Description copied from interface: UsersManagerImplApi

Deletes all links to sponsors, even those marked as inactive.

Specified by:

deleteSponsorLinks in interface UsersManagerImplApi

Parameters:

sess - perun session

sponsor - sponsor

findUsersWithExtSourceAttributeValueEnding

public List<User> findUsersWithExtSourceAttributeValueEnding(PerunSessionImpl sess,
 String attributeName,
 String valueEnd,
 List<String> excludeValueEnds)

Description copied from interface: UsersManagerImplApi

Implements search for #UsersManagerBl.findUsersWithExtSourceAttributeValueEnding().

Specified by:

findUsersWithExtSourceAttributeValueEnding in interface UsersManagerImplApi

getAssignedResources

public List<Resource> getAssignedResources(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Return all resources, where user is assigned through all his members.

Specified by:

getAssignedResources in interface UsersManagerImplApi

Returns:

All resources where user is assigned

getAssociatedResources

public List<Resource> getAssociatedResources(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Get all resources with which user can be associated (similar to assigned resources, but does not require ACTIVE group-resource assignment).

Specified by:

getAssociatedResources in interface UsersManagerImplApi

Returns:

list of resources with which user is associated

getAllowedResources

public List<Resource> getAllowedResources(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Return all resources, where user is allowed by all his members.

Specified by:

getAllowedResources in interface UsersManagerImplApi

Returns:

All resources where user is allowed

getAssignedResources

public List<Resource> getAssignedResources(PerunSession sess,
 Facility facility,
 User user)

Description copied from interface: UsersManagerImplApi

Return all resources of specified facility, where user is assigned through all his members.

Specified by:

getAssignedResources in interface UsersManagerImplApi

Returns:

All resources where user is assigned

getAssociatedResources

public List<Resource> getAssociatedResources(PerunSession sess,
 Facility facility,
 User user)

Description copied from interface: UsersManagerImplApi

Return all resources of specified facility with which user is associated through all his members. Does not require ACTIVE group-resource assignment.

Specified by:

getAssociatedResources in interface UsersManagerImplApi

Returns:

All resources with which user is associated

getAssignedRichResources

public List<RichResource> getAssignedRichResources(PerunSession sess,
 User user)

Description copied from interface: UsersManagerImplApi

Return all rich resources, where user is assigned through all his members.

Specified by:

getAssignedRichResources in interface UsersManagerImplApi

Returns:

All resources where user is assigned

getReservedLoginsByApp

public List<Pair<String,String>> getReservedLoginsByApp(PerunSession sess,
 int appId)

Description copied from interface: UsersManagerImplApi

Gets reserved logins which used in the given application.

Specified by:

getReservedLoginsByApp in interface UsersManagerImplApi

Returns:

list of logins (Pair: left - namespace, right - login)

getReservedLoginsOnlyByGivenApp

public List<Pair<String,String>> getReservedLoginsOnlyByGivenApp(PerunSession sess,
 int appId)

Description copied from interface: UsersManagerImplApi

Gets reserved logins which can be deleted - they are used only in the given application.

Specified by:

getReservedLoginsOnlyByGivenApp in interface UsersManagerImplApi

Returns:

list of logins (Pair: left - namespace, right - login)

deleteReservedLogin

public void deleteReservedLogin(PerunSession sess,
 Pair<String,String> login)

Description copied from interface: UsersManagerImplApi

Deletes given login reservations. Reserved logins must be removed from external systems (e.g. KDC) BEFORE calling this method via deletePassword() in UsersManager.

Specified by:

deleteReservedLogin in interface UsersManagerImplApi

login - login (pair namespace and login) to delete