Package digilib.auth
Class IpServletAuthnOps
java.lang.Object
digilib.auth.IpAuthnOps
digilib.auth.IpServletAuthnOps
- All Implemented Interfaces:
AuthnOps
Implements AuthnOps using IP adresses defined in an XML config file and Servlet API isUserInRole().
The name of the configuration file is read from the digilib config parameter "auth-file".
The tag "digilib-adresses" is read from the configuration file:
<digilib-addresses>
<address ip="130.92.68" role="eastwood-coll,ptolemaios-geo" />
<address ip="130.92.151" role="wtwg" />
<address ip="0:0:0:0:0:0:0:1" role="local" />
</digilib-addresses>
A computer with an ip address that matches "ip" is automatically granted all roles under "role".
The ip address is matched from the left (in full quads). Roles under "role" must be separated by comma only (no spaces).
Uses ServletRequest.isUserInRole() if roles provided by IP are not sufficient.-
Field Summary
FieldsFields inherited from class digilib.auth.IpAuthnOps
authIP4s, authIP6s, configFile -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptiongetUserRoles(DigilibRequest dlRequest) Return the list of roles associated with the user represented by request.booleanReturn if the implementation supports getUserRoles().booleanisUserInRole(DigilibRequest dlRequest, String role) Test if the user represented by request has the given role.Methods inherited from class digilib.auth.IpAuthnOps
init
-
Field Details
-
logger
protected static final org.slf4j.Logger logger
-
-
Constructor Details
-
IpServletAuthnOps
public IpServletAuthnOps()
-
-
Method Details
-
hasUserRoles
public boolean hasUserRoles()Description copied from interface:AuthnOpsReturn if the implementation supports getUserRoles().- Specified by:
hasUserRolesin interfaceAuthnOps- Overrides:
hasUserRolesin classIpAuthnOps- Returns:
- true if the implementation supports getUserRoles().
-
getUserRoles
Description copied from interface:AuthnOpsReturn the list of roles associated with the user represented by request. Returns null if a list of roles is not available. Users of this API should check hasUserRoles().- Specified by:
getUserRolesin interfaceAuthnOps- Overrides:
getUserRolesin classIpAuthnOps- Parameters:
dlRequest- current DigilibRequest- Returns:
- list of user's roles
- Throws:
AuthOpException- Exception thrown on error.
-
isUserInRole
Description copied from interface:AuthnOpsTest if the user represented by request has the given role.- Specified by:
isUserInRolein interfaceAuthnOps- Overrides:
isUserInRolein classIpAuthnOps- Parameters:
dlRequest- Request with user information.role- role to be tested.- Returns:
- true if the user has the role.
- Throws:
AuthOpException- Exception thrown on error.
-