| Interface | Description |
|---|---|
| AuthenticationManager |
Manages authentication activities for a Engine: user login, logout, and credential refreshes.
|
| AuthorizationManager |
Manages all access control and authorization; determines what authenticated users are allowed to do.
|
| Authorizer |
Interface for service providers of authorization information.
|
| UserManager |
Provides a facade for obtaining user information.
|
| Class | Description |
|---|---|
| DefaultAuthenticationManager |
Default implementation for
AuthenticationManager
|
| DefaultAuthorizationManager |
Default implementation for
AuthorizationManager
See the DefaultAuthorizationManager.checkPermission(Session, Permission) and DefaultAuthorizationManager.hasRoleOrPrincipal(Session, Principal) methods for more
information on the authorization logic. |
| DefaultUserManager |
Default implementation for
UserManager. |
| DefaultUserManager.JSONUserModule |
Implements the JSON API for usermanager.
|
| GroupPrincipal |
Immutable Principal that represents a Group.
|
| SecurityVerifier |
Helper class for verifying JSPWiki's security configuration.
|
| SessionMonitor |
Manages Sessions for different Engines.
|
| WikiPrincipal |
A lightweight, immutable Principal class.
|
| Exception | Description |
|---|---|
| NoSuchPrincipalException |
Thrown in some error situations where a WikiPrincipal object does not exist.
|
| WikiSecurityException |
Indicates an authentication or authorization
error or exception.
|
Authentication, Authorization and the third A thing.
JSPWiki contains a fairly versatile AAA subsystem, with per-page access control. This is the main package which contains everything which is related to it.
Copyright (c) 2001-2022 The Apache Software Foundation. All rights reserved.