Package org.apereo.cas.services
Class RegisteredServiceAccessStrategyUtils
java.lang.Object
org.apereo.cas.services.RegisteredServiceAccessStrategyUtils
This is
RegisteredServiceAccessStrategyUtils
that encapsulates common
operations relevant to registered service access strategy and authorizations.
This is a support utility class that acts as a façade around common authorization
and access strategy presented in CAS.- Since:
- 5.0.0
-
Method Summary
Modifier and TypeMethodDescriptionstatic boolean
ensurePrincipalAccessIsAllowedForService
(org.apereo.cas.authentication.principal.Service service, org.apereo.cas.services.RegisteredService registeredService, String principalId, Map<String, List<Object>> attributes) Ensure principal access is allowed for service.static void
ensureServiceAccessIsAllowed
(org.apereo.cas.authentication.principal.Service service, org.apereo.cas.services.RegisteredService registeredService) Ensure service access is allowed.static void
ensureServiceAccessIsAllowed
(org.apereo.cas.services.RegisteredService registeredService) Ensure service access is allowed.static boolean
ensureServiceIsNotExpired
(org.apereo.cas.services.RegisteredService registeredService) Ensure service is not expired.static void
ensureServiceSsoAccessIsAllowed
(org.apereo.cas.services.RegisteredService registeredService, org.apereo.cas.authentication.principal.Service service, org.apereo.cas.ticket.TicketGrantingTicket ticketGrantingTicket) Ensure service sso access is allowed.static void
ensureServiceSsoAccessIsAllowed
(org.apereo.cas.services.RegisteredService registeredService, org.apereo.cas.authentication.principal.Service service, org.apereo.cas.ticket.TicketGrantingTicket ticketGrantingTicket, boolean credentialsProvided) Ensure service sso access is allowed.static Predicate
<org.apereo.cas.services.RegisteredService> Gets registered service expiration policy predicate.
-
Method Details
-
ensureServiceAccessIsAllowed
public static void ensureServiceAccessIsAllowed(org.apereo.cas.services.RegisteredService registeredService) Ensure service access is allowed.- Parameters:
registeredService
- the registered service
-
ensureServiceAccessIsAllowed
public static void ensureServiceAccessIsAllowed(@Nullable org.apereo.cas.authentication.principal.Service service, @Nullable org.apereo.cas.services.RegisteredService registeredService) Ensure service access is allowed.- Parameters:
service
- the serviceregisteredService
- the registered service
-
ensureServiceIsNotExpired
public static boolean ensureServiceIsNotExpired(org.apereo.cas.services.RegisteredService registeredService) Ensure service is not expired.- Parameters:
registeredService
- the service- Returns:
- boolean - true if service is not expired
-
ensureServiceSsoAccessIsAllowed
public static void ensureServiceSsoAccessIsAllowed(org.apereo.cas.services.RegisteredService registeredService, org.apereo.cas.authentication.principal.Service service, org.apereo.cas.ticket.TicketGrantingTicket ticketGrantingTicket) Ensure service sso access is allowed.- Parameters:
registeredService
- the registered serviceservice
- the serviceticketGrantingTicket
- the ticket granting ticket
-
ensureServiceSsoAccessIsAllowed
public static void ensureServiceSsoAccessIsAllowed(org.apereo.cas.services.RegisteredService registeredService, org.apereo.cas.authentication.principal.Service service, org.apereo.cas.ticket.TicketGrantingTicket ticketGrantingTicket, boolean credentialsProvided) Ensure service sso access is allowed.- Parameters:
registeredService
- the registered serviceservice
- the serviceticketGrantingTicket
- the ticket granting ticketcredentialsProvided
- the credentials provided
-
ensurePrincipalAccessIsAllowedForService
public static boolean ensurePrincipalAccessIsAllowedForService(org.apereo.cas.authentication.principal.Service service, org.apereo.cas.services.RegisteredService registeredService, String principalId, Map<String, List<Object>> attributes) throws ThrowableEnsure principal access is allowed for service.- Parameters:
service
- the serviceregisteredService
- the registered serviceprincipalId
- the principal idattributes
- the attributes- Returns:
- true/false
- Throws:
Throwable
- the throwable
-
getRegisteredServiceExpirationPolicyPredicate
public static Predicate<org.apereo.cas.services.RegisteredService> getRegisteredServiceExpirationPolicyPredicate()Gets registered service expiration policy predicate.- Returns:
- the registered service expiration policy predicate
-