Package org.openiam.srvc.idm
Class DefaultProvisioningService
- java.lang.Object
-
- org.openiam.srvc.AbstractApiService
-
- org.openiam.srvc.idm.DefaultProvisioningService
-
- All Implemented Interfaces:
ProvisionService
@Component("defaultProvision") public class DefaultProvisioningService extends AbstractApiService implements ProvisionServiceDefaultProvisioningService is responsible for receiving and processing requests that are to be sent to the target system connectors.- Author:
- suneet
-
-
Field Summary
-
Fields inherited from class org.openiam.srvc.AbstractApiService
applicationContext, log, rabbitMQSender
-
-
Constructor Summary
Constructors Constructor Description DefaultProvisioningService(ProvisionQueue queue)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description ResponseaddEvent(ProvisionActionEvent event, ProvisionActionTypeEnum type)ManagedSystemViewerResponsebuildManagedSystemViewer(String userId, String managedSysId)ResponsedeleteUser(DeleteUserProvisioningRequest request)Deletes a user from OpenIAM and appropriate target systemsResponsedeProvisionUsersToResource(List<String> userIds, List<String> resourceIds)ResponsedisableUser(DisableUserProvisioningRequest request)Operation to disable user account based on request dataResponseenableUser(EnableUserProvisioningRequest request)Operation to enable user account based on request dataList<String>getAttributeNamesFromConnector(String managedSysId, boolean attributes)ResponselockUser(LockUserProvisionRequest request)Operation locks accountResponseprovisionUsersToResource(List<String> userIds, List<String> resourceIds)ResponserequestAdd(ExtensibleUser extUser, Login login)Adds user directly to a given target system bypassing policy map attributes script logicResponserequestModify(ExtensibleUser extUser, Login login)Modifies user directly in a given target system bypassing policy map attributes script logicUserPasswordResponseresetPassword(PasswordSync passwordSync)Reset password in target systemsResponseretryConnectorRequest(String replyId)ResponseretryProvisionRequest(String provisionRequestId)method used to re-send failed provision request to connector again, important, it does't generate new diff object, it just re-sends what was sent but failedResponsesaveUser(ProvisionUser user)The saveUser operation enables a requester to create or update a new user on the target systems.LookupUserResponsesearchUser(SearchObjectsProvisioningRequest request)Operation unlocks an accountPasswordValidationResponsesetPassword(PasswordSync passwordSync)The setPassword operation enables a requestor to specify a new password for an user across target systemsResponsestartBulkOperation(BulkOperationRequest bulkRequest, boolean async)ResponsesyncPasswordFromSrc(PasswordSync passwordSync)Method is used by target systems to inform OpenIAM that password was changed.ResponsetestConnectionConfig(String managedSysId)Operation validates the connection information that was supplied for this managed systemResponseunlockUser(UnlockUserProvisionRequest request)Operation unlocks an account-
Methods inherited from class org.openiam.srvc.AbstractApiService
broadcast, crudRequest, getBooleanValue, getIntValue, getIntValue, getRabbitMqQueue, getResponse, getResponse, getValue, getValue, getValueList, getValueList, idRequest, manageApiRequest, manageApiRequest, manageCrudApiRequest, manageCrudApiRequest, manageCrudApiRequest, manageCrudApiRequest, membershipRequestProcessing, membershipRequestProcessing, publish, publish, sendAsync, sendAsync
-
-
-
-
Constructor Detail
-
DefaultProvisioningService
@Autowired public DefaultProvisioningService(ProvisionQueue queue)
-
-
Method Detail
-
saveUser
public Response saveUser(ProvisionUser user)
Description copied from interface:ProvisionServiceThe saveUser operation enables a requester to create or update a new user on the target systems. Also this operation can do modify if this user has existed in one of the target systems.- Specified by:
saveUserin interfaceProvisionService- Parameters:
user- - new provisioning user- Returns:
- ProvisionUserResponse
-
deleteUser
public Response deleteUser(DeleteUserProvisioningRequest request)
Description copied from interface:ProvisionServiceDeletes a user from OpenIAM and appropriate target systems- Specified by:
deleteUserin interfaceProvisionService- Returns:
-
unlockUser
public Response unlockUser(UnlockUserProvisionRequest request)
Description copied from interface:ProvisionServiceOperation unlocks an account- Specified by:
unlockUserin interfaceProvisionService- Returns:
-
lockUser
public Response lockUser(LockUserProvisionRequest request)
Description copied from interface:ProvisionServiceOperation locks account- Specified by:
lockUserin interfaceProvisionService- Returns:
-
setPassword
public PasswordValidationResponse setPassword(PasswordSync passwordSync)
Description copied from interface:ProvisionServiceThe setPassword operation enables a requestor to specify a new password for an user across target systems- Specified by:
setPasswordin interfaceProvisionService- Returns:
-
syncPasswordFromSrc
public Response syncPasswordFromSrc(PasswordSync passwordSync)
Description copied from interface:ProvisionServiceMethod is used by target systems to inform OpenIAM that password was changed. OpenIAM will update password value for all identities that user has and perform provisioning to all target systems except target system that pointed inPasswordSync.managedSystemIdzaporozhets- Specified by:
syncPasswordFromSrcin interfaceProvisionService- Parameters:
passwordSync- - synchronization password requests- Returns:
- Response with
Response.status=ResponseStatus.SUCCESSin case that operation performed correctly,method returnResponse.status=ResponseStatus.FAILUREin case of error. You can check error code inResponse.errorCodeandResponse.errorText
-
resetPassword
public UserPasswordResponse resetPassword(PasswordSync passwordSync)
Description copied from interface:ProvisionServiceReset password in target systems- Specified by:
resetPasswordin interfaceProvisionService- Returns:
- PasswordResponse
-
disableUser
public Response disableUser(DisableUserProvisioningRequest request)
Description copied from interface:ProvisionServiceOperation to disable user account based on request data- Specified by:
disableUserin interfaceProvisionService- Returns:
-
enableUser
public Response enableUser(EnableUserProvisioningRequest request)
Description copied from interface:ProvisionServiceOperation to enable user account based on request data- Specified by:
enableUserin interfaceProvisionService- Returns:
-
searchUser
public LookupUserResponse searchUser(SearchObjectsProvisioningRequest request)
Description copied from interface:ProvisionServiceOperation unlocks an account- Specified by:
searchUserin interfaceProvisionService- Returns:
-
startBulkOperation
public Response startBulkOperation(BulkOperationRequest bulkRequest, boolean async)
- Specified by:
startBulkOperationin interfaceProvisionService
-
buildManagedSystemViewer
public ManagedSystemViewerResponse buildManagedSystemViewer(String userId, String managedSysId)
- Specified by:
buildManagedSystemViewerin interfaceProvisionService
-
requestAdd
public Response requestAdd(ExtensibleUser extUser, Login login)
Description copied from interface:ProvisionServiceAdds user directly to a given target system bypassing policy map attributes script logic- Specified by:
requestAddin interfaceProvisionService- Returns:
-
requestModify
public Response requestModify(ExtensibleUser extUser, Login login)
Description copied from interface:ProvisionServiceModifies user directly in a given target system bypassing policy map attributes script logic- Specified by:
requestModifyin interfaceProvisionService- Returns:
-
addEvent
public Response addEvent(ProvisionActionEvent event, ProvisionActionTypeEnum type)
- Specified by:
addEventin interfaceProvisionService
-
testConnectionConfig
public Response testConnectionConfig(String managedSysId)
Description copied from interface:ProvisionServiceOperation validates the connection information that was supplied for this managed system- Specified by:
testConnectionConfigin interfaceProvisionService- Returns:
-
getAttributeNamesFromConnector
public List<String> getAttributeNamesFromConnector(String managedSysId, boolean attributes)
- Specified by:
getAttributeNamesFromConnectorin interfaceProvisionService
-
deProvisionUsersToResource
public Response deProvisionUsersToResource(List<String> userIds, List<String> resourceIds)
- Specified by:
deProvisionUsersToResourcein interfaceProvisionService
-
retryConnectorRequest
public Response retryConnectorRequest(String replyId)
- Specified by:
retryConnectorRequestin interfaceProvisionService
-
provisionUsersToResource
public Response provisionUsersToResource(List<String> userIds, List<String> resourceIds)
- Specified by:
provisionUsersToResourcein interfaceProvisionService
-
retryProvisionRequest
public Response retryProvisionRequest(String provisionRequestId)
Description copied from interface:ProvisionServicemethod used to re-send failed provision request to connector again, important, it does't generate new diff object, it just re-sends what was sent but failed- Specified by:
retryProvisionRequestin interfaceProvisionService- Returns:
-
-