Package com.microsoft.jenkins.azuread

Class AzureSecurityRealm

java.lang.Object

hudson.model.AbstractDescribableImpl<SecurityRealm>

hudson.security.SecurityRealm

com.microsoft.jenkins.azuread.AzureSecurityRealm

All Implemented Interfaces:

ExtensionPoint, Describable<SecurityRealm>

public class AzureSecurityRealm
extends SecurityRealm

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static final class	AzureSecurityRealm.ConverterImpl
static final class	AzureSecurityRealm.CrumbExempt
static final class	AzureSecurityRealm.DescriptorImpl

Nested classes/interfaces inherited from class hudson.security.SecurityRealm

SecurityRealm.SecurityComponents

Nested classes/interfaces inherited from interface hudson.ExtensionPoint

ExtensionPoint.LegacyInstancesAreScopedToHudson

Field Summary

Fields

Modifier and Type	Field	Description
static final String	CALLBACK_URL
static final String	CONVERTER_DISABLE_GRAPH_INTEGRATION
static final String	CONVERTER_DOMAIN_HINT
static final String	CONVERTER_ENVIRONMENT_NAME
static final String	CONVERTER_PROMPT_ACCOUNT
static final String	CONVERTER_SINGLE_LOGOUT
static final String	NONCE_ATTRIBUTE
static final String	REFERER_ATTRIBUTE
static final String	TIMESTAMP_ATTRIBUTE

Fields inherited from class hudson.security.SecurityRealm

AUTHENTICATED_AUTHORITY, AUTHENTICATED_AUTHORITY2, LIST, NO_AUTHENTICATION

Constructor Summary

Constructors

Constructor	Description
AzureSecurityRealm()
AzureSecurityRealm(String tenant, String clientId, Secret clientSecret, int cacheDuration)

Method Summary

Modifier and Type	Method	Description
boolean	allowsSignup()
SecurityRealm.SecurityComponents	createSecurityComponents()
org.kohsuke.stapler.HttpResponse	doCommenceLogin(org.kohsuke.stapler.StaplerRequest2 request, String referer)
org.kohsuke.stapler.HttpResponse	doFinishLogin(org.kohsuke.stapler.StaplerRequest2 request)
com.azure.core.credential.AccessToken	getAccessToken()
String	getAzureEnvironmentName()
int	getCacheDuration()
Secret	getClientCertificate()
String	getClientCertificateSecret()
String	getClientId()
String	getClientIdSecret()
Secret	getClientSecret()
String	getClientSecretSecret()
String	getCredentialType()
String	getDomainHint()
org.jose4j.jwt.consumer.JwtConsumer	getJwtConsumer()
String	getLoginUrl()
protected String	getPostLogOutUrl2(org.kohsuke.stapler.StaplerRequest2 req, org.springframework.security.core.Authentication auth)
String	getTenant()
String	getTenantSecret()
boolean	isDisableGraphIntegration()
boolean	isFromRequest()
boolean	isPromptAccount()
boolean	isSingleLogout()
GroupDetails	loadGroupByGroupname2(String groupName, boolean fetchMembers)
void	setAzureEnvironmentName(String azureEnvironmentName)
void	setCacheDuration(int cacheDuration)
void	setCaches(com.github.benmanes.caffeine.cache.Cache<String,AzureAdUser> caches)
void	setClientCertificate(String clientCertificate)
void	setClientId(String clientId)
void	setClientSecret(String clientSecret)
void	setCredentialType(String credentialType)
void	setDisableGraphIntegration(boolean disableGraphIntegration)
void	setDomainHint(String domainHint)
void	setFromRequest(boolean fromRequest)
void	setPromptAccount(boolean promptAccount)
void	setSingleLogout(boolean singleLogout)
void	setTenant(String tenant)

Methods inherited from class hudson.security.SecurityRealm

all, canLogOut, commenceSignup, commonFilters, createCliAuthenticator, createFilter, createFilter, doCaptcha, doLogout, doLogout, getAuthenticationGatewayUrl, getCaptchaSupport, getCaptchaSupportDescriptors, getDescriptor, getFrom, getGroupIdStrategy, getPostLogOutUrl, getPostLogOutUrl2, getSecurityComponents, getUserIdStrategy, loadGroupByGroupname, loadGroupByGroupname, loadUserByUsername, loadUserByUsername2, setCaptchaSupport, validateCaptcha

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

REFERER_ATTRIBUTE

public static final String REFERER_ATTRIBUTE

TIMESTAMP_ATTRIBUTE

public static final String TIMESTAMP_ATTRIBUTE

NONCE_ATTRIBUTE

public static final String NONCE_ATTRIBUTE

CALLBACK_URL

public static final String CALLBACK_URL

See Also:

• Constant Field Values

CONVERTER_DISABLE_GRAPH_INTEGRATION

public static final String CONVERTER_DISABLE_GRAPH_INTEGRATION

See Also:

• Constant Field Values

CONVERTER_SINGLE_LOGOUT

public static final String CONVERTER_SINGLE_LOGOUT

See Also:

• Constant Field Values

CONVERTER_PROMPT_ACCOUNT

public static final String CONVERTER_PROMPT_ACCOUNT

See Also:

• Constant Field Values

CONVERTER_DOMAIN_HINT

public static final String CONVERTER_DOMAIN_HINT

See Also:

• Constant Field Values

CONVERTER_ENVIRONMENT_NAME

public static final String CONVERTER_ENVIRONMENT_NAME

See Also:

• Constant Field Values

Constructor Details

AzureSecurityRealm

@DataBoundConstructor
public AzureSecurityRealm(String tenant,
 String clientId,
 Secret clientSecret,
 int cacheDuration)

AzureSecurityRealm

public AzureSecurityRealm()

Method Details

getAccessToken

public com.azure.core.credential.AccessToken getAccessToken()

isPromptAccount

public boolean isPromptAccount()

setPromptAccount

@DataBoundSetter
public void setPromptAccount(boolean promptAccount)

getDomainHint

public String getDomainHint()

setDomainHint

@DataBoundSetter
public void setDomainHint(String domainHint)

isSingleLogout

public boolean isSingleLogout()

setSingleLogout

@DataBoundSetter
public void setSingleLogout(boolean singleLogout)

getClientIdSecret

public String getClientIdSecret()

getClientSecretSecret

public String getClientSecretSecret()

getClientCertificateSecret

public String getClientCertificateSecret()

getCredentialType

public String getCredentialType()

getTenantSecret

public String getTenantSecret()

getClientId

public String getClientId()

getAzureEnvironmentName

public String getAzureEnvironmentName()

setAzureEnvironmentName

@DataBoundSetter
public void setAzureEnvironmentName(String azureEnvironmentName)

isDisableGraphIntegration

public boolean isDisableGraphIntegration()

setDisableGraphIntegration

@DataBoundSetter
public void setDisableGraphIntegration(boolean disableGraphIntegration)

setCredentialType

@DataBoundSetter
public void setCredentialType(String credentialType)

setClientId

public void setClientId(String clientId)

getClientSecret

public Secret getClientSecret()

getClientCertificate

public Secret getClientCertificate()

setClientSecret

public void setClientSecret(String clientSecret)

setClientCertificate

@DataBoundSetter
public void setClientCertificate(String clientCertificate)

getTenant

public String getTenant()

setTenant

public void setTenant(String tenant)

getCacheDuration

public int getCacheDuration()

setCacheDuration

public void setCacheDuration(int cacheDuration)

setCaches

public void setCaches(com.github.benmanes.caffeine.cache.Cache<String,AzureAdUser> caches)

isFromRequest

public boolean isFromRequest()

setFromRequest

@DataBoundSetter
public void setFromRequest(boolean fromRequest)

getJwtConsumer

public org.jose4j.jwt.consumer.JwtConsumer getJwtConsumer()

doCommenceLogin

public org.kohsuke.stapler.HttpResponse doCommenceLogin(org.kohsuke.stapler.StaplerRequest2 request,
 @Header("Referer")
 String referer)

doFinishLogin

public org.kohsuke.stapler.HttpResponse doFinishLogin(org.kohsuke.stapler.StaplerRequest2 request)
                                               throws org.jose4j.jwt.consumer.InvalidJwtException,
IOException

Throws:

org.jose4j.jwt.consumer.InvalidJwtException

IOException

getPostLogOutUrl2

protected String getPostLogOutUrl2(org.kohsuke.stapler.StaplerRequest2 req,
 org.springframework.security.core.Authentication auth)

Overrides:

getPostLogOutUrl2 in class SecurityRealm

createSecurityComponents

public SecurityRealm.SecurityComponents createSecurityComponents()

Specified by:

createSecurityComponents in class SecurityRealm

loadGroupByGroupname2

public GroupDetails loadGroupByGroupname2(String groupName,
 boolean fetchMembers)

Overrides:

loadGroupByGroupname2 in class SecurityRealm

allowsSignup

public boolean allowsSignup()

Overrides:

allowsSignup in class SecurityRealm

getLoginUrl

public String getLoginUrl()

Overrides:

getLoginUrl in class SecurityRealm