Package org.wildfly.security.auth.realm

Class FileSystemSecurityRealm

java.lang.Object
org.wildfly.security.auth.realm.FileSystemSecurityRealm
All Implemented Interfaces:
CacheableSecurityRealm, ModifiableSecurityRealm, SecurityRealm
public final class FileSystemSecurityRealm extends Object implements ModifiableSecurityRealm, CacheableSecurityRealm
A simple filesystem-backed security realm.
Author:
David M. Lloyd

  • Constructor Details

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, NameRewriter nameRewriter, int levels, boolean encoded, Encoding hashEncoding, Charset hashCharset, Supplier<Provider[]> providers, SecretKey secretKey, PrivateKey privateKey, PublicKey publicKey)
      Construct a new instance. Construction with enabled security manager requires createSecurityRealm ElytronPermission.
      Parameters:
      root - the root path of the identity store
      nameRewriter - the name rewriter to apply to looked up names
      levels - the number of levels of directory hashing to apply
      encoded - whether identity names should be BASE32 encoded before using as filename (only applies if the security realm is unencrypted)
      hashCharset - the character set to use when converting password strings to a byte array. Uses UTF-8 by default.
      hashEncoding - the string format for the hashed passwords. Uses Base64 by default.
      providers - The providers supplier
      secretKey - the SecretKey used to encrypt and decrypt the security realm (if null, the security realm will be unencrypted)
      privateKey - the PrivateKey used to verify the integrity of the security realm (if null, the security realm will not verify integrity)
      publicKey - the PublicKey used to verify the integrity of the security realm (if null, the security realm will not verify integrity)

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, NameRewriter nameRewriter, int levels, boolean encoded, Encoding hashEncoding, Charset hashCharset, SecretKey secretKey)
      Construct a new instance. Construction with enabled security manager requires createSecurityRealm ElytronPermission.
      Parameters:
      root - the root path of the identity store
      nameRewriter - the name rewriter to apply to looked up names
      levels - the number of levels of directory hashing to apply
      encoded - whether identity names should be BASE32 encoded before using as filename
      hashCharset - the character set to use when converting password strings to a byte array. Uses UTF-8 by default.
      hashEncoding - the string format for the hashed passwords. Uses Base64 by default.
      secretKey - the SecretKey used to encrypt and decrypt the security realm (if null, the security realm will be unencrypted)

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, NameRewriter nameRewriter, int levels, boolean encoded, Encoding hashEncoding, Charset hashCharset)
      Construct a new instance. Construction with enabled security manager requires createSecurityRealm ElytronPermission.
      Parameters:
      root - the root path of the identity store
      nameRewriter - the name rewriter to apply to looked up names
      levels - the number of levels of directory hashing to apply
      encoded - whether identity names should be BASE32 encoded before using as filename
      hashCharset - the character set to use when converting password strings to a byte array. Uses UTF-8 by default.
      hashEncoding - the string format for the hashed passwords. Uses Base64 by default.

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, NameRewriter nameRewriter, int levels, boolean encoded)
      Construct a new instance. Construction with enabled security manager requires createSecurityRealm ElytronPermission.
      Parameters:
      root - the root path of the identity store
      nameRewriter - the name rewriter to apply to looked up names
      levels - the number of levels of directory hashing to apply
      encoded - whether identity names should by BASE32 encoded before using as filename

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, NameRewriter nameRewriter, int levels)
      Construct a new instance.
      Parameters:
      root - the root path of the identity store
      nameRewriter - the name rewriter to apply to looked up names
      levels - the number of levels of directory hashing to apply

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, NameRewriter nameRewriter, int levels, Encoding hashEncoding, Charset hashCharset)
      Construct a new instance.
      Parameters:
      root - the root path of the identity store
      nameRewriter - the name rewriter to apply to looked up names
      levels - the number of levels of directory hashing to apply
      hashEncoding - the string format for hashed passwords. Uses Base64 by default.
      hashCharset - the character set to use when converting password strings to a byte array. Uses UTF-8 by default and must not be null.

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, int levels)
      Construct a new instance.
      Parameters:
      root - the root path of the identity store
      levels - the number of levels of directory hashing to apply

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, int levels, Encoding hashEncoding, Charset hashCharset)
      Construct a new instance.
      Parameters:
      root - the root path of the identity store
      levels - the number of levels of directory hashing to apply
      hashEncoding - the string format for hashed passwords. Uses Base64 by default.
      hashCharset - the character set to use when converting password strings to a byte array. Uses UTF-8 by default and must not be null.

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root)
      Construct a new instance with 2 levels of hashing.
      Parameters:
      root - the root path of the identity store

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, Encoding hashEncoding, Charset hashCharset)
      Construct a new instance with 2 levels of hashing.
      Parameters:
      root - the root path of the identity store
      hashEncoding - the string format for hashed passwords. Uses Base64 by default.
      hashCharset - the character set to use when converting password strings to a byte array. Uses UTF-8 by default and must not be null

    • FileSystemSecurityRealm

      public FileSystemSecurityRealm(Path root, int levels, Supplier<Provider[]> providers)

  • Method Details