com.sap.security.api.umap
Interface IUserMappingData

public interface IUserMappingData

Main interface for user mapping.

Field Summary

static java.lang.String	USER_MAPPING_INVERSE_NAMESPACE Namespace used to store inverse user mapping data.
static java.lang.String	USER_MAPPING_NAMESPACE Namespace used to store user mapping data.
static java.lang.String	USER_MAPPING_REFSYS_ATTRIBUTE Logical attribute name used to store a user mapping for a SAP reference system for a user as plaintext (use case: attribute in LDAP server which is shared between ABAP system and UME, attribute contains ABAP user ID)

Method Summary

void	enrich(java.net.HttpURLConnection conn) Enriches an HttpURLConnection.
void	enrich(java.util.Map logonData) Enrich Map with logon data.
void	enrich(java.util.Properties jcoProps) Enriches a jcoProperty object describing an RFC connection to an SAP backend system.
void	enrich(javax.xml.soap.SOAPMessage msg) Enriches a SOAP message.
IPrincipal	getPrincipal() Returns the user this object was created for
java.lang.String	getSystemId() Returns the system id this object was created for.
boolean	isMappingDirect() Indicates whether the mapping found is for the principal itself or for one of its parent principals, i.e.
void	storeLogonData(java.util.Map logonData) Used to store logon data for a specific user and a specific system.

Field Detail

USER_MAPPING_NAMESPACE

public static final java.lang.String USER_MAPPING_NAMESPACE

Namespace used to store user mapping data.

USER_MAPPING_INVERSE_NAMESPACE

public static final java.lang.String USER_MAPPING_INVERSE_NAMESPACE

Namespace used to store inverse user mapping data.

USER_MAPPING_REFSYS_ATTRIBUTE

public static final java.lang.String USER_MAPPING_REFSYS_ATTRIBUTE

Logical attribute name used to store a user mapping for a SAP reference system for a user as plaintext (use case: attribute in LDAP server which is shared between ABAP system and UME, attribute contains ABAP user ID)

Method Detail

enrich

public void enrich(java.util.Map logonData)
            throws NoLogonDataAvailableException

Enrich Map with logon data.

Parameters:

logonData - contains the already available logonData. enrich will add the available user mapping data for the system identified by the string returned by getSystemId().

enrich

public void enrich(java.net.HttpURLConnection conn)
            throws NoLogonDataAvailableException

Enriches an HttpURLConnection. Depending on the connection type this either adds the ticket or basic authentication data to the request.

Parameters:

conn - the request being enriched.

enrich

public void enrich(java.util.Properties jcoProps)
            throws NoLogonDataAvailableException

Enriches a jcoProperty object describing an RFC connection to an SAP backend system. Like in enrich(HttpURLConnection), depending on the supported connect type this call either adds uid/pw, ticket or client certificate to the request.

Parameters:

jcoProps - Properties object containing the actual jco connection data

enrich

public void enrich(javax.xml.soap.SOAPMessage msg)
            throws NoLogonDataAvailableException

Enriches a SOAP message. This is done by adding either a SAPLOGONTICKET or a basic authentication header (only supported in conjunction with EP 6.0) to the http headers of the underlying http connection. If you want to use the SAPLOGONTICKET, there is nothing left for you to do. If you want to use user id and password in a basic authentication header, you need to create this system in the EP6 system landscape and set the "logonMethod" property of this system to UIDPW.

getPrincipal

public IPrincipal getPrincipal()

Returns the user this object was created for

getSystemId

public java.lang.String getSystemId()

Returns the system id this object was created for.

storeLogonData

public void storeLogonData(java.util.Map logonData)
                    throws java.io.IOException

Used to store logon data for a specific user and a specific system.

Parameters:

logonData - hashmap containing the logon data.

isMappingDirect

public boolean isMappingDirect()

Indicates whether the mapping found is for the principal itself or for one of its parent principals, i.e. groups or roles.

Returns:

true if the mapping was found for the principal this object was created for. false if the mapping was found for a parent principal of the principal object this object was created for.