Package com.sap.conn.jco.server
Interface JCoServerSecurityHandler
public interface JCoServerSecurityHandler
Security Handler will be asked to check the permissions of the user, who initiated a remote call.
Each application should provide its own implementation for the security handler.
The security handler will be registered by the JCoServer instance
- See Also:
-
Method Summary
Modifier and TypeMethodDescriptiondefault void
checkAuthentication
(JCoServerContextInfo serverCtxInfo, JCoServerAuthenticationData... authenticationData) This API will be invoked by the JCo runtime on each new session which is established (or every time if it is stateless).void
checkAuthorization
(JCoServerContext serverCtx, String functionName, JCoServerAuthorizationData authorizationData) This API will be invoked by the JCo runtime on each remote call.
-
Method Details
-
checkAuthorization
void checkAuthorization(JCoServerContext serverCtx, String functionName, JCoServerAuthorizationData authorizationData) throws JCoApplicationAuthorizationException This API will be invoked by the JCo runtime on each remote call.- Parameters:
serverCtx
- remote request related parametersfunctionName
- name of the invoked functionauthorizationData
- authorization data sent from the remote system- Throws:
JCoApplicationAuthorizationException
- should be thrown if the user does not have permissions to execute the function
-
checkAuthentication
default void checkAuthentication(JCoServerContextInfo serverCtxInfo, JCoServerAuthenticationData... authenticationData) throws JCoApplicationAuthenticationException This API will be invoked by the JCo runtime on each new session which is established (or every time if it is stateless).- Parameters:
serverCtxInfo
- remote request related parametersauthenticationData
- authentication data sent from the remote system or null, if no data is provided- Throws:
JCoApplicationAuthenticationException
- should be thrown if the user does not have access to the related server- Since:
- JCo 3.1.0
-