Uses of Class
org.owasp.esapi.errors.AuthenticationException
-
Packages that use AuthenticationException Package Description org.owasp.esapi The ESAPI interfaces andException
classes model the most important security functions to enterprise web applications.org.owasp.esapi.errors A set of exception classes designed to model the error conditions that frequently arise in enterprise web applications and web services.org.owasp.esapi.reference This package contains reference implementations of the ESAPI interfaces. -
-
Uses of AuthenticationException in org.owasp.esapi
Methods in org.owasp.esapi that throw AuthenticationException Modifier and Type Method Description void
User. addRole(java.lang.String role)
Adds a role to this user's account.void
User. addRoles(java.util.Set<java.lang.String> newRoles)
Adds a set of roles to this user's account.void
Authenticator. changePassword(User user, java.lang.String currentPassword, java.lang.String newPassword, java.lang.String newPassword2)
Changes the password for the specified user.void
User. changePassword(java.lang.String oldPassword, java.lang.String newPassword1, java.lang.String newPassword2)
Sets the user's password, performing a verification of the user's old password, the equality of the two new passwords, and the strength of the new password.javax.servlet.http.HttpSession
HTTPUtilities. changeSessionIdentifier()
Calls changeSessionIdentifier with the *current* request.javax.servlet.http.HttpSession
HTTPUtilities. changeSessionIdentifier(javax.servlet.http.HttpServletRequest request)
Invalidate the existing session after copying all of its contents to a newly created session with a new session id.User
Authenticator. createUser(java.lang.String accountName, java.lang.String password1, java.lang.String password2)
Creates a new User with the information provided.java.util.Date
User. getLastFailedLoginTime()
Returns the date of the last failed login time for a user.User
Authenticator. login()
Calls login with the *current* request and response.User
Authenticator. login(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
This method should be called for every HTTP request, to login the current user either from the session of HTTP request.void
User. loginWithPassword(java.lang.String password)
Login with password.void
User. removeRole(java.lang.String role)
Removes a role from this user's account.void
Authenticator. removeUser(java.lang.String accountName)
Removes the account of the specified accountName.java.lang.String
User. resetCSRFToken()
Returns a token to be used as a prevention against CSRF attacks.void
User. setRoles(java.util.Set<java.lang.String> roles)
Sets the roles for this account.void
Authenticator. verifyAccountNameStrength(java.lang.String accountName)
Ensures that the account name passes site-specific complexity requirements, like minimum length.void
Authenticator. verifyPasswordStrength(java.lang.String oldPassword, java.lang.String newPassword, User user)
Ensures that the password meets site-specific complexity requirements, like length or number of character sets. -
Uses of AuthenticationException in org.owasp.esapi.errors
Subclasses of AuthenticationException in org.owasp.esapi.errors Modifier and Type Class Description class
AuthenticationAccountsException
An AuthenticationException should be thrown when anything goes wrong during login or logout.class
AuthenticationCredentialsException
An AuthenticationException should be thrown when anything goes wrong during login or logout.class
AuthenticationHostException
An AuthenticationHostException should be thrown when there is a problem with the host involved with authentication, particularly if the host changes unexpectedly.class
AuthenticationLoginException
An AuthenticationException should be thrown when anything goes wrong during login or logout. -
Uses of AuthenticationException in org.owasp.esapi.reference
Methods in org.owasp.esapi.reference that throw AuthenticationException Modifier and Type Method Description void
DefaultUser. addRole(java.lang.String role)
Adds a role to this user's account.void
DefaultUser. addRoles(java.util.Set<java.lang.String> newRoles)
Adds a set of roles to this user's account.void
DefaultUser. changePassword(java.lang.String oldPassword, java.lang.String newPassword1, java.lang.String newPassword2)
Sets the user's password, performing a verification of the user's old password, the equality of the two new passwords, and the strength of the new password.void
FileBasedAuthenticator. changePassword(User user, java.lang.String currentPassword, java.lang.String newPassword, java.lang.String newPassword2)
Changes the password for the specified user.javax.servlet.http.HttpSession
DefaultHTTPUtilities. changeSessionIdentifier()
Calls changeSessionIdentifier with the *current* request.javax.servlet.http.HttpSession
DefaultHTTPUtilities. changeSessionIdentifier(javax.servlet.http.HttpServletRequest request)
Invalidate the existing session after copying all of its contents to a newly created session with a new session id.User
FileBasedAuthenticator. createUser(java.lang.String accountName, java.lang.String password1, java.lang.String password2)
Creates a new User with the information provided.User
AbstractAuthenticator. login()
Calls login with the *current* request and response.User
AbstractAuthenticator. login(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
This method should be called for every HTTP request, to login the current user either from the session of HTTP request.void
DefaultUser. loginWithPassword(java.lang.String password)
Login with password.void
FileBasedAuthenticator. removeUser(java.lang.String accountName)
Removes the account of the specified accountName.void
FileBasedAuthenticator. saveUsers()
Saves the user database to the file system.void
DefaultUser. setRoles(java.util.Set<java.lang.String> roles)
Sets the roles for this account.void
FileBasedAuthenticator. verifyAccountNameStrength(java.lang.String newAccountName)
Ensures that the account name passes site-specific complexity requirements, like minimum length.void
FileBasedAuthenticator. verifyPasswordStrength(java.lang.String oldPassword, java.lang.String newPassword, User user)
Ensures that the password meets site-specific complexity requirements, like length or number of character sets.
-