Instruct the system authentication handler to defer authentication decisions for anonymous connections to subsequent handlers.
this builder, modified to contain the abstain anonymous connections command.
Add a principal.
If lockingPrincipal
is defined, the new principal can only be edited
by the principal defined in the lock.
The script will fail if the principal is already defined at the server.
the principal name
the principal's password
the assigned roles for the principal, default = []
the name of the principal that can edit this principal
this builder, modified to contain the new principal
Instruct the system authentication to allow anonymous connections.
the roles to assign to anonymous sessions, default = []
this builder, modified to contain the allow anonymous connections command.
Change a principal's assigned roles.
the principal name.
an array of roles
this builder, modified to contain the changed roles
Create the script string.
the script
Instruct the system authentication to deny anonymous connections.
this builder, modified to contain the deny anonymous connections command.
Specifies the name of a client proposed session property that should now be ignored by the system authenticator.
This removes the effect of a previous request to trust the named property.
specifies the name of the client proposed property to be ignored
this builder, modified to ignore the specified client proposed property
Remove a principal.
the principal name
this builder, modified to remove the principal
Set a principal's password.
the principal name
the principal's password
this builder, modified to contain the changed password
Specifies the name of a client proposed session property that should be allowed by the system authenticator along with a set of permissible values. The property will only be allowed if the supplied value matches one of those in the set of values specified.
specifies the name of the client proposed property to be allowed
specifies a set of allowed values for the client proposed property
this builder, modified to allow the specified client proposed property if its value matches one of those supplied
Specifies the name of a client proposed session property that should be allowed by the system authenticator along with a regular expression to validate the property value. The property will only be allowed if the supplied value matches with the regular expression.
specifies the name of the client proposed property to be allowed
this builder, modified to allow the specified client proposed property if its value matches the given regular expression
Assert that a principal's password is password
.
This command doesn't update the store. It can be used in conjunction with setPassword to create a script that updates a password only if the previous password is supplied.
the principal name
the principal's password
this builder, modified to verify the password
A builder that can be used to create scripts for use with updateAuthenticationStore.
Facilitates producing scripts that contain the mapping of roles to specific principals/passwords. From Diffusion 6.5, script builders are no longer immutable. Each builder operation mutates this script builder and returns it.