Package org.forgerock.opendj.ldap.messages

Class WhoAmIExtendedRequest

java.lang.Object

org.forgerock.opendj.ldap.messages.AbstractExtendedRequest<WhoAmIExtendedRequest,WhoAmIExtendedResult>

org.forgerock.opendj.ldap.messages.WhoAmIExtendedRequest

All Implemented Interfaces:

ExtendedRequest<WhoAmIExtendedResult>, ProtocolOp, Request

public final class WhoAmIExtendedRequest
extends AbstractExtendedRequest<WhoAmIExtendedRequest,WhoAmIExtendedResult>
implements ExtendedRequest<WhoAmIExtendedResult>

The who am I extended request as defined in RFC 4532. This operation allows clients to obtain the primary authorization identity, in its primary form, that the server has associated with the user or application entity.

The following example demonstrates use of the Who Am I? request and response.

 Connection connection = ...;
 String name = ...;
 char[] password = ...;

 Result result = connection.bind(name, password);
 if (result.isSuccess()) {
     WhoAmIExtendedRequest request = Requests.newWhoAmIExtendedRequest();
     WhoAmIExtendedResult extResult = connection.extendedRequest(request);

     if (extResult.isSuccess()) {
         // Authz ID: "  + extResult.getAuthorizationID());
     }
 }
 

This operation may preferable to the Authorization Identity Controls mechanism defined in RFC 3829, which uses Bind request and response controls to request and return the authorization identity. Bind controls are not protected by security layers established by the Bind operation that includes them. While it is possible to establish security layers using StartTLS prior to the Bind operation, it is often desirable to use security layers established by the Bind operation. An extended operation sent after a Bind operation is protected by the security layers established by the Bind operation.

See Also:

• WhoAmIExtendedResult
• AuthorizationIdentityRequestControl
• RFC 4532 - Lightweight Directory Access Protocol (LDAP) "Who am I?" Operation
• RFC 3829 - Lightweight Directory Access Protocol (LDAP) Authorization Identity Request and Response Controls

Nested Class Summary

Nested classes/interfaces inherited from interface org.forgerock.opendj.ldap.messages.Request

Request.RequestType

Field Summary

Fields

Modifier and Type	Field	Description
static final ExtendedRequestDecoder<WhoAmIExtendedRequest,WhoAmIExtendedResult>	DECODER	A decoder which can be used to decode who am I extended operation requests.
static final String	OID	The OID for the who am I extended operation request.

Method Summary

Modifier and Type	Method	Description
final WhoAmIExtendedRequest	addControl(Control control)	Adds the provided control to this protocol-op.
final WhoAmIExtendedRequest	addControls(Iterable<? extends Control> controls)	Adds the provided controls to this protocol-op.
final boolean	containsControl(String oid)	Returns true if this protocol-op contains the specified control.
final <C extends Control> C	getControl(ControlDecoder<C> decoder, DecodeOptions options)	Decodes and returns the first control in this protocol-op having an OID corresponding to the provided control decoder.
final List<Control>	getControls()	Returns a List containing the controls included with this protocol-op.
String	getOid()	Returns the numeric OID associated with this extended request.
ExtendedResultDecoder<WhoAmIExtendedResult>	getResultDecoder()	Returns a decoder which can be used to decoded responses to this extended request.
ByteString	getValue()	Returns the value, if any, associated with this extended request.
boolean	hasValue()	Returns true if this extended request has a value.
final WhoAmIExtendedRequest	removeControls(String oid)	Removes all the controls having the specified OID.
String	toString()

Methods inherited from class org.forgerock.opendj.ldap.messages.AbstractExtendedRequest

accept, getType

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Methods inherited from interface org.forgerock.opendj.ldap.messages.ExtendedRequest

addControl, addControls, getControl, getControls, removeControls

Methods inherited from interface org.forgerock.opendj.ldap.messages.ProtocolOp

containsControl, getControl

Methods inherited from interface org.forgerock.opendj.ldap.messages.Request

accept, getType

Field Details

DECODER

public static final ExtendedRequestDecoder<WhoAmIExtendedRequest,WhoAmIExtendedResult> DECODER

A decoder which can be used to decode who am I extended operation requests.

OID

public static final String OID

The OID for the who am I extended operation request.

See Also:

• Constant Field Values

Method Details

getOid

public String getOid()

Description copied from interface: ExtendedRequest

Returns the numeric OID associated with this extended request.

Specified by:

getOid in interface ExtendedRequest<WhoAmIExtendedResult>

Specified by:

getOid in class AbstractExtendedRequest<WhoAmIExtendedRequest,WhoAmIExtendedResult>

Returns:

The numeric OID associated with this extended request.

getResultDecoder

public ExtendedResultDecoder<WhoAmIExtendedResult> getResultDecoder()

Description copied from interface: ExtendedRequest

Returns a decoder which can be used to decoded responses to this extended request.

Specified by:

getResultDecoder in interface ExtendedRequest<WhoAmIExtendedResult>

Specified by:

getResultDecoder in class AbstractExtendedRequest<WhoAmIExtendedRequest,WhoAmIExtendedResult>

Returns:

A decoder which can be used to decoded responses to this extended request.

getValue

public ByteString getValue()

Description copied from interface: ExtendedRequest

Returns the value, if any, associated with this extended request. Its format is defined by the specification of this extended request.

Specified by:

getValue in interface ExtendedRequest<WhoAmIExtendedResult>

Specified by:

getValue in class AbstractExtendedRequest<WhoAmIExtendedRequest,WhoAmIExtendedResult>

Returns:

The value associated with this extended request, or null if there is no value.

hasValue

public boolean hasValue()

Description copied from interface: ExtendedRequest

Returns true if this extended request has a value. In some circumstances it may be useful to determine if a extended request has a value, without actually calculating the value and incurring any performance costs.

Specified by:

hasValue in interface ExtendedRequest<WhoAmIExtendedResult>

Specified by:

hasValue in class AbstractExtendedRequest<WhoAmIExtendedRequest,WhoAmIExtendedResult>

Returns:

true if this extended request has a value, or false if there is no value.

toString

public String toString()

Overrides:

toString in class AbstractExtendedRequest<WhoAmIExtendedRequest,WhoAmIExtendedResult>

addControl

public final WhoAmIExtendedRequest addControl(Control control)

Description copied from interface: ProtocolOp

Adds the provided control to this protocol-op.

Specified by:

addControl in interface ProtocolOp

Parameters:

control - The control to be added to this protocol-op.

Returns:

This protocol-op.

addControls

public final WhoAmIExtendedRequest addControls(Iterable<? extends Control> controls)

Description copied from interface: ProtocolOp

Adds the provided controls to this protocol-op.

Specified by:

addControls in interface ProtocolOp

Parameters:

controls - The controls to be added to this protocol-op.

Returns:

This protocol-op.

removeControls

public final WhoAmIExtendedRequest removeControls(String oid)

Description copied from interface: ProtocolOp

Removes all the controls having the specified OID.

Specified by:

removeControls in interface ProtocolOp

Parameters:

oid - The numeric OID of the protocol-op control to remove.

Returns:

This protocol-op.

containsControl

public final boolean containsControl(String oid)

Description copied from interface: ProtocolOp

Returns true if this protocol-op contains the specified control.

Specified by:

containsControl in interface ProtocolOp

Parameters:

oid - The numeric OID of the protocol-op control.

Returns:

true if this protocol-op contains the specified control.

getControl

public final <C extends Control> C getControl(ControlDecoder<C> decoder,
 DecodeOptions options)
                                       throws DecodeException

Description copied from interface: ProtocolOp

Decodes and returns the first control in this protocol-op having an OID corresponding to the provided control decoder.

Specified by:

getControl in interface ProtocolOp

Type Parameters:

C - The type of control to be decoded and returned.

Parameters:

decoder - The control decoder.

options - The set of decode options which should be used when decoding the control.

Returns:

The decoded control, or null if the control is not included with this protocol-op.

Throws:

DecodeException - If the control could not be decoded because it was malformed in some way (e.g. the control value was missing, or its content could not be decoded).

getControls

public final List<Control> getControls()

Description copied from interface: ProtocolOp

Returns a List containing the controls included with this protocol-op. The returned List may be modified if permitted by this protocol-op.

Specified by:

getControls in interface ProtocolOp

Returns:

A List containing the controls.