Uses of Interface
org.owasp.esapi.User

Packages that use User

Package	Description
org.owasp.esapi	The ESAPI interfaces and Exception classes model the most important security functions to enterprise web applications.
org.owasp.esapi.reference	This package contains reference implementations of the ESAPI interfaces.

Uses of User in org.owasp.esapi

Fields in org.owasp.esapi declared as User

Modifier and Type	Field and Description
static User	User.ANONYMOUS The ANONYMOUS user is used to represent an unidentified user.

Methods in org.owasp.esapi that return User

Modifier and Type	Method and Description
User	Authenticator.createUser(java.lang.String accountName, java.lang.String password1, java.lang.String password2) Creates a new User with the information provided.
User	Authenticator.getCurrentUser() Returns the currently logged in User.
User	Authenticator.getUser(long accountId) Returns the User matching the provided accountId.
User	Authenticator.getUser(java.lang.String accountName) Returns the User matching the provided accountName.
User	Authenticator.login() Calls login with the *current* request and response.
User	Authenticator.login(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) This method should be called for every HTTP request, to login the current user either from the session of HTTP request.

Methods in org.owasp.esapi with parameters of type User

Modifier and Type	Method and Description
void	Authenticator.changePassword(User user, java.lang.String currentPassword, java.lang.String newPassword, java.lang.String newPassword2) Changes the password for the specified user.
java.lang.String	Authenticator.generateStrongPassword(User user, java.lang.String oldPassword) Generate strong password that takes into account the user's information and old password.
void	Authenticator.setCurrentUser(User user) Sets the currently logged in User.
boolean	Authenticator.verifyPassword(User user, java.lang.String password) Verify that the supplied password matches the password for this user.
void	Authenticator.verifyPasswordStrength(java.lang.String oldPassword, java.lang.String newPassword, User user) Ensures that the password meets site-specific complexity requirements, like length or number of character sets.

Uses of User in org.owasp.esapi.reference

Classes in org.owasp.esapi.reference that implement User

Modifier and Type	Class and Description
class	DefaultUser Reference implementation of the User interface.

Fields in org.owasp.esapi.reference with type parameters of type User

Modifier and Type	Field and Description
private java.util.Map<User,java.util.List<java.lang.String>>	FileBasedAuthenticator.passwordMap
private java.util.Map<java.lang.Long,User>	FileBasedAuthenticator.userMap The user map.

Methods in org.owasp.esapi.reference that return User

Modifier and Type	Method and Description
User	FileBasedAuthenticator.createUser(java.lang.String accountName, java.lang.String password1, java.lang.String password2) Creates a new User with the information provided.
User	AbstractAuthenticator.getCurrentUser() Returns the currently logged in User.
User	AbstractAuthenticator.ThreadLocalUser.getUser()
User	FileBasedAuthenticator.getUser(long accountId) Returns the User matching the provided accountId.
User	FileBasedAuthenticator.getUser(java.lang.String accountName) Returns the User matching the provided accountName.
protected User	AbstractAuthenticator.getUserFromSession() Gets the user from session.
User	AbstractAuthenticator.ThreadLocalUser.initialValue()
User	AbstractAuthenticator.login() Calls login with the *current* request and response.
User	AbstractAuthenticator.login(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) This method should be called for every HTTP request, to login the current user either from the session of HTTP request.
private User	AbstractAuthenticator.loginWithUsernameAndPassword(javax.servlet.http.HttpServletRequest request) Utility method to extract credentials and verify them.

Methods in org.owasp.esapi.reference with parameters of type User

Modifier and Type	Method and Description
private void	DefaultIntrusionDetector.addSecurityEvent(User user, java.lang.String eventName) Adds a security event to the user.
void	FileBasedAuthenticator.changePassword(User user, java.lang.String currentPassword, java.lang.String newPassword, java.lang.String newPassword2) Changes the password for the specified user.
java.lang.String	FileBasedAuthenticator.generateStrongPassword(User user, java.lang.String oldPassword) Generate strong password that takes into account the user's information and old password.
(package private) java.util.List<java.lang.String>	FileBasedAuthenticator.getAllHashedPasswords(User user, boolean create) Returns all of the specified User's hashed passwords.
(package private) java.lang.String	FileBasedAuthenticator.getHashedPassword(User user) Return the specified User's current hashed password.
(package private) java.util.List<java.lang.String>	FileBasedAuthenticator.getOldPasswordHashes(User user) Get a List of the specified User's old password hashes.
void	AbstractAuthenticator.setCurrentUser(User user) Sets the currently logged in User.
private void	FileBasedAuthenticator.setHashedPassword(User user, java.lang.String hash) Add a hash to a User's hashed password list.
(package private) void	FileBasedAuthenticator.setOldPasswordHashes(User user, java.util.List<java.lang.String> oldHashes) Set the specified User's old password hashes.
void	AbstractAuthenticator.ThreadLocalUser.setUser(User newUser)
boolean	FileBasedAuthenticator.verifyPassword(User user, java.lang.String password) Verify that the supplied password matches the password for this user.
void	FileBasedAuthenticator.verifyPasswordStrength(java.lang.String oldPassword, java.lang.String newPassword, User user) Ensures that the password meets site-specific complexity requirements, like length or number of character sets.