X-Git-Url: http://git.argeo.org/?a=blobdiff_plain;ds=sidebyside;f=security%2Fruntime%2Forg.argeo.security.core%2Fsrc%2Fmain%2Fjava%2Forg%2Fargeo%2Fsecurity%2FArgeoSecurityDao.java;h=67025dc5da3f37f9c7fe0e9c3abcc3f83bd2ed2e;hb=d685633924a5ee0328f5053b375564ca8fe969e6;hp=f91e86748457669de1ce0cd31edcaae995f85742;hpb=dc6f911c680574a9b57c34dcf515ac8f9aa808da;p=lgpl%2Fargeo-commons.git

diff --git a/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/ArgeoSecurityDao.java b/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/ArgeoSecurityDao.java
index f91e86748..67025dc5d 100644
--- a/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/ArgeoSecurityDao.java
+++ b/security/runtime/org.argeo.security.core/src/main/java/org/argeo/security/ArgeoSecurityDao.java
@@ -25,20 +25,33 @@ import java.util.List;
 public interface ArgeoSecurityDao {
 	// public ArgeoUser getCurrentUser();
 
+	/** List all users */
 	public List<ArgeoUser> listUsers();
 
+	/** List roles that can be modified */
 	public List<String> listEditableRoles();
 
+	/**
+	 * Creates a new user in the underlying storage. <b>DO NOT CALL DIRECTLY</b>
+	 * use {@link ArgeoSecurityService#newUser(ArgeoUser)} instead.
+	 */
 	public void create(ArgeoUser user);
 
 	public void update(ArgeoUser user);
 
 	public void delete(String username);
 
+	/**
+	 * Creates a new role in the underlying storage. <b>DO NOT CALL DIRECTLY</b>
+	 * use {@link ArgeoSecurityService#newRole(String)} instead.
+	 */
 	public void createRole(String role, String superuserName);
 
 	public void deleteRole(String role);
 
+	/** List all users having this role. */
+	public List<ArgeoUser> listUsersInRole(String role);
+
 	public Boolean userExists(String username);
 
 	public ArgeoUser getUser(String username);
@@ -46,4 +59,10 @@ public interface ArgeoSecurityDao {
 	public ArgeoUser getUserWithPassword(String username);
 
 	public String getDefaultRole();
+
+	/** Validates a raw password against an encoded one. */
+	public Boolean isPasswordValid(String encoded, String raw);
+
+	/** Encodes a raw password. */
+	public String encodePassword(String raw);
 }