Method
|
Mandatory?
|
Description
|
ValidateUser
|
Yes
|
This method searches for the user account, validates whether the account domain is valid and enabled, and returns the account numeric ID.
Note: The OERealm service interface uses a numerical user account ID as an ABL integer instead of the full user account name. If the user account storage of your OERealm service does not support the integer user account IDs, it is recommended that you build a mechanism to permanently assign unique ABL integer values to each user account in the storage.
|
ValidatePassword
|
Yes
|
This method validates the client-supplied password of the user account against the stored password.
Note: You can define both the clear-text and digest form of the ValidatePassword() method.
|
GetAttribute
|
Yes
|
This method retrieves an attribute for the specified user account.
|
GetAttributeNames
|
No
|
This method retrieves the name assigned to the attributes.
|
GetUserNames
|
No
|
This method retrieves all the user names associated with the user account.
|
GetUserNamesByQuery
|
No
|
This method retrieves the user names that match the input query string.
|
RemoveAttribute
|
No
|
This method deletes the value of the given attribute.
|
SetAttribute
|
No
|
This method assigns a new value to the given attribute.
|
Attribute
|
Data type
|
Character encoding format
|
ATTR_ROLES
|
string-extent
|
"" or "xxxx[,yyyy,zzzz]"
Note: The OERealm service interface must return roles without the ROLE_ prefix. For example, the interface must return PSCUser instead of ROLE_PSCUser.
|
ATTR_ENABLED
|
boolean
|
A character from the {T,t,F,f,Y,y,N,n,0,1} set
|
ATTR_LOCKED
|
boolean
|
A character from the {T,t,F,f,Y,y,N,n,0,1} set
|
ATTR_EXPIRED
|
boolean
|
A character from the {T,t,F,f,Y,y,N,n,0,1} set
|