001    /**
002     * Copyright (c) 2000-2013 Liferay, Inc. All rights reserved.
003     *
004     * This library is free software; you can redistribute it and/or modify it under
005     * the terms of the GNU Lesser General Public License as published by the Free
006     * Software Foundation; either version 2.1 of the License, or (at your option)
007     * any later version.
008     *
009     * This library is distributed in the hope that it will be useful, but WITHOUT
010     * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
011     * FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more
012     * details.
013     */
014    
015    package com.liferay.portal.security.auth;
016    
017    import java.util.Set;
018    
019    /**
020     * @author Tomas Polesovsky
021     * @author Raymond Aug??
022     */
023    public interface AuthTokenWhitelist {
024    
025            public Set<String> getOriginCSRFWhitelist();
026    
027            public Set<String> getPortletCSRFWhitelist();
028    
029            public Set<String> getPortletCSRFWhitelistActions();
030    
031            public Set<String> getPortletInvocationWhitelist();
032    
033            public Set<String> getPortletInvocationWhitelistActions();
034    
035            public boolean isOriginCSRFWhitelisted(long companyId, String origin);
036    
037            public boolean isPortletCSRFWhitelisted(
038                    long companyId, String portletId, String strutsAction);
039    
040            public boolean isPortletInvocationWhitelisted(
041                    long companyId, String portletId, String strutsAction);
042    
043            public boolean isValidSharedSecret(String sharedSecret);
044    
045            public Set<String> resetOriginCSRFWhitelist();
046    
047            public Set<String> resetPortletCSRFWhitelist();
048    
049            public Set<String> resetPortletCSRFWhitelistActions();
050    
051            public Set<String> resetPortletInvocationWhitelist();
052    
053            public Set<String> resetPortletInvocationWhitelistActions();
054    
055    }