This plugin stores identities. An identity is composed of attributes. Each attribute can be read, written or certified by the application calling the service.
The plugin provides a REST API to manage identities. Several versions of the API can be called:
- Version 1 : the URL to use is
/identity/rest/identitystore/v1/identity
. This version uses the objects of the packagesfr.paris.lutece.plugins.identitystore.v1.*
of thelibrary-identitystore
. - Version 2 : the URL to use is
/identity/rest/identitystore/v2/identity
. This version uses the objects of the packagesfr.paris.lutece.plugins.identitystore.v2.*
of thelibrary-identitystore
.
The API can be called without version in the URL : /identity/rest/identitystore/identity
. The used version is then the one configured with the key identitystore.version
of the configuration file identitystore.properties
. Warning: As the different versions of the API do not use the same objects, be sure the correct version is set in configuration.
The plugin can use identities with encrypted ids. This mechanism permits to have a specific id for each service provider. Thus, the id is not shared.
To use encryption, the site has to contain a class implementing the interface fr.paris.lutece.plugins.identitystore.service.encryption.IIdentityEncryptionService
from the library gru-library-identitystore
. For example, add the plugin gru-plugin-grukeydiversification
in the pom.xml
of the site. The encryption is then enabled.
The bean names identitystore.identityInfoExternalProvider
must be defined using Spring configuration. The bean must implement the Java interface fr.paris.lutece.plugins.identitystore.service.external.IIdentityInfoExternalProvider
. It is used to create an identity from an external source when a connection id is provided in the web method create .
The plugins exposes web methods to manage identities. Check /jsp/site/Portal.jsp?page=swaggerui page for more details about these methods.
The deletion of an identity from the web service does not really delete it but flags it as 'deleted'. The attributes are deleted. Updating or retrieving an identity flagged 'deleted ' from the web service generates an exception.
Deleting an identity from the GUI completely deletes the identity from the BDD.
Maven documentation and reports
generated by xdoc2md - do not edit directly.