/* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited

  *

  * Licensed under the Apache License, Version 2.0 (the "License");

  * you may not use this file except in compliance with the License.

  * You may obtain a copy of the License at

  *

  *     http://www.apache.org/licenses/LICENSE-2.0

  *

  * Unless required by applicable law or agreed to in writing, software

  * distributed under the License is distributed on an "AS IS" BASIS,

  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  * See the License for the specific language governing permissions and

  * limitations under the License.

  */

 package org.acegisecurity.concurrent;

 /**

  * Maintains a registry of <code>SessionInformation</code> instances.

  *

  * @author Ben Alex

  * @version $Id: SessionRegistry.java 1784 2007-02-24 21:00:24Z luke_t $

  */

 public interface SessionRegistry {

     //~ Methods ========================================================================================================

     /**

      * Obtains all the known principals in the <code>SessionRegistry</code>.

      *

      * @return each of the unique principals, which can then be presented to {@link #getAllSessions(Object, boolean)}.

      */

     Object[] getAllPrincipals();

     /**

      * Obtains all the known sessions for the specified principal. Sessions that have been destroyed are not

      * returned. Sessions that have expired may be returned, depending on the passed argument.

      *

      * @param principal to locate sessions for (should never be <code>null</code>)

      * @param includeExpiredSessions if <code>true</code>, the returned sessions will also include those that have

      *        expired for the principal

      *

      * @return the matching sessions for this principal, or <code>null</code> if none were found

      */

     SessionInformation[] getAllSessions(Object principal, boolean includeExpiredSessions);

     /**

      * Obtains the session information for the specified <code>sessionId</code>. Even expired sessions are

      * returned (although destroyed sessions are never returned).

      *

      * @param sessionId to lookup (should never be <code>null</code>)

      *

      * @return the session information, or <code>null</code> if not found

      */

     SessionInformation getSessionInformation(String sessionId);

     /**

      * Updates the given <code>sessionId</code> so its last request time is equal to the present date and time.

      * Silently returns if the given <code>sessionId</code> cannot be found or the session is marked to expire.

      *

      * @param sessionId for which to update the date and time of the last request (should never be <code>null</code>)

      */

     void refreshLastRequest(String sessionId);

     /**

      * Registers a new session for the specified principal. The newly registered session will not be marked for

      * expiration.

      *

      * @param sessionId to associate with the principal (should never be <code>null</code>)

      * @param principal to associate with the session (should never be <code>null</code>)

      *

      * @throws SessionAlreadyUsedException DOCUMENT ME!

      */

     void registerNewSession(String sessionId, Object principal)

         throws SessionAlreadyUsedException;

     /**

      * Deletes all the session information being maintained for the specified <code>sessionId</code>. If the

      * <code>sessionId</code> is not found, the method gracefully returns.

      *

      * @param sessionId to delete information for (should never be <code>null</code>)

      */

     void removeSessionInformation(String sessionId);

 }