public abstract class AbstractPicketLinkAuthenticator
extends AuthenticatorBase
An authenticator that delegates actual authentication to a realm, and in turn to a security manager, by presenting a "conventional" identity. The security manager must accept the conventional identity and generate the real identity for the authenticated principal.
Subclasses should override some methods to provide especific implementation according with the binding/environment.
Modifier and Type | Field and Description |
---|---|
protected String |
authMethod
This is the auth method used in the register method
|
protected static PicketLinkLogger |
logger |
protected boolean |
needSubjectPrincipalSubstitution
The authenticator may not be aware of the user name until after the underlying security exercise is complete.
|
protected SubjectSecurityInteraction |
subjectInteraction |
protected String |
subjectInteractionClassName |
Constructor and Description |
---|
AbstractPicketLinkAuthenticator() |
Modifier and Type | Method and Description |
---|---|
protected abstract void |
doRegister(Request request,
Response response,
Principal principal,
String password)
Subclasses should override this method to register an authenticated Principal.
|
protected Principal |
getSubjectPrincipal() |
protected boolean |
performAuthentication(Request request,
Response response,
LoginConfig loginConfig)
Actually performs the authentication.
|
void |
setAuthMethod(String authMethod)
Set the auth method via WEB-INF/context.xml (JBoss AS)
|
void |
setNeedSubjectPrincipalSubstitution(String needSubjectPrincipalSubstitutionVal) |
void |
setSubjectInteractionClassName(String subjectRetrieverClassName)
Set this if you want to override the default
SubjectSecurityInteraction |
protected static final PicketLinkLogger logger
protected String authMethod
protected boolean needSubjectPrincipalSubstitution
protected SubjectSecurityInteraction subjectInteraction
protected String subjectInteractionClassName
public void setAuthMethod(String authMethod)
authMethod
- public void setNeedSubjectPrincipalSubstitution(String needSubjectPrincipalSubstitutionVal)
public void setSubjectInteractionClassName(String subjectRetrieverClassName)
SubjectSecurityInteraction
subjectRetrieverClassName
- protected boolean performAuthentication(Request request, Response response, LoginConfig loginConfig) throws IOException
Actually performs the authentication. Subclasses should call this method when implementing the AuthenticatorBase.authenticate
method.
This method was created to allow different signatures for the AuthenticatorBase.authenticate
method according with the catalina version.
request
- response
- loginConfig
- IOException
protected abstract void doRegister(Request request, Response response, Principal principal, String password)
Subclasses should override this method to register an authenticated Principal.
request
- response
- principal
- password
- protected Principal getSubjectPrincipal()
Copyright © 2019 JBoss by Red Hat. All rights reserved.