public interface ClientAuth
Modifier and Type | Method and Description |
---|---|
void |
cleanSubject(MessageInfo messageInfo,
Subject subject)
Remove implementation specific principals and credentials from the subject.
|
AuthStatus |
secureRequest(MessageInfo messageInfo,
Subject clientSubject)
Secure a service request message before sending it to the service.
|
AuthStatus |
validateResponse(MessageInfo messageInfo,
Subject clientSubject,
Subject serviceSubject)
Validate a received service response.
|
void cleanSubject(MessageInfo messageInfo, Subject subject) throws AuthException
messageInfo
- - A contextual object that encapsulates the client request
and server response objects, and that may be used to save
state across a sequence of calls made to the methods of
this interface for the purpose of completing a secure
message exchange.subject
- - The Subject instance from which the Principals and credentials
are to be removed.AuthException
- if an error occurs during the Subject processing.AuthStatus secureRequest(MessageInfo messageInfo, Subject clientSubject) throws AuthException
Secure a service request message before sending it to the service.
Sign and encrpt the service request, for example.
messageInfo
- - A contextual object that encapsulates the client request
and server response objects, and that may be used to save
state across a sequence of calls made to the methods of
this interface for the purpose of completing a secure
message exchange.clientSubject
- - A Subject that represents the source of the service request,
or null. It may be used by the method implementation as the
source of Principals or credentials to be used to secure
the request. If the Subject is not null, the method
implementation may add additional Principals or credentials
(pertaining to the source of the service request) to the Subject.AuthException
- when the module wishes to signal a failure in securing
the request and without establishing a corresponding error request
message. The runtime must discontinue its processing of the message
exchange.AuthStatus validateResponse(MessageInfo messageInfo, Subject clientSubject, Subject serviceSubject) throws AuthException
Validate a received service response.
This method is called to transform the mechanism-specific response message acquired by calling getResponseMessage (on messageInfo) into the validated application message to be returned to the message processing runtime. If the response message is a (mechanism-specific) meta-message, the method implementation must attempt to transform the meta-message into the next mechanism-specific request message to be sent by the runtime.
messageInfo
- - A contextual object that encapsulates the client
request and server response objects, and that may be
used to save state across a sequence of calls made to
the methods of this interface for the purpose of
completing a secure message exchange.clientSubject
- - A Subject that represents the recipient of the
service response, or null. It may be used by the method
implementation as the source of Principals or credentials
to be used to validate the response. If the Subject is
not null, the method implementation may add additional
Principals or credentials (pertaining to the recipient
of the service request) to the Subject.serviceSubject
- - A Subject that represents the source of the service
response, or null. If the Subject is not null, the method
implementation may add additional Principals or credentials
(pertaining to the source of the service response) to the Subject.AuthException
Copyright © 2018 JBoss by Red Hat. All rights reserved.