public class JBossServerAuthContext extends Object implements ServerAuthContext
Modifier and Type | Field and Description |
---|---|
protected List<ControlFlag> |
controlFlags
Control Flags for the individual modules
|
Constructor and Description |
---|
JBossServerAuthContext(List<ServerAuthModule> modules,
Map<String,Map> moduleNameToOptions,
CallbackHandler cbh) |
Modifier and Type | Method and Description |
---|---|
void |
cleanSubject(MessageInfo messageInfo,
Subject subject)
Remove method specific principals and credentials from the subject.
|
AuthStatus |
secureResponse(MessageInfo messageInfo,
Subject serviceSubject)
Secure a service response before sending it to the client.
|
void |
setControlFlags(List<ControlFlag> controlFlags) |
AuthStatus |
validateRequest(MessageInfo messageInfo,
Subject clientSubject,
Subject serviceSubject)
Authenticate a received service request.
|
protected List<ControlFlag> controlFlags
public JBossServerAuthContext(List<ServerAuthModule> modules, Map<String,Map> moduleNameToOptions, CallbackHandler cbh) throws AuthException
AuthException
public void setControlFlags(List<ControlFlag> controlFlags)
public void cleanSubject(MessageInfo messageInfo, Subject subject) throws AuthException
ServerAuth
Remove method specific principals and credentials from the subject.
cleanSubject
in interface ServerAuth
messageInfo
- - A contextual object that encapsulates the client request
and server response objects, and that may be used to save
state across a sequence of calls made to the methods of
this interface for the purpose of completing a secure
message exchange.subject
- - The Subject instance from which the Principals and credentials
are to be removed.AuthException
- if an error occurs during the Subject processing.ServerAuth.cleanSubject(javax.security.auth.message.MessageInfo, javax.security.auth.Subject)
public AuthStatus secureResponse(MessageInfo messageInfo, Subject serviceSubject) throws AuthException
ServerAuth
Secure a service response before sending it to the client. This method is called to transform the response message acquired by calling getResponseMessage (on messageInfo) into the mechanism-specific form to be sent by the runtime.
This method conveys the outcome of its message processing either by returning an AuthStatus value or by throwing an AuthException.
secureResponse
in interface ServerAuth
messageInfo
- - A contextual object that encapsulates the client request
and server response objects, and that may be used to save
state across a sequence of calls made to the methods of
this interface for the purpose of completing a secure
message exchange.serviceSubject
- - A Subject that represents the source of the service request,
or null. It may be used by the method implementation as the
source of Principals or credentials to be used to secure
the request. If the Subject is not null, the method
implementation may add additional Principals or credentials
(pertaining to the source of the service request) to the Subject.AuthException
- When the message processing failed without establishing a failure response message (in messageInfo).ServerAuth.secureResponse(javax.security.auth.message.MessageInfo, javax.security.auth.Subject)
public AuthStatus validateRequest(MessageInfo messageInfo, Subject clientSubject, Subject serviceSubject) throws AuthException
ServerAuth
Authenticate a received service request. This method is called to transform the mechanism-specific request message acquired by calling getRequestMessage (on messageInfo) into the validated application message to be returned to the message processing runtime. If the received message is a (mechanism-specific) meta-message, the method implementation must attempt to transform the meta-message into a corresponding mechanism-specific response message, or to the validated application request message. The runtime will bind a validated application message into the the corresponding service invocation.
This method conveys the outcome of its message processing either by returning an AuthStatus value or by throwing an AuthException
validateRequest
in interface ServerAuth
messageInfo
- - A contextual object that encapsulates the client
request and server response objects, and that may be
used to save state across a sequence of calls made to
the methods of this interface for the purpose of
completing a secure message exchange.clientSubject
- - A Subject that represents the source of the service request. It is used by the
method implementation to store Principals and credentials validated in the request.serviceSubject
- - A Subject that represents the recipient of the service request, or null. It may be
used by the method implementation as the source of Principals or credentials to be used to validate the
request. If the Subject is not null, the method implementation may add additional Principals or
credentials (pertaining to the recipient of the service request) to the Subject.AuthException
- When the message processing failed without establishing a failure response
message (in messageInfo).ServerAuth.validateRequest(javax.security.auth.message.MessageInfo, javax.security.auth.Subject, javax.security.auth.Subject)
Copyright © 2017 JBoss by Red Hat. All rights reserved.