PicketLinkAuthenticator (Red Hat JBoss Enterprise Application Platform 7.2.0.Beta public API)

java.lang.Object
- org.picketlink.identity.federation.bindings.wildfly.PicketLinkAuthenticator

All Implemented Interfaces:

AuthenticationMechanism
```
public class PicketLinkAuthenticator
extends Object
implements AuthenticationMechanism
```
An authenticator that delegates actual authentication to a realm, and in turn to a security manager, by presenting a "conventional" identity. The security manager must accept the conventional identity and generate the real identity for the authenticated principal.

Since:

Apr 11, 2011

Author:

Ovidiu Feodorov, Anil.Saldhana@redhat.com, Pedro Silva

Nested Class Summary

Nested Classes
Modifier and Type Class and Description

static class PicketLinkAuthenticator.Factory
- Nested classes/interfaces inherited from interface io.undertow.security.api.AuthenticationMechanism
  AuthenticationMechanism.AuthenticationMechanismOutcome, AuthenticationMechanism.ChallengeResult

Nested Classes
Modifier and Type	Class and Description
`static class`	`PicketLinkAuthenticator.Factory`

Constructor Summary

Constructors
Constructor and Description
`PicketLinkAuthenticator(IdentityManager identityManager, Boolean needSubjectPrincipalSubstitution, String subjectInteractionClassName, String securityDomain)`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`AuthenticationMechanism.AuthenticationMechanismOutcome`	`authenticate(HttpServerExchange exchange, SecurityContext securityContext)` Perform authentication of the request.
`protected Principal`	`getSubjectPrincipal()`
`protected boolean`	`performAuthentication(SecurityContext securityContext)` Actually performs the authentication.
`AuthenticationMechanism.ChallengeResult`	`sendChallenge(HttpServerExchange exchange, SecurityContext securityContext)` Send an authentication challenge to the remote client.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - PicketLinkAuthenticator
```
public PicketLinkAuthenticator(IdentityManager identityManager,
                               Boolean needSubjectPrincipalSubstitution,
                               String subjectInteractionClassName,
                               String securityDomain)
```
- Method Detail
  - authenticate
```
public AuthenticationMechanism.AuthenticationMechanismOutcome authenticate(HttpServerExchange exchange,
                                                                           SecurityContext securityContext)
```
    Description copied from interface: AuthenticationMechanism
    
    Perform authentication of the request. Any potentially blocking work should be performed in the handoff executor provided
    
    Specified by:
    
    authenticate in interface AuthenticationMechanism
    
    Parameters:
    
    exchange - The exchange
    
    Returns:
  - sendChallenge
```
public AuthenticationMechanism.ChallengeResult sendChallenge(HttpServerExchange exchange,
                                                             SecurityContext securityContext)
```
    Description copied from interface: AuthenticationMechanism
    
    Send an authentication challenge to the remote client.
    The individual mechanisms should update the response headers and body of the message as appropriate however they should not set the response code, instead that should be indicated in the AuthenticationMechanism.ChallengeResult and the most appropriate overall response code will be selected. This method should not return null.
    
    Specified by:
    
    sendChallenge in interface AuthenticationMechanism
    
    Parameters:
    
    exchange - The exchange
    
    securityContext - The security context
    
    Returns:
    
    A AuthenticationMechanism.ChallengeResult indicating if a challenge was sent and the desired response code.
  - performAuthentication
```
protected boolean performAuthentication(SecurityContext securityContext)
```
    Actually performs the authentication. Subclasses should call this method when implementing the AuthenticatorBase.authenticate method.
    
    This method was created to allow different signatures for the AuthenticatorBase.authenticate method according with the catalina version.
    
    Parameters:
    
    request -
    
    response -
    
    loginConfig -
    
    Returns:
    
    Throws:
    
    IOException
  - getSubjectPrincipal
```
protected Principal getSubjectPrincipal()
```

Class PicketLinkAuthenticator

Nested Class Summary

Nested classes/interfaces inherited from interface io.undertow.security.api.AuthenticationMechanism

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

PicketLinkAuthenticator

Method Detail

authenticate

sendChallenge

performAuthentication

getSubjectPrincipal