|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.springframework.security.extensions.kerberos.KerberosServiceAuthenticationProvider
public class KerberosServiceAuthenticationProvider
Authentication Provider which validates Kerberos Service Tickets or SPNEGO Tokens (which includes Kerberos Service Tickets).
It needs a KerberosTicketValidator
, which contains the
code to validate the ticket, as this code is different between
SUN and IBM JRE.
It also needs an UserDetailsService
to load the user properties
and the GrantedAuthorities
, as we only get back the username
from Kerbeos
SpnegoAuthenticationProcessingFilter
.
KerberosTicketValidator
,
UserDetailsService
,
SpnegoAuthenticationProcessingFilter
Constructor Summary | |
---|---|
KerberosServiceAuthenticationProvider()
|
Method Summary | |
---|---|
protected void |
additionalAuthenticationChecks(UserDetails userDetails,
KerberosServiceRequestToken authentication)
Allows subclasses to perform any additional checks of a returned UserDetails
for a given authentication request. |
void |
afterPropertiesSet()
|
Authentication |
authenticate(Authentication authentication)
|
void |
setTicketValidator(KerberosTicketValidator ticketValidator)
The KerberosTicketValidator to use, for validating
the Kerberos/SPNEGO tickets. |
void |
setUserDetailsService(UserDetailsService userDetailsService)
The UserDetailsService to use, for loading the user properties
and the GrantedAuthorities . |
boolean |
supports(Class<? extends Object> auth)
|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public KerberosServiceAuthenticationProvider()
Method Detail |
---|
public void setUserDetailsService(UserDetailsService userDetailsService)
UserDetailsService
to use, for loading the user properties
and the GrantedAuthorities
.
public void setTicketValidator(KerberosTicketValidator ticketValidator)
KerberosTicketValidator
to use, for validating
the Kerberos/SPNEGO tickets.
public Authentication authenticate(Authentication authentication) throws AuthenticationException
authenticate
in interface AuthenticationProvider
AuthenticationException
protected void additionalAuthenticationChecks(UserDetails userDetails, KerberosServiceRequestToken authentication) throws AuthenticationException
UserDetails
for a given authentication request.
userDetails
- as retrieved from the UserDetailsService
authentication
- validated KerberosServiceRequestToken
AuthenticationException
- AuthenticationException if the credentials could not be validated (generally a
BadCredentialsException
, an AuthenticationServiceException
)public boolean supports(Class<? extends Object> auth)
supports
in interface AuthenticationProvider
public void afterPropertiesSet() throws Exception
afterPropertiesSet
in interface InitializingBean
Exception
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |