Spring Web Services Framework

org.springframework.ws.soap.security.x509
Interface X509AuthoritiesPopulator

All Known Implementing Classes:
DaoX509AuthoritiesPopulator

public interface X509AuthoritiesPopulator

Populates the UserDetails associated with the X.509 certificate presented by a client.

Although the certificate will already have been validated by the web container, implementations may choose to perform additional application-specific checks on the certificate content here. If an implementation chooses to reject the certificate, it should throw a BadCredentialsException.

Migrated from Spring Security 2 since it has been removed in Spring Security 3.

Author:
Luke Taylor

Method Summary
 org.springframework.security.core.userdetails.UserDetails getUserDetails(X509Certificate userCertificate)
          Obtains the granted authorities for the specified user.
 

Method Detail

getUserDetails

org.springframework.security.core.userdetails.UserDetails getUserDetails(X509Certificate userCertificate)
                                                                         throws org.springframework.security.core.AuthenticationException
Obtains the granted authorities for the specified user.

May throw any AuthenticationException or return null if the authorities are unavailable.

Parameters:
userCertificate - the X.509 certificate supplied
Returns:
the details of the indicated user (at minimum the granted authorities and the username)
Throws:
org.springframework.security.core.AuthenticationException - if the user details are not available or the certificate isn't valid for the application's purpose.

Spring Web Services Framework

Copyright © 2005-2013 The Spring Web Services Framework. All Rights Reserved.