SpnegoEntryPoint (Spring Security Kerberos Extension 1.0.1.RELEASE API)

Spring Security Kerberos Extension

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- org.springframework.security.kerberos.web.authentication.SpnegoEntryPoint

All Implemented Interfaces:

org.springframework.security.web.AuthenticationEntryPoint
```
public class SpnegoEntryPoint
extends java.lang.Object
implements org.springframework.security.web.AuthenticationEntryPoint
```
Sends back a request for a Negotiate Authentication to the browser.
With optional configured forwardUrl it is possible to use form login as fallback authentication.

This approach enables security configuration to use SPNEGO in combination with login form as fallback for clients that do not support this kind of authentication. Set Response Code 401 - unauthorized and forward to login page. A useful scenario might be an environment where windows domain is present but it is required to access the application also from non domain client devices. One could use a combination with form based LDAP login.

See spnego-with-form-login.xml in spring-security-kerberos-sample for details

Since:

1.0

Author:

Mike Wiesner, Andre Schaefer, Namics AG

See Also:
SpnegoAuthenticationProcessingFilter

Constructor Summary

Constructors
Constructor and Description

SpnegoEntryPoint()
Instantiates a new spnego entry point.

SpnegoEntryPoint(java.lang.String forwardUrl)
Instantiates a new spnego entry point.

Method Summary

Methods
Modifier and Type	Method and Description
`void`	`commence(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.springframework.security.core.AuthenticationException ex)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - SpnegoEntryPoint
```
public SpnegoEntryPoint()
```
    Instantiates a new spnego entry point. Using this constructor the EntryPoint will Sends back a request for a Negotiate Authentication to the browser without providing a fallback mechanism for login, Use constructor with forwardUrl to provide form based login.
  - SpnegoEntryPoint
```
public SpnegoEntryPoint(java.lang.String forwardUrl)
```
    Instantiates a new spnego entry point. This constructor enables security configuration to use SPNEGO in combination with login form as fallback for clients that do not support this kind of authentication.
    
    Parameters:
    forwardUrl - URL where the login page can be found. Should be relative to the web-app context path (include a leading /) and can't be absolute URL.
- Method Detail
  - commence
```
public void commence(javax.servlet.http.HttpServletRequest request,
            javax.servlet.http.HttpServletResponse response,
            org.springframework.security.core.AuthenticationException ex)
              throws java.io.IOException,
                     javax.servlet.ServletException
```
    Specified by:
    
    commence in interface org.springframework.security.web.AuthenticationEntryPoint
    
    Throws:
    
    java.io.IOException
    
    javax.servlet.ServletException

Spring Security Kerberos Extension

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method