Class OneTimeTokenAuthentication

java.lang.Object

org.springframework.security.authentication.AbstractAuthenticationToken

org.springframework.security.authentication.ott.OneTimeTokenAuthentication

All Implemented Interfaces:

Serializable, Principal, Authentication, CredentialsContainer

public class OneTimeTokenAuthentication
extends AbstractAuthenticationToken

The result of a successful one-time-token authentication

Since:

7.0

See Also:

• Serialized Form

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	OneTimeTokenAuthentication.Builder<B extends OneTimeTokenAuthentication.Builder<B>>	A builder of OneTimeTokenAuthentication instances

Nested classes/interfaces inherited from class AbstractAuthenticationToken

AbstractAuthenticationToken.AbstractAuthenticationBuilder<B>

Constructor Summary

Constructors

Modifier	Constructor	Description
	OneTimeTokenAuthentication(Object principal, Collection<? extends GrantedAuthority> authorities)
protected	OneTimeTokenAuthentication(OneTimeTokenAuthentication.Builder<?> builder)

Method Summary

Modifier and Type	Method	Description
@Nullable Object	getCredentials()	The credentials that prove the principal is correct.
Object	getPrincipal()	The identity of the principal being authenticated.
OneTimeTokenAuthentication.Builder<?>	toBuilder()	Return an Authentication.Builder based on this instance.

Methods inherited from class AbstractAuthenticationToken

equals, eraseCredentials, getAuthorities, getDetails, getName, hashCode, isAuthenticated, setAuthenticated, setDetails, toString

Methods inherited from class Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Methods inherited from interface Principal

implies

Constructor Details

OneTimeTokenAuthentication

public OneTimeTokenAuthentication(Object principal,
 Collection<? extends GrantedAuthority> authorities)

OneTimeTokenAuthentication

protected OneTimeTokenAuthentication(OneTimeTokenAuthentication.Builder<?> builder)

Method Details

getPrincipal

public Object getPrincipal()

Description copied from interface: Authentication

The identity of the principal being authenticated. In the case of an authentication request with username and password, this would be the username. Callers are expected to populate the principal for an authentication request.

The AuthenticationManager implementation will often return an Authentication containing richer information as the principal for use by the application. Many of the authentication providers will create a UserDetails object as the principal.

Returns:

the Principal being authenticated or the authenticated principal after authentication.

getCredentials

public @Nullable Object getCredentials()

Description copied from interface: Authentication

The credentials that prove the principal is correct. This is usually a password, but could be anything relevant to the AuthenticationManager. Callers are expected to populate the credentials.

Returns:

the credentials that prove the identity of the Principal

toBuilder

public OneTimeTokenAuthentication.Builder<?> toBuilder()

Description copied from interface: Authentication

Return an Authentication.Builder based on this instance. By default, returns a builder that builds a SimpleAuthentication.

Although a default method, all Authentication implementations should implement this. The reason is to ensure that the Authentication type is preserved when Authentication.Builder.build() is invoked. This is especially important in the event that your authentication implementation contains custom fields.

This isn't strictly necessary since it is recommended that applications code to the Authentication interface and that custom information is often contained in the Authentication.getPrincipal() value.

Returns:

an Authentication.Builder for building a new Authentication based on this instance