public class BasicAuthenticationEntryPoint extends Object implements AuthenticationEntryPoint, InitializingBean
ExceptionTraslationFilter
to commence authentication via the
BasicAuthenticationFilter
.
Once a user agent is authenticated using BASIC authentication, logout requires that the
browser be closed or an unauthorized (401) header be sent. The simplest way of
achieving the latter is to call the
commence(HttpServletRequest, HttpServletResponse, AuthenticationException)
method below. This will indicate to the browser its credentials are no longer
authorized, causing it to prompt the user to login again.
Constructor and Description |
---|
BasicAuthenticationEntryPoint() |
Modifier and Type | Method and Description |
---|---|
void |
afterPropertiesSet() |
void |
commence(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
AuthenticationException authException)
Commences an authentication scheme.
|
String |
getRealmName() |
void |
setRealmName(String realmName) |
public void afterPropertiesSet() throws Exception
afterPropertiesSet
in interface InitializingBean
Exception
public void commence(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, AuthenticationException authException) throws IOException, javax.servlet.ServletException
AuthenticationEntryPoint
ExceptionTranslationFilter
will populate the HttpSession
attribute named
AbstractAuthenticationProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY
with the requested target URL before calling this method.
Implementations should modify the headers on the ServletResponse
as
necessary to commence the authentication process.
commence
in interface AuthenticationEntryPoint
request
- that resulted in an AuthenticationException
response
- so that the user agent can begin authenticationauthException
- that caused the invocationIOException
javax.servlet.ServletException
public String getRealmName()
public void setRealmName(String realmName)