public class RemoteAuthenticationProvider extends java.lang.Object implements AuthenticationProvider, org.springframework.beans.factory.InitializingBean
RemoteAuthenticationManager to validate an
authentication request.
A new Authentication object is created by this class comprising the
request Authentication object's principal,
credentials and the GrantedAuthority[]s returned by the
RemoteAuthenticationManager.
The RemoteAuthenticationManager should not require any special username or
password setting on the remoting client proxy factory to execute the call. Instead the
entire authentication request must be encapsulated solely within the
Authentication request object. In practical terms this means the
RemoteAuthenticationManager will not be protected by BASIC or any
other HTTP-level authentication.
If authentication fails, a RemoteAuthenticationException will be thrown.
This exception should be caught and displayed to the user, enabling them to retry with
alternative credentials etc.
| Constructor and Description |
|---|
RemoteAuthenticationProvider() |
| Modifier and Type | Method and Description |
|---|---|
void |
afterPropertiesSet() |
Authentication |
authenticate(Authentication authentication)
Performs authentication with the same contract as
AuthenticationManager.authenticate(Authentication)
. |
RemoteAuthenticationManager |
getRemoteAuthenticationManager() |
void |
setRemoteAuthenticationManager(RemoteAuthenticationManager remoteAuthenticationManager) |
boolean |
supports(java.lang.Class<?> authentication)
Returns
true if this AuthenticationProvider supports the
indicated Authentication object. |
public void afterPropertiesSet()
throws java.lang.Exception
afterPropertiesSet in interface org.springframework.beans.factory.InitializingBeanjava.lang.Exceptionpublic Authentication authenticate(Authentication authentication) throws AuthenticationException
AuthenticationProviderAuthenticationManager.authenticate(Authentication)
.authenticate in interface AuthenticationProviderauthentication - the authentication request object.null if the AuthenticationProvider is unable to support
authentication of the passed Authentication object. In such a case,
the next AuthenticationProvider that supports the presented
Authentication class will be tried.AuthenticationException - if authentication fails.public RemoteAuthenticationManager getRemoteAuthenticationManager()
public void setRemoteAuthenticationManager(RemoteAuthenticationManager remoteAuthenticationManager)
public boolean supports(java.lang.Class<?> authentication)
AuthenticationProvidertrue if this AuthenticationProvider supports the
indicated Authentication object.
Returning true does not guarantee an
AuthenticationProvider will be able to authenticate the presented
instance of the Authentication class. It simply indicates it can
support closer evaluation of it. An AuthenticationProvider can still
return null from the AuthenticationProvider.authenticate(Authentication) method to
indicate another AuthenticationProvider should be tried.
Selection of an AuthenticationProvider capable of performing
authentication is conducted at runtime the ProviderManager.
supports in interface AuthenticationProvidertrue if the implementation can more closely evaluate the
Authentication class presented