org.springframework.ws.soap.security.x509

Interface X509AuthoritiesPopulator

All Known Implementing Classes:

DaoX509AuthoritiesPopulator

public interface X509AuthoritiesPopulator

Populates the UserDetails associated with the X.509 certificate presented by a client.

Although the certificate will already have been validated by the web container, implementations may choose to perform additional application-specific checks on the certificate content here. If an implementation chooses to reject the certificate, it should throw a BadCredentialsException.

Migrated from Spring Security 2 since it has been removed in Spring Security 3.

Author:

Luke Taylor

Method Summary

Modifier and Type	Method and Description
org.springframework.security.core.userdetails.UserDetails	getUserDetails(X509Certificate userCertificate) Obtains the granted authorities for the specified user.

Method Detail

getUserDetails

org.springframework.security.core.userdetails.UserDetails getUserDetails(X509Certificate userCertificate)
                                                                  throws org.springframework.security.core.AuthenticationException

Obtains the granted authorities for the specified user.

May throw any AuthenticationException or return null if the authorities are unavailable.

Parameters:

userCertificate - the X.509 certificate supplied

Returns:

the details of the indicated user (at minimum the granted authorities and the username)

Throws:

org.springframework.security.core.AuthenticationException - if the user details are not available or the certificate isn't valid for the application's purpose.