org.apache.jackrabbit.core.security.simple
Class SimpleLoginModule
java.lang.Object
org.apache.jackrabbit.core.security.authentication.AbstractLoginModule
org.apache.jackrabbit.core.security.simple.SimpleLoginModule
- All Implemented Interfaces:
- javax.security.auth.spi.LoginModule
- Direct Known Subclasses:
- SimpleLoginModule
public class SimpleLoginModule
- extends AbstractLoginModule
SimpleLoginModule...
|
Method Summary |
protected void |
doInit(javax.security.auth.callback.CallbackHandler callbackHandler,
javax.jcr.Session session,
java.util.Map options)
Implementations may set-up their own state. |
protected Authentication |
getAuthentication(java.security.Principal principal,
javax.jcr.Credentials creds)
|
protected java.security.Principal |
getPrincipal(javax.jcr.Credentials credentials)
Uses the configured PrincipalProvider to retrieve the principal. |
protected boolean |
impersonate(java.security.Principal principal,
javax.jcr.Credentials credentials)
Handles the impersonation of given Credentials.
Current implementation takes User for the given Principal and
delegates the check to Impersonation.allows(javax.security.auth.Subject) } |
| Methods inherited from class org.apache.jackrabbit.core.security.authentication.AbstractLoginModule |
abort, authenticate, commit, getAdminId, getAnonymousId, getCredentials, getImpersonatorSubject, getPrincipalProvider, getPrincipals, getUserID, initialize, isAnonymous, isImpersonation, isInitialized, login, logout, setAdminId, setAnonymousId, setPrincipalProvider |
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
SimpleLoginModule
public SimpleLoginModule()
doInit
protected void doInit(javax.security.auth.callback.CallbackHandler callbackHandler,
javax.jcr.Session session,
java.util.Map options)
throws javax.security.auth.login.LoginException
- Description copied from class:
AbstractLoginModule
- Implementations may set-up their own state. E. g. a DataSource if it is
authorized against an external System
- Specified by:
doInit in class AbstractLoginModule
- Parameters:
callbackHandler - as passed by LoginContextsession - to security-workspace of Jackrabbitoptions - options from Logini config
- Throws:
javax.security.auth.login.LoginException - in case initializeaiton failes
impersonate
protected boolean impersonate(java.security.Principal principal,
javax.jcr.Credentials credentials)
throws javax.jcr.RepositoryException,
javax.security.auth.login.LoginException
- Description copied from class:
AbstractLoginModule
- Handles the impersonation of given Credentials.
Current implementation takes
User for the given Principal and
delegates the check to Impersonation.allows(javax.security.auth.Subject) }
- Specified by:
impersonate in class AbstractLoginModule
- Returns:
- false, if there is no User to impersonate,
true if impersonation is allowed
- Throws:
javax.jcr.RepositoryException
javax.security.auth.login.FailedLoginException - if credentials don't allow to impersonate to principal
javax.security.auth.login.LoginException
getAuthentication
protected Authentication getAuthentication(java.security.Principal principal,
javax.jcr.Credentials creds)
throws javax.jcr.RepositoryException
- Specified by:
getAuthentication in class AbstractLoginModule
- Returns:
-
- Throws:
javax.jcr.RepositoryException
getPrincipal
protected java.security.Principal getPrincipal(javax.jcr.Credentials credentials)
- Uses the configured
PrincipalProvider to retrieve the principal.
It takes the PrincipalProvider.getPrincipal(String) for the User-ID
resolved by AbstractLoginModule.getUserID(Credentials), assuming that
User-ID and the corresponding principal name are always identical.
- Specified by:
getPrincipal in class AbstractLoginModule
- Parameters:
credentials -
- Returns:
- principal or
null if the principal provider does
not contain a user-principal with the given userID/principal name. - See Also:
AbstractLoginModule.getPrincipal(Credentials)
Copyright © 2004-2011 Apache Software Foundation. All Rights Reserved.