public class

RunAsImplAuthenticationProvider

extends Object
implements InitializingBean MessageSourceAware AuthenticationProvider
java.lang.Object
   ↳ org.springframework.security.access.intercept.RunAsImplAuthenticationProvider

Class Overview

An AuthenticationProvider implementation that can authenticate a RunAsUserToken.

Configured in the bean context with a key that should match the key used by adapters to generate the RunAsUserToken. It treats as valid any RunAsUserToken instance presenting a hash code that matches the RunAsImplAuthenticationProvider-configured key.

If the key does not match, a BadCredentialsException is thrown.

Summary

Fields
protected MessageSourceAccessor messages
Public Constructors
RunAsImplAuthenticationProvider()
Public Methods
void afterPropertiesSet()
Authentication authenticate(Authentication authentication)
Performs authentication with the same contract as authenticate(Authentication).
String getKey()
void setKey(String key)
void setMessageSource(MessageSource messageSource)
boolean supports(Class<?> authentication)
Returns true if this AuthenticationProvider supports the indicated Authentication object.
[Expand]
Inherited Methods
From class java.lang.Object
From interface org.springframework.beans.factory.InitializingBean
From interface org.springframework.context.MessageSourceAware
From interface org.springframework.security.authentication.AuthenticationProvider

Fields

protected MessageSourceAccessor messages

Public Constructors

public RunAsImplAuthenticationProvider ()

Public Methods

public void afterPropertiesSet ()

Throws
Exception

public Authentication authenticate (Authentication authentication)

Performs authentication with the same contract as authenticate(Authentication).

Parameters
authentication the authentication request object.
Returns
  • a fully authenticated object including credentials. May return null if the AuthenticationProvider is unable to support authentication of the passed Authentication object. In such a case, the next AuthenticationProvider that supports the presented Authentication class will be tried.

public String getKey ()

public void setKey (String key)

public void setMessageSource (MessageSource messageSource)

public boolean supports (Class<?> authentication)

Returns true if this AuthenticationProvider supports the indicated Authentication object.

Returning true does not guarantee an AuthenticationProvider will be able to authenticate the presented instance of the Authentication class. It simply indicates it can support closer evaluation of it. An AuthenticationProvider can still return null from the authenticate(Authentication) method to indicate another AuthenticationProvider should be tried.

Selection of an AuthenticationProvider capable of performing authentication is conducted at runtime the ProviderManager.

Returns
  • true if the implementation can more closely evaluate the Authentication class presented