PasswordComparisonAuthenticator

Class Overview

An LdapAuthenticator which compares the login password with the value stored in the directory using a remote LDAP "compare" operation.

If passwords are stored in digest form in the repository, then a suitable PasswordEncoder implementation must be supplied. By default, passwords are encoded using the LdapShaPasswordEncoder. Note that compare operations will not work if salted-SHA (SSHA) passwords are used, as it is not possible to know the salt value which is a random byte sequence generated by the directory.

Summary

[Expand] Inherited Fields
From class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator protected MessageSourceAccessor messages

[Expand] Inherited Methods
From class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator void afterPropertiesSet() ContextSource getContextSource() String[] getUserAttributes() List<String> getUserDns(String username) Builds list of possible DNs for the user, worked out from the userDnPatterns property. LdapUserSearch getUserSearch() void setMessageSource(MessageSource messageSource) void setUserAttributes(String[] userAttributes) Sets the user attributes which will be retrieved from the directory. void setUserDnPatterns(String[] dnPattern) Sets the pattern which will be used to supply a DN for the user. void setUserSearch(LdapUserSearch userSearch)
From class java.lang.Object Object clone() boolean equals(Object arg0) void finalize() final Class<?> getClass() int hashCode() final void notify() final void notifyAll() String toString() final void wait() final void wait(long arg0, int arg1) final void wait(long arg0)
From interface org.springframework.beans.factory.InitializingBean abstract void afterPropertiesSet()
From interface org.springframework.context.MessageSourceAware abstract void setMessageSource(MessageSource arg0)
From interface org.springframework.security.ldap.authentication.LdapAuthenticator abstract DirContextOperations authenticate(Authentication authentication) Authenticates as a user and obtains additional user information from the directory.