java.lang.Object | |||
↳ | org.springframework.web.filter.GenericFilterBean | ||
↳ | org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter | ||
↳ | org.springframework.security.openid.OpenIDAuthenticationFilter |
Filter which processes OpenID authentication requests.
The OpenID authentication involves two stages.
Constants | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
String | DEFAULT_CLAIMED_IDENTITY_FIELD |
[Expand]
Inherited Constants | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
From class
org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
|
[Expand]
Inherited Fields | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
From class
org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
| |||||||||||
From class
org.springframework.web.filter.GenericFilterBean
|
Public Constructors | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Public Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Authentication has two phases.
| |||||||||||
The name of the request parameter containing the OpenID identity, as submitted from the initial login form.
| |||||||||||
Maps the return_to url to a realm, for example:
http://www.example.com/j_spring_openid_security_check -> http://www.example.com/realmIf no mapping is provided then the returnToUrl will be parsed to extract the protocol, hostname and port followed by a trailing slash. | |||||||||||
Specifies any extra parameters submitted along with the identity field which should be appended to the
return_to URL which is assembled by buildReturnToUrl(HttpServletRequest) . |
Protected Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Builds the return_to URL that will be sent to the OpenID service provider.
| |||||||||||
Reads the claimedIdentityFieldName from the submitted request.
|
[Expand]
Inherited Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
From class
org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
| |||||||||||
From class
org.springframework.web.filter.GenericFilterBean
| |||||||||||
From class
java.lang.Object
| |||||||||||
From interface
javax.servlet.Filter
| |||||||||||
From interface
org.springframework.beans.factory.BeanNameAware
| |||||||||||
From interface
org.springframework.beans.factory.DisposableBean
| |||||||||||
From interface
org.springframework.beans.factory.InitializingBean
| |||||||||||
From interface
org.springframework.context.ApplicationEventPublisherAware
| |||||||||||
From interface
org.springframework.context.MessageSourceAware
| |||||||||||
From interface
org.springframework.web.context.ServletContextAware
|
Authentication has two phases.
request | from which to extract parameters and perform the authentication |
---|---|
response | the response, which may be needed if the implementation has to do a redirect as part of a multi-stage authentication process (such as OpenID). |
The name of the request parameter containing the OpenID identity, as submitted from the initial login form.
claimedIdentityFieldName | defaults to "openid_identifier" |
---|
Maps the return_to url to a realm, for example:
http://www.example.com/j_spring_openid_security_check -> http://www.example.com/realmIf no mapping is provided then the returnToUrl will be parsed to extract the protocol, hostname and port followed by a trailing slash. This means that http://www.example.com/j_spring_openid_security_check will automatically become http://www.example.com:80/
realmMapping | containing returnToUrl -> realm mappings |
---|
Specifies any extra parameters submitted along with the identity field which should be appended to the
return_to
URL which is assembled by buildReturnToUrl(HttpServletRequest)
.
returnToUrlParameters | the set of parameter names. If not set, it will default to the parameter name used by the
RememberMeServices obtained from the parent class (if one is set).
|
---|
Builds the return_to URL that will be sent to the OpenID service provider. By default returns the URL of the current request.
request | the current request which is being processed by this filter |
---|
Reads the claimedIdentityFieldName from the submitted request.