Class Overview
This AbstractPreAuthenticatedProcessingFilter implementation is based on the
J2EE container-based authentication mechanism. It will use the J2EE user
principal name as the pre-authenticated principal.
Summary
[Expand]
Inherited Fields |
From class
org.springframework.web.filter.GenericFilterBean
protected
final
Log |
logger |
|
|
[Expand]
Inherited Methods |
From class
org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
void
|
afterPropertiesSet()
Check whether all required properties have been set.
|
void
|
doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
Try to authenticate a pre-authenticated user with Spring Security if the user has not yet been authenticated.
|
AuthenticationDetailsSource<HttpServletRequest, ?>
|
getAuthenticationDetailsSource()
|
abstract
Object
|
getPreAuthenticatedCredentials(HttpServletRequest request)
Override to extract the credentials (if applicable) from the current request.
|
abstract
Object
|
getPreAuthenticatedPrincipal(HttpServletRequest request)
Override to extract the principal information from the current request
|
void
|
setApplicationEventPublisher(ApplicationEventPublisher anApplicationEventPublisher)
|
void
|
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?> authenticationDetailsSource)
|
void
|
setAuthenticationManager(AuthenticationManager authenticationManager)
|
void
|
setCheckForPrincipalChanges(boolean checkForPrincipalChanges)
If set, the pre-authenticated principal will be checked on each request and compared
against the name of the current Authentication object.
|
void
|
setContinueFilterChainOnUnsuccessfulAuthentication(boolean shouldContinue)
If set to true , any AuthenticationException raised by the AuthenticationManager will be
swallowed, and the request will be allowed to proceed, potentially using alternative authentication mechanisms.
|
void
|
setInvalidateSessionOnPrincipalChange(boolean invalidateSessionOnPrincipalChange)
If checkForPrincipalChanges is set, and a change of principal is detected, determines whether
any existing session should be invalidated before proceeding to authenticate the new principal.
|
void
|
successfulAuthentication(HttpServletRequest request, HttpServletResponse response, Authentication authResult)
Puts the Authentication instance returned by the
authentication manager into the secure context.
|
void
|
unsuccessfulAuthentication(HttpServletRequest request, HttpServletResponse response, AuthenticationException failed)
Ensures the authentication object in the secure context is set to null when authentication fails.
|
|
From class
org.springframework.web.filter.GenericFilterBean
final
void
|
addRequiredProperty(String arg0)
|
void
|
afterPropertiesSet()
|
void
|
destroy()
|
final
FilterConfig
|
getFilterConfig()
|
final
String
|
getFilterName()
|
final
ServletContext
|
getServletContext()
|
final
void
|
init(FilterConfig arg0)
|
void
|
initBeanWrapper(BeanWrapper arg0)
|
void
|
initFilterBean()
|
final
void
|
setBeanName(String arg0)
|
final
void
|
setFilterConfig(FilterConfig arg0)
|
final
void
|
setServletContext(ServletContext arg0)
|
|
From class
java.lang.Object
Object
|
clone()
|
boolean
|
equals(Object arg0)
|
void
|
finalize()
|
final
Class<?>
|
getClass()
|
int
|
hashCode()
|
final
void
|
notify()
|
final
void
|
notifyAll()
|
String
|
toString()
|
final
void
|
wait()
|
final
void
|
wait(long arg0, int arg1)
|
final
void
|
wait(long arg0)
|
|
From interface
javax.servlet.Filter
abstract
void
|
destroy()
|
abstract
void
|
doFilter(ServletRequest arg0, ServletResponse arg1, FilterChain arg2)
|
abstract
void
|
init(FilterConfig arg0)
|
|
From interface
org.springframework.beans.factory.BeanNameAware
abstract
void
|
setBeanName(String arg0)
|
|
From interface
org.springframework.beans.factory.DisposableBean
|
From interface
org.springframework.beans.factory.InitializingBean
abstract
void
|
afterPropertiesSet()
|
|
From interface
org.springframework.context.ApplicationEventPublisherAware
abstract
void
|
setApplicationEventPublisher(ApplicationEventPublisher arg0)
|
|
From interface
org.springframework.web.context.ServletContextAware
abstract
void
|
setServletContext(ServletContext arg0)
|
|
Public Constructors
public
J2eePreAuthenticatedProcessingFilter
()
Protected Methods
protected
Object
getPreAuthenticatedCredentials
(HttpServletRequest httpRequest)
For J2EE container-based authentication there is no generic way to
retrieve the credentials, as such this method returns a fixed dummy
value.
protected
Object
getPreAuthenticatedPrincipal
(HttpServletRequest httpRequest)
Return the J2EE user name.