Package ch.tocco.nice2.userbase.impl.auth

Class SessionAuthenticationHandler

java.lang.Object

ch.tocco.nice2.security.spi.auth.AuthenticationHandlerAdapter

ch.tocco.nice2.userbase.impl.auth.SessionAuthenticationHandler

All Implemented Interfaces:

AuthenticationHandler

@Component
@Order(100)
public class SessionAuthenticationHandler
extends AuthenticationHandlerAdapter

Authentication handler that returns the principal associated to the session specified by SessionCredentials. It supports setting new credentials of type UserCredentialsChange.

Field Summary

Fields

Modifier and Type	Field	Description
static final String	SESSION_ATTRIBUTE
static final String	SESSION_PK_ATTRIBUTE

Fields inherited from interface ch.tocco.nice2.security.spi.auth.AuthenticationHandler

ANONYMOUS_HANDLER_ORDER, API_KEY_PK_ATTRIBUTE, PRINCIPAL_PK_ATTRIBUTE, SESSION_HASH_HANDLER_ORDER, SESSION_ID_ATTRIBUTE

Constructor Summary

Constructors

Constructor	Description
SessionAuthenticationHandler(org.slf4j.Logger logger, ContextManager contextManager, PrincipalManager principalManager, SessionManager sessionManager, PrincipalService principalService, PersistenceService persistenceService)

Method Summary

Modifier and Type	Method	Description
void	authenticate(Challenge challenge, Credentials credentials)	Authenticates the given challenge by voting for or against it.
void	postAuthenticate(Challenge challenge)	After authentication has been successful for all registered AuthenticationHandlers, the post-authentication step is invoked to add more authorization information to the principal which is sure to be not null and authenticated when this method is invoked.
boolean	updateCredentials(Credentials oldCredentials, Credentials newCredentials)	Updates the credentials for this handler.

Methods inherited from class ch.tocco.nice2.security.spi.auth.AuthenticationHandlerAdapter

getName

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface ch.tocco.nice2.security.spi.auth.AuthenticationHandler

postEventListeners

Field Details

SESSION_ATTRIBUTE

public static final String SESSION_ATTRIBUTE

See Also:

• Constant Field Values

SESSION_PK_ATTRIBUTE

public static final String SESSION_PK_ATTRIBUTE

See Also:

• Constant Field Values

Constructor Details

SessionAuthenticationHandler

public SessionAuthenticationHandler(org.slf4j.Logger logger,
 ContextManager contextManager,
 PrincipalManager principalManager,
 SessionManager sessionManager,
 PrincipalService principalService,
 PersistenceService persistenceService)

Method Details

authenticate

public void authenticate(Challenge challenge,
 Credentials credentials)

Description copied from interface: AuthenticationHandler

Authenticates the given challenge by voting for or against it.

If the supplied credentials are unknown to this handler, it may not vote at all, indicating no meaningful knowledge about the challenge.

Specified by:

authenticate in interface AuthenticationHandler

Overrides:

authenticate in class AuthenticationHandlerAdapter

Parameters:

challenge - the authentication challenge

credentials - the credentials supplied by client in case of non-recoverable error. An exception will immediately stop authentication process to failed state.

postAuthenticate

public void postAuthenticate(Challenge challenge)

Description copied from interface: AuthenticationHandler

After authentication has been successful for all registered AuthenticationHandlers, the post-authentication step is invoked to add more authorization information to the principal which is sure to be not null and authenticated when this method is invoked.

This handler may also decide in this step to give a new vote for this challenge which overrides the previously given vote.

If this throws any exception, authentication process is immediately stopped to failed state.

Specified by:

postAuthenticate in interface AuthenticationHandler

Overrides:

postAuthenticate in class AuthenticationHandlerAdapter

Parameters:

challenge - the challenge to authenticate

updateCredentials

public boolean updateCredentials(Credentials oldCredentials,
 Credentials newCredentials)

Description copied from interface: AuthenticationHandler

Updates the credentials for this handler.

If this handler is not supporting this, return false

.

In case of an exception, the whole process is stopped immediately.

Specified by:

updateCredentials in interface AuthenticationHandler

Overrides:

updateCredentials in class AuthenticationHandlerAdapter

Parameters:

oldCredentials - the old credentials are used to get the principal

newCredentials - the new credentials to set. authentication handlers should only support their sepcific type of credentials

Returns:

true if credentials were updated successfully, false if skipped