Package org.wildfly.security.http
Class HttpAuthenticator
- java.lang.Object
-
- org.wildfly.security.http.HttpAuthenticator
-
public class HttpAuthenticator extends Object
A HTTP based authenticator responsible for performing the authentication of the current request based on the policies of the associatedSecurityDomain.- Author:
- Darran Lofthouse
-
-
Nested Class Summary
Nested Classes Modifier and Type Class Description private classHttpAuthenticator.AuthenticationExchangestatic classHttpAuthenticator.BuilderABuilderto configure and create an instance ofHttpAuthenticator.
-
Field Summary
Fields Modifier and Type Field Description private HttpExchangeSpihttpExchangeSpiprivate IdentityCacheidentityCacheprivate Supplier<IdentityCache>identityCacheSupplierprivate booleanignoreOptionalFailuresprivate Consumer<Runnable>logoutHandlerConsumerprivate Supplier<List<HttpServerAuthenticationMechanism>>mechanismSupplierprivate static StringMY_AUTHENTICATED_IDENTITY_KEYprivate StringprogrammaticMechanismNameprivate booleanrequiredprivate SecurityDomainsecurityDomain
-
Constructor Summary
Constructors Modifier Constructor Description privateHttpAuthenticator(HttpAuthenticator.Builder builder)
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description booleanauthenticate()Perform authentication for the request.static HttpAuthenticator.Builderbuilder()Construct and return a newBuilderto configure and create an instance ofHttpAuthenticator.private IdentityCachecreateIdentityCache(String mechanismName)private ServerAuthenticationContextcreateServerAuthenticationContext()private HttpScopegetAttachableSessionScope(boolean createSession)private IdentityCachegetOrCreateIdentityCache()SecurityIdentitylogin(String username, String password)Perform a login for the supplied username and password using the pre-configured mechanism name.private SecurityIdentitylogin(String username, Evidence evidence, String mechanismName)Perform a login for the supplied username and password using the specified mechanism name.private booleanrestoreIdentity()
-
-
-
Field Detail
-
MY_AUTHENTICATED_IDENTITY_KEY
private static final String MY_AUTHENTICATED_IDENTITY_KEY
-
mechanismSupplier
private final Supplier<List<HttpServerAuthenticationMechanism>> mechanismSupplier
-
identityCacheSupplier
private final Supplier<IdentityCache> identityCacheSupplier
-
securityDomain
private final SecurityDomain securityDomain
-
httpExchangeSpi
private final HttpExchangeSpi httpExchangeSpi
-
required
private final boolean required
-
ignoreOptionalFailures
private final boolean ignoreOptionalFailures
-
programmaticMechanismName
private final String programmaticMechanismName
-
identityCache
private volatile IdentityCache identityCache
-
-
Constructor Detail
-
HttpAuthenticator
private HttpAuthenticator(HttpAuthenticator.Builder builder)
-
-
Method Detail
-
authenticate
public boolean authenticate() throws HttpAuthenticationExceptionPerform authentication for the request.- Returns:
trueif the call should be allowed to continue within the web server,falseif the call should be returning to the client.- Throws:
HttpAuthenticationException
-
login
public SecurityIdentity login(String username, String password)
Perform a login for the supplied username and password using the pre-configured mechanism name.- Parameters:
username- the username to use for authentication.password- the password to use for authentication.- Returns:
- A
SecurityIdentityis authentication and authorization is successful.
-
login
private SecurityIdentity login(String username, Evidence evidence, String mechanismName)
Perform a login for the supplied username and password using the specified mechanism name.- Parameters:
username- the username to use for authentication.evidence- the evidence to use for authentication.- Returns:
- A
SecurityIdentityis authentication and authorization is successful.
-
createServerAuthenticationContext
private ServerAuthenticationContext createServerAuthenticationContext()
-
restoreIdentity
private boolean restoreIdentity()
-
getOrCreateIdentityCache
private IdentityCache getOrCreateIdentityCache()
-
createIdentityCache
private IdentityCache createIdentityCache(String mechanismName)
-
getAttachableSessionScope
private HttpScope getAttachableSessionScope(boolean createSession)
-
builder
public static HttpAuthenticator.Builder builder()
Construct and return a newBuilderto configure and create an instance ofHttpAuthenticator.- Returns:
- a new
Builderto configure and create an instance ofHttpAuthenticator.
-
-