public interface AuthenticationHandler
AuthenticationFilter manages the lifecycle of the authentication handler.
Implementations must be thread-safe as one instance is initialized and used for all requests.| Modifier and Type | Field and Description |
|---|---|
static String |
WWW_AUTHENTICATE |
| Modifier and Type | Method and Description |
|---|---|
AuthenticationToken |
authenticate(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
Performs an authentication step for the given HTTP client request.
|
void |
destroy()
Destroys the authentication handler instance.
|
String |
getType()
Returns the authentication type of the authentication handler.
|
void |
init(Properties config)
Initializes the authentication handler instance.
|
boolean |
managementOperation(AuthenticationToken token,
javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
Performs an authentication management operation.
|
static final String WWW_AUTHENTICATE
String getType()
void init(Properties config) throws javax.servlet.ServletException
This method is invoked by the AuthenticationFilter.init(javax.servlet.FilterConfig) method.
config - configuration properties to initialize the handler.javax.servlet.ServletException - thrown if the handler could not be initialized.void destroy()
This method is invoked by the AuthenticationFilter.destroy() method.
boolean managementOperation(AuthenticationToken token, javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws IOException, AuthenticationException
This is useful for handling operations like get/renew/cancel delegation tokens which are being handled as operations of the service end-point.
If the method returns TRUE the request will continue normal
processing, this means the method has not produced any HTTP response.
If the method returns FALSE the request will end, this means
the method has produced the corresponding HTTP response.
token - the authentication token if any, otherwise NULL.request - the HTTP client request.response - the HTTP client response.TRUE if the request should be processed as a regular
request,
FALSE otherwise.IOException - thrown if an IO error occurred.AuthenticationException - thrown if an Authentication error occurred.AuthenticationToken authenticate(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws IOException, AuthenticationException
This method is invoked by the AuthenticationFilter only if the HTTP client request is
not yet authenticated.
Depending upon the authentication mechanism being implemented, a particular HTTP client may end up making a sequence of invocations before authentication is successfully established (this is the case of Kerberos SPNEGO).
This method must return an AuthenticationToken only if the the HTTP client request has
been successfully and fully authenticated.
If the HTTP client request has not been completely authenticated, this method must take over
the corresponding HTTP response and it must return null.
request - the HTTP client request.response - the HTTP client response.AuthenticationToken if the HTTP client request has been authenticated,
null otherwise (in this case it must take care of the response).IOException - thrown if an IO error occurred.AuthenticationException - thrown if an Authentication error occurred.Copyright © 2022 Apache Software Foundation. All rights reserved.