Package org.eclipse.jetty.security
package org.eclipse.jetty.security
Jetty Security : Modular Support for Security in Jetty
-
ClassDescriptionAbstractLoginService Base class for LoginServices that allows subclasses to provide the user authentication and authorization information, but provides common behaviour such as handling authentication.The Authentication state of a request.Authentication is Deferred, either so that credentials can later be passed with
AuthenticationState.Deferred.login(String, String, Request, Response); or that existing credentials on the request may be validated withAuthenticationState.Deferred.authenticate(Request); or an authentication dialog can be advanced withAuthenticationState.Deferred.authenticate(Request, Response, Callback).A tag interface used to identify aResponsethat might be passed toAuthenticator.validateRequest(Request, Response, Callback)while doing deferred authentication when a challenge cannot be sent.Authentication Response sent state.TheSecurityHandlerwill use this to wrap theRequest.A successful Authentication with User information.Authenticator InterfaceAuthenticator ConfigurationAuthenticator FactoryA Security constraint that is applied to a request, which contain: A name Authorization to specify if authentication is needed and what roles are applicable An optional list of role names used forConstraint.Authorization.KNOWN_ROLEA Transport constraint, indicating if it must be secure or not.The Authorization applied to any authentication of the request/Builder for Constraint.The constraints requirement for the transportThe Default Authenticator Factory.The defaultIdentityService, which creates and usesDefaultUserIdentitys.LoginService implementation which always denies any attempt to login.An implementation of a LoginService that stores users and roles in-memory in HashMaps.Associates UserIdentities from with threads and UserIdentity.Contexts.An association between an identity and the current thread that can be terminated byIdentityService.Association.close().An opaque token created byIdentityService.newRunAsToken(String)and used byIdentityService.associate(UserIdentity, RunAsToken)JDBC as a source of user authentication and authorization information.A UserPrincipal with extra jdbc key info.Login Service Interface.This class monitors a property file of the format mentioned below and notifies registered listeners of the changes to the the given file.RolePrincipal Represents a role.Abstract SecurityHandler.A concrete implementation ofSecurityHandlerthat uses aPathMappingsto match request to a list ofConstraints, which are applied in the order of least significant to most significant.A server specific Authentication or Authorization exception.A configurable (as opposed to using system properties) SPNEGO LoginService.User object that encapsulates user identity and operations such as run-as-role actions, checking isUserInRole and getUserPrincipal.UserPrincipal Represents a user with a credential.Store of user authentication and authorization information.