Package org.eclipse.jetty.security.authentication

Class DeferredAuthentication

java.lang.Object

org.eclipse.jetty.security.authentication.DeferredAuthentication

All Implemented Interfaces:

Authentication, Authentication.Deferred, Authentication.LoginAuthentication, Authentication.LogoutAuthentication

public class DeferredAuthentication
extends java.lang.Object
implements Authentication.Deferred

Nested Class Summary

Nested classes/interfaces inherited from interface org.eclipse.jetty.server.Authentication

Authentication.Challenge, Authentication.Deferred, Authentication.Failed, Authentication.Failure, Authentication.LoginAuthentication, Authentication.LogoutAuthentication, Authentication.NonAuthenticated, Authentication.ResponseSent, Authentication.SendSuccess, Authentication.User, Authentication.Wrapped

Field Summary

Fields

Modifier and Type	Field	Description
protected LoginAuthenticator	_authenticator

Fields inherited from interface org.eclipse.jetty.server.Authentication

NOT_CHECKED, SEND_CONTINUE, SEND_FAILURE, SEND_SUCCESS, UNAUTHENTICATED

Constructor Summary

Constructors

Constructor	Description
DeferredAuthentication(LoginAuthenticator authenticator)

Method Summary

Modifier and Type	Method	Description
Authentication	authenticate(javax.servlet.ServletRequest request)	Authenticate if possible without sending a challenge.
Authentication	authenticate(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)	Authenticate and possibly send a challenge.
java.lang.Object	getPreviousAssociation()
static boolean	isDeferred(javax.servlet.http.HttpServletResponse response)
Authentication	login(java.lang.String username, java.lang.Object password, javax.servlet.ServletRequest request)	Login with the LOGIN authenticator
Authentication	logout(javax.servlet.ServletRequest request)	Remove any user information that may be present in the request such that a call to getUserPrincipal/getRemoteUser will return null.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

_authenticator

protected final LoginAuthenticator _authenticator

Constructor Detail

DeferredAuthentication

public DeferredAuthentication(LoginAuthenticator authenticator)

Method Detail

authenticate

public Authentication authenticate(javax.servlet.ServletRequest request)

Description copied from interface: Authentication.Deferred

Authenticate if possible without sending a challenge. This is used to check credentials that have been sent for non-mandatory authentication.

Specified by:

authenticate in interface Authentication.Deferred

Parameters:

request - the request

Returns:

The new Authentication state.

See Also:

Authentication.Deferred.authenticate(ServletRequest)

authenticate

public Authentication authenticate(javax.servlet.ServletRequest request,
                                   javax.servlet.ServletResponse response)

Description copied from interface: Authentication.Deferred

Authenticate and possibly send a challenge. This is used to initiate authentication for previously non-mandatory authentication.

Specified by:

authenticate in interface Authentication.Deferred

Parameters:

request - the request

response - the response

Returns:

The new Authentication state.

See Also:

Authentication.Deferred.authenticate(javax.servlet.ServletRequest, javax.servlet.ServletResponse)

login

public Authentication login(java.lang.String username,
                            java.lang.Object password,
                            javax.servlet.ServletRequest request)

Description copied from interface: Authentication.LoginAuthentication

Login with the LOGIN authenticator

Specified by:

login in interface Authentication.LoginAuthentication

Parameters:

username - the username

password - the password

request - the request

Returns:

The new Authentication state

See Also:

Authentication.LoginAuthentication.login(String, Object, ServletRequest)

logout

public Authentication logout(javax.servlet.ServletRequest request)

Description copied from interface: Authentication.LogoutAuthentication

Remove any user information that may be present in the request such that a call to getUserPrincipal/getRemoteUser will return null.

Specified by:

logout in interface Authentication.LogoutAuthentication

Parameters:

request - the request

Returns:

NoAuthentication if we successfully logged out

getPreviousAssociation

public java.lang.Object getPreviousAssociation()

isDeferred

public static boolean isDeferred(javax.servlet.http.HttpServletResponse response)

Parameters:

response - the response

Returns:

true if this response is from a deferred call to authenticate(ServletRequest)