|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object com.atlassian.crowd.plugin.rest.filter.AbstractBasicAuthenticationFilter com.atlassian.crowd.plugin.rest.filter.BasicApplicationAuthenticationFilter
public class BasicApplicationAuthenticationFilter
Implementation of HTTP Basic Authentication such that all invocations to the filter must be authenticated with a valid application name and corresponding password. As a performance enhancement the application name is saved in the session after a successful authentication. Password check is waived with consequent requests when the application name in the request matches the application name in the session. Clients wishing to take advantage of this feature must support cookies.
Nested Class Summary |
---|
Nested classes/interfaces inherited from class com.atlassian.crowd.plugin.rest.filter.AbstractBasicAuthenticationFilter |
---|
AbstractBasicAuthenticationFilter.Credentials |
Constructor Summary | |
---|---|
BasicApplicationAuthenticationFilter(ApplicationManager applicationManager,
ClientValidationManager clientValidationManager)
|
Method Summary | |
---|---|
void |
doFilter(javax.servlet.ServletRequest servletRequest,
javax.servlet.ServletResponse servletResponse,
javax.servlet.FilterChain chain)
|
protected String |
getAuthenticatedEntity(javax.servlet.http.HttpServletRequest request)
Returns the authenticated entity from the request , or null if there is no authenticated entity. |
protected String |
getAuthenticationErrorMessage()
Returns the authentication error message. |
protected String |
getBasicRealm()
Returns the Basic Realm in the WWW-Authenticate header. |
protected String |
getEntityAttributeKey()
Returns the HTTP request attribute key for the entity. |
protected void |
setAuthenticatedEntity(javax.servlet.http.HttpServletRequest request,
String name)
Sets the authenticated entity. |
Methods inherited from class com.atlassian.crowd.plugin.rest.filter.AbstractBasicAuthenticationFilter |
---|
destroy, ensureSeraphForwardsRequest, getBasicAuthCredentials, init, isAuthenticated, respondWithChallenge |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public BasicApplicationAuthenticationFilter(ApplicationManager applicationManager, ClientValidationManager clientValidationManager)
Method Detail |
---|
public void doFilter(javax.servlet.ServletRequest servletRequest, javax.servlet.ServletResponse servletResponse, javax.servlet.FilterChain chain) throws IOException, javax.servlet.ServletException
IOException
javax.servlet.ServletException
protected String getAuthenticatedEntity(javax.servlet.http.HttpServletRequest request)
request
, or null if there is no authenticated entity.
getAuthenticatedEntity
in class AbstractBasicAuthenticationFilter
request
- Request
request
, or null if there is no authenticated entity.protected void setAuthenticatedEntity(javax.servlet.http.HttpServletRequest request, String name)
setAuthenticatedEntity
in class AbstractBasicAuthenticationFilter
request
- Requestname
- the name of the authenticated entityprotected String getEntityAttributeKey()
AbstractBasicAuthenticationFilter
getEntityAttributeKey
in class AbstractBasicAuthenticationFilter
protected String getAuthenticationErrorMessage()
AbstractBasicAuthenticationFilter
getAuthenticationErrorMessage
in class AbstractBasicAuthenticationFilter
protected String getBasicRealm()
AbstractBasicAuthenticationFilter
getBasicRealm
in class AbstractBasicAuthenticationFilter
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |