com.atlassian.crowd.integration.springsecurity

Class CrowdSSOAuthenticationProcessingFilter

java.lang.Object

org.springframework.web.filter.GenericFilterBean

org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter

com.atlassian.crowd.integration.springsecurity.AbstractCrowdSSOAuthenticationProcessingFilter

com.atlassian.crowd.integration.springsecurity.CrowdSSOAuthenticationProcessingFilter

All Implemented Interfaces:

javax.servlet.Filter, org.springframework.beans.factory.Aware, org.springframework.beans.factory.BeanNameAware, org.springframework.beans.factory.DisposableBean, org.springframework.beans.factory.InitializingBean, org.springframework.context.ApplicationEventPublisherAware, org.springframework.context.EnvironmentAware, org.springframework.context.MessageSourceAware, org.springframework.core.env.EnvironmentCapable, org.springframework.web.context.ServletContextAware

public class CrowdSSOAuthenticationProcessingFilter
extends AbstractCrowdSSOAuthenticationProcessingFilter

The CrowdSSOAuthenticationProcessingFilter is to be used in conjunction with the CrowdAuthenticationProvider to provide SSO authentication.

If single sign-on is not required, centralised authentication can still be achieved by using the default AuthenticationProcessingFilter in conjunction with the CrowdAuthenticationProvider.

Author:

Shihab Hamid

Field Summary

Fields inherited from class com.atlassian.crowd.integration.springsecurity.AbstractCrowdSSOAuthenticationProcessingFilter

clientProperties, tokenHelper

Fields inherited from class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter

SPRING_SECURITY_FORM_PASSWORD_KEY, SPRING_SECURITY_FORM_USERNAME_KEY

Fields inherited from class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

authenticationDetailsSource, eventPublisher, messages

Constructor Summary

Constructors

Constructor and Description
CrowdSSOAuthenticationProcessingFilter(CrowdHttpTokenHelper tokenHelper, CrowdClient crowdClient, ClientProperties clientProperties)

Method Summary

Modifier and Type	Method and Description
protected CookieConfiguration	getCookieConfiguration()
protected void	onUnsuccessfulAuthentication(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) Remove any SSO tokens associated with the request, effectively logging the user out of Crowd.
void	setHttpAuthenticator(CrowdHttpAuthenticator httpAuthenticator) Mandatory dependency.

Methods inherited from class com.atlassian.crowd.integration.springsecurity.AbstractCrowdSSOAuthenticationProcessingFilter

canUseSavedRequestToAuthenticate, doSetDetails, requiresAuthentication, setDetails, setLoginUrlAuthenticationEntryPoint, setRequestToApplicationMapper, storeTokenIfCrowd, successfulAuthentication, unsuccessfulAuthentication

Methods inherited from class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter

attemptAuthentication, getPasswordParameter, getUsernameParameter, obtainPassword, obtainUsername, setPasswordParameter, setPostOnly, setUsernameParameter

Methods inherited from class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

afterPropertiesSet, doFilter, getAllowSessionCreation, getAuthenticationManager, getFailureHandler, getRememberMeServices, getSuccessHandler, setAllowSessionCreation, setApplicationEventPublisher, setAuthenticationDetailsSource, setAuthenticationFailureHandler, setAuthenticationManager, setAuthenticationSuccessHandler, setContinueChainBeforeSuccessfulAuthentication, setFilterProcessesUrl, setMessageSource, setRememberMeServices, setRequiresAuthenticationRequestMatcher, setSessionAuthenticationStrategy

Methods inherited from class org.springframework.web.filter.GenericFilterBean

addRequiredProperty, createEnvironment, destroy, getEnvironment, getFilterConfig, getFilterName, getServletContext, init, initBeanWrapper, initFilterBean, setBeanName, setEnvironment, setServletContext

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

CrowdSSOAuthenticationProcessingFilter

public CrowdSSOAuthenticationProcessingFilter(CrowdHttpTokenHelper tokenHelper,
                                              CrowdClient crowdClient,
                                              ClientProperties clientProperties)

Method Detail

getCookieConfiguration

protected CookieConfiguration getCookieConfiguration()
                                              throws OperationFailedException,
                                                     InvalidAuthenticationException,
                                                     ApplicationPermissionException

Specified by:

getCookieConfiguration in class AbstractCrowdSSOAuthenticationProcessingFilter

Throws:

OperationFailedException

InvalidAuthenticationException

ApplicationPermissionException

onUnsuccessfulAuthentication

protected void onUnsuccessfulAuthentication(javax.servlet.http.HttpServletRequest request,
                                            javax.servlet.http.HttpServletResponse response)

Description copied from class: AbstractCrowdSSOAuthenticationProcessingFilter

Remove any SSO tokens associated with the request, effectively logging the user out of Crowd.

Specified by:

onUnsuccessfulAuthentication in class AbstractCrowdSSOAuthenticationProcessingFilter

Parameters:

request - servlet request.

response - servlet response.

setHttpAuthenticator

public void setHttpAuthenticator(CrowdHttpAuthenticator httpAuthenticator)

Mandatory dependency.

Parameters:

httpAuthenticator - used to extract validation factors, set cookies and perform logouts.