Class JiraSeraphAuthenticator

java.lang.Object
com.atlassian.seraph.auth.AbstractAuthenticator
com.atlassian.seraph.auth.DefaultAuthenticator
com.atlassian.jira.security.login.JiraSeraphAuthenticator
All Implemented Interfaces:
com.atlassian.seraph.auth.Authenticator, com.atlassian.seraph.Initable, Serializable

public class JiraSeraphAuthenticator extends com.atlassian.seraph.auth.DefaultAuthenticator
JIRA's standard implementation of Seraph's Authenticator interface.

It uses Crowd Embedded to implement the abstract methods of Seraph's default base implementation.

Since:
v4.3
See Also:
  • Field Summary

    Fields inherited from class com.atlassian.seraph.auth.DefaultAuthenticator

    LOGGED_IN_KEY, LOGGED_IN_USER_ID_KEY, LOGGED_OUT_KEY
  • Constructor Summary

    Constructors
    Constructor
    Description
     
  • Method Summary

    Modifier and Type
    Method
    Description
    protected boolean
    authenticate(Principal user, String password)
     
    protected Principal
    getUser(String username)
     
    protected Principal
    getUserFromBasicAuthentication(javax.servlet.http.HttpServletRequest httpServletRequest, javax.servlet.http.HttpServletResponse httpServletResponse)
     
    protected Principal
    refreshPrincipalObtainedFromSession(javax.servlet.http.HttpServletRequest httpServletRequest, Principal principal)
    This is called to refresh the Principal object that has been retreived from the HTTP session.

    Methods inherited from class com.atlassian.seraph.auth.DefaultAuthenticator

    authoriseUserAndEstablishSession, getAuthType, getElevatedSecurityGuard, getLogoutInterceptors, getPrincipalFromSession, getRememberMeService, getRoleMapper, getUser, getUserFromCookie, getUserFromSession, init, isAuthorised, isPrincipalAlreadyInSessionContext, login, logout, putPrincipalInSessionContext, removePrincipalFromSessionContext

    Methods inherited from class com.atlassian.seraph.auth.AbstractAuthenticator

    destroy, getConfig, getRemoteUser, getUser, login

    Methods inherited from class java.lang.Object

    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
  • Constructor Details

    • JiraSeraphAuthenticator

      public JiraSeraphAuthenticator()
  • Method Details

    • getUser

      protected Principal getUser(String username)
      Specified by:
      getUser in class com.atlassian.seraph.auth.DefaultAuthenticator
    • authenticate

      protected boolean authenticate(Principal user, String password) throws com.atlassian.seraph.auth.AuthenticatorException
      Specified by:
      authenticate in class com.atlassian.seraph.auth.DefaultAuthenticator
      Throws:
      com.atlassian.seraph.auth.AuthenticatorException
    • refreshPrincipalObtainedFromSession

      protected Principal refreshPrincipalObtainedFromSession(javax.servlet.http.HttpServletRequest httpServletRequest, Principal principal)
      This is called to refresh the Principal object that has been retreived from the HTTP session.

      By default this will called getUser(String) again to get a fresh user.

      Overrides:
      refreshPrincipalObtainedFromSession in class com.atlassian.seraph.auth.DefaultAuthenticator
      Parameters:
      httpServletRequest - the HTTP request in play
      principal - the Principal in play
      Returns:
      a fresh up to date principal
    • getUserFromBasicAuthentication

      protected Principal getUserFromBasicAuthentication(javax.servlet.http.HttpServletRequest httpServletRequest, javax.servlet.http.HttpServletResponse httpServletResponse)
      Overrides:
      getUserFromBasicAuthentication in class com.atlassian.seraph.auth.DefaultAuthenticator