Package com.atlassian.jira.security.login

Class SSOSeraphAuthenticator

java.lang.Object

com.atlassian.seraph.auth.AbstractAuthenticator

com.atlassian.seraph.auth.DefaultAuthenticator

com.atlassian.crowd.integration.seraph.CrowdAuthenticator

com.atlassian.jira.security.login.SSOSeraphAuthenticator

All Implemented Interfaces:

com.atlassian.seraph.auth.Authenticator, com.atlassian.seraph.Initable, Serializable

public class SSOSeraphAuthenticator
extends com.atlassian.crowd.integration.seraph.CrowdAuthenticator

Seraph Authenticator for providing single signon with Crowd.

Since:

v4.3

See Also:

• Serialized Form

Field Summary

Fields inherited from class com.atlassian.crowd.integration.seraph.CrowdAuthenticator

logger, PASSWORD_RESET_REQUIRED_HEADER

Fields inherited from class com.atlassian.seraph.auth.DefaultAuthenticator

LOGGED_IN_KEY, LOGGED_IN_USER_ID_KEY, LOGGED_OUT_KEY

Constructor Summary

Constructors

Constructor	Description
SSOSeraphAuthenticator()
SSOSeraphAuthenticator(com.atlassian.crowd.integration.http.CrowdHttpAuthenticator crowdHttpAuthenticator)

Method Summary

Modifier and Type	Method	Description
protected Principal	getUser(String username)
Principal	getUser(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
protected void	logoutUser(javax.servlet.http.HttpServletRequest request)
protected Principal	refreshPrincipalObtainedFromSession(javax.servlet.http.HttpServletRequest httpServletRequest, Principal principal)	This is called to refresh the Principal object that has been retreived from the HTTP session.

Methods inherited from class com.atlassian.crowd.integration.seraph.CrowdAuthenticator

authenticate, checkAuthenticated, checkRememberMeLoginToCrowd, fetchUserInCache, isAuthenticated, login, logout, rememberMeLoginToCrowd

Methods inherited from class com.atlassian.seraph.auth.DefaultAuthenticator

authoriseUserAndEstablishSession, getAuthType, getElevatedSecurityGuard, getLogoutInterceptors, getPrincipalFromSession, getRememberMeService, getRoleMapper, getUserFromBasicAuthentication, getUserFromCookie, getUserFromSession, init, isAuthorised, isPrincipalAlreadyInSessionContext, putPrincipalInSessionContext, removePrincipalFromSessionContext

Methods inherited from class com.atlassian.seraph.auth.AbstractAuthenticator

destroy, getConfig, getRemoteUser, getUser, login

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SSOSeraphAuthenticator

public SSOSeraphAuthenticator()

SSOSeraphAuthenticator

public SSOSeraphAuthenticator(com.atlassian.crowd.integration.http.CrowdHttpAuthenticator crowdHttpAuthenticator)

Method Details

logoutUser

protected void logoutUser(javax.servlet.http.HttpServletRequest request)

Specified by:

logoutUser in class com.atlassian.crowd.integration.seraph.CrowdAuthenticator

getUser

protected Principal getUser(String username)

Specified by:

getUser in class com.atlassian.seraph.auth.DefaultAuthenticator

getUser

public Principal getUser(javax.servlet.http.HttpServletRequest request,
 javax.servlet.http.HttpServletResponse response)

Specified by:

getUser in interface com.atlassian.seraph.auth.Authenticator

Overrides:

getUser in class com.atlassian.crowd.integration.seraph.CrowdAuthenticator

refreshPrincipalObtainedFromSession

protected Principal refreshPrincipalObtainedFromSession(javax.servlet.http.HttpServletRequest httpServletRequest,
 Principal principal)

This is called to refresh the Principal object that has been retreived from the HTTP session.

By default this will called getUser(String) again to get a fresh user.

Overrides:

refreshPrincipalObtainedFromSession in class com.atlassian.seraph.auth.DefaultAuthenticator

Parameters:

httpServletRequest - the HTTP request in play

principal - the Principal in play

Returns:

a fresh up to date principal