Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

com.atlassian.jira.security.login
Class JiraOsUserAuthenticator

java.lang.Object
  extended by com.atlassian.seraph.auth.AbstractAuthenticator
      extended by com.atlassian.seraph.auth.DefaultAuthenticator
          extended by com.atlassian.jira.security.login.JiraOsUserAuthenticator
All Implemented Interfaces:
com.atlassian.seraph.auth.Authenticator, com.atlassian.seraph.Initable, java.io.Serializable
public class JiraOsUserAuthenticator
extends com.atlassian.seraph.auth.DefaultAuthenticator

A simple wrapper over Seraphs DefaultAuthenticator that allows us to jump in on certain events. It uses OSUsers authentication mechanisms

Since:
v4.0.1
See Also:
Serialized Form

Field Summary
 
Fields inherited from class com.atlassian.seraph.auth.DefaultAuthenticator
LOGGED_IN_KEY, LOGGED_OUT_KEY
 
Fields inherited from interface com.atlassian.seraph.auth.Authenticator
DEFAULT_AUTHENTICATOR
 
Constructor Summary
JiraOsUserAuthenticator()
           
 
Method Summary
protected  boolean authenticate(java.security.Principal user, java.lang.String password)
          This is called by Seraph to authenticate the Principal which will in fact be a User object.
 
Methods inherited from class com.atlassian.seraph.auth.DefaultAuthenticator
authoriseUserAndEstablishSession, getAuthType, getElevatedSecurityGuard, getLogoutInterceptors, getRememberMeService, getRoleMapper, getUser, getUser, getUserFromBasicAuthentication, getUserFromCookie, getUserFromSession, init, isAuthorised, isPrincipalAlreadyInSessionContext, isUserInRole, login, logout, putPrincipalInSessionContext, removePrincipalFromSessionContext
 
Methods inherited from class com.atlassian.seraph.auth.AbstractAuthenticator
destroy, getConfig, getRemoteUser, getUser, login
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

JiraOsUserAuthenticator

public JiraOsUserAuthenticator()
Method Detail

authenticate

protected boolean authenticate(java.security.Principal user,
                               java.lang.String password)
This is called by Seraph to authenticate the Principal which will in fact be a User object.

If the user is authenticated, they still need to be authorised and Seraph will make a call to JiraRoleMapper.canLogin(java.security.Principal, javax.servlet.http.HttpServletRequest) and hence to LoginManager.authorise(com.opensymphony.user.User, javax.servlet.http.HttpServletRequest)

It is that step that authorised the user for access to JIRA

Overrides:
authenticate in class com.atlassian.seraph.auth.DefaultAuthenticator
Parameters:
user - the user in play
password - the password to authenticate
Returns:
true if the user can authenticate
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2002-2011 Atlassian. All Rights Reserved.