Docjar: A Java Source and Docuemnt Enginecom.*    java.*    javax.*    org.*    all    new    plug-in

Quick Search    Search Deep
Overview  Package   Class  Use  Deprecated  Index 
Home >> All >> org >> acegisecurity >> [ providers overview ]  PREV CLASS  NEXT CLASS
SUMMARY: JavaDoc of org.acegisecurity.providers.UsernamePasswordAuthenticationToken JAVADOC | Sourc code of org.acegisecurity.providers.UsernamePasswordAuthenticationToken SOURCE | Download org.acegisecurity.providers.UsernamePasswordAuthenticationToken DOWNLOAD | NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.acegisecurity.providers
Class UsernamePasswordAuthenticationToken  view UsernamePasswordAuthenticationToken download UsernamePasswordAuthenticationToken.java

java.lang.Object
  extended byorg.acegisecurity.providers.AbstractAuthenticationToken
      extended byorg.acegisecurity.providers.UsernamePasswordAuthenticationToken
All Implemented Interfaces:
org.acegisecurity.Authentication, java.security.Principal, java.io.Serializable
public class UsernamePasswordAuthenticationToken
extends AbstractAuthenticationToken

An org.acegisecurity.Authentication implementation that is designed for simple presentation of a username and password.

The principal and credentials should be set with an Object that provides the respective property via its Object.toString() method. The simplest such Object to use is String.

Version:
$Id: UsernamePasswordAuthenticationToken.java,v 1.9 2005/11/17 00:55:49 benalex Exp $

Field Summary
private  boolean authenticated
           
private  GrantedAuthority[] authorities
           
private  java.lang.Object credentials
           
private  java.lang.Object details
           
private  java.lang.Object principal
           
 
Constructor Summary
protected UsernamePasswordAuthenticationToken()
           
  UsernamePasswordAuthenticationToken(java.lang.Object principal, java.lang.Object credentials)
          This constructor can be safely used by any code that wishes to create a UsernamePasswordAuthenticationToken, as the isAuthenticated() 55 will return false.
  UsernamePasswordAuthenticationToken(java.lang.Object principal, java.lang.Object credentials, GrantedAuthority[] authorities)
          This constructor should only be used by AuthenticationManager or AuthenticationProvider implementations that are satisfied with producing a trusted (ie isAuthenticated() 55 = true) authentication token.
 
Method Summary
 GrantedAuthority[] getAuthorities()
          Set by an AuthenticationManager to indicate the authorities that the principal has been granted.
 java.lang.Object getCredentials()
          The credentials that prove the principal is correct.
 java.lang.Object getDetails()
          Usually a org.acegisecurity.ui.WebAuthenticationDetails.
 java.lang.Object getPrincipal()
          The identity of the principal being authenticated.
 boolean isAuthenticated()
          Used to indicate to AbstractSecurityInterceptor whether it should present the authentication token to the AuthenticationManager.
 void setAuthenticated(boolean isAuthenticated)
          See isAuthenticated() 55 for a full description.
 void setDetails(java.lang.Object details)
           
 
Methods inherited from class org.acegisecurity.providers.AbstractAuthenticationToken
equals, getName, toString
 
Methods inherited from class java.lang.Object
clone, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
 
Methods inherited from interface java.security.Principal
hashCode
 

Field Detail

credentials

private java.lang.Object credentials

details

private java.lang.Object details

principal

private java.lang.Object principal

authorities

private GrantedAuthority[] authorities

authenticated

private boolean authenticated
Constructor Detail

UsernamePasswordAuthenticationToken

public UsernamePasswordAuthenticationToken(java.lang.Object principal,
                                           java.lang.Object credentials)
This constructor can be safely used by any code that wishes to create a UsernamePasswordAuthenticationToken, as the isAuthenticated() 55 will return false.

UsernamePasswordAuthenticationToken

public UsernamePasswordAuthenticationToken(java.lang.Object principal,
                                           java.lang.Object credentials,
                                           GrantedAuthority[] authorities)
This constructor should only be used by AuthenticationManager or AuthenticationProvider implementations that are satisfied with producing a trusted (ie isAuthenticated() 55 = true) authentication token.

UsernamePasswordAuthenticationToken

protected UsernamePasswordAuthenticationToken()
Method Detail

setAuthenticated

public void setAuthenticated(boolean isAuthenticated)
                      throws java.lang.IllegalArgumentException
Description copied from interface: org.acegisecurity.Authentication
See Authentication.isAuthenticated()>Authentication.isAuthenticated() 55 for a full description.

Implementations should always allow this method to be called with a false parameter, as this is used by various classes to specify the authentication token should not be trusted. If an implementation wishes to reject an invocation with a true parameter (which would indicate the authentication token is trusted - a potential security risk) the implementation should throw an java.lang.IllegalArgumentException.

isAuthenticated

public boolean isAuthenticated()
Description copied from interface: org.acegisecurity.Authentication
Used to indicate to AbstractSecurityInterceptor whether it should present the authentication token to the AuthenticationManager. Typically an AuthenticationManager (or, more often, one of its AuthenticationProviders) will return an immutable authentication token after successful authentication, in which case that token can safely return true to this method. Returning true will improve performance, as calling the AuthenticationManager for every request will no longer be necessary.

For security reasons, implementations of this interface should be very careful about returning true to this method unless they are either immutable, or have some way of ensuring the properties have not been changed since original creation.

getAuthorities

public GrantedAuthority[] getAuthorities()
Description copied from interface: org.acegisecurity.Authentication
Set by an AuthenticationManager to indicate the authorities that the principal has been granted. Note that classes should not rely on this value as being valid unless it has been set by a trusted AuthenticationManager.

getCredentials

public java.lang.Object getCredentials()
Description copied from interface: org.acegisecurity.Authentication
The credentials that prove the principal is correct. This is usually a password, but could be anything relevant to the AuthenticationManager. Callers are expected to populate the credentials.

setDetails

public void setDetails(java.lang.Object details)

getDetails

public java.lang.Object getDetails()
Usually a org.acegisecurity.ui.WebAuthenticationDetails.

Specified by:
getDetails in interface org.acegisecurity.Authentication
Overrides:
getDetails in class AbstractAuthenticationToken

getPrincipal

public java.lang.Object getPrincipal()
Description copied from interface: org.acegisecurity.Authentication
The identity of the principal being authenticated. This is usually a username. Callers are expected to populate the principal.

Overview  Package   Class  Use  Deprecated  Index 
Home >> All >> org >> acegisecurity >> [ providers overview ]  PREV CLASS  NEXT CLASS
SUMMARY: JavaDoc of org.acegisecurity.providers.UsernamePasswordAuthenticationToken JAVADOC | Sourc code of org.acegisecurity.providers.UsernamePasswordAuthenticationToken SOURCE | Download org.acegisecurity.providers.UsernamePasswordAuthenticationToken DOWNLOAD | NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD