java.lang.Object
org.acegisecurity.providers.AbstractAuthenticationToken
org.acegisecurity.providers.x509.X509AuthenticationToken
- All Implemented Interfaces:
- org.acegisecurity.Authentication, java.security.Principal, java.io.Serializable
- public class X509AuthenticationToken
- extends org.acegisecurity.providers.AbstractAuthenticationToken
Authentication implementation for X.509 client-certificate authentication.
- Version:
- $Id: X509AuthenticationToken.java,v 1.5 2005/11/17 00:56:09 benalex Exp $
credentials
private java.security.cert.X509Certificate credentials
principal
private java.lang.Object principal
authorities
private GrantedAuthority[] authorities
authenticated
private boolean authenticated
details
private java.lang.Object details
X509AuthenticationToken
public X509AuthenticationToken(java.security.cert.X509Certificate credentials)
- Used for an authentication request
X509AuthenticationToken
public X509AuthenticationToken(java.lang.Object principal,
java.security.cert.X509Certificate credentials,
GrantedAuthority[] authorities)
getDetails
public java.lang.Object getDetails()
- Description copied from class:
org.acegisecurity.providers.AbstractAuthenticationToken
- Subclasses should override if they wish to provide additional details
about the authentication event.
setDetails
public void setDetails(java.lang.Object details)
setAuthenticated
public void setAuthenticated(boolean isAuthenticated)
- Description copied from interface:
org.acegisecurity.Authentication
- See Authentication.isAuthenticated()>
Authentication.isAuthenticated() 55 for a full description.
Implementations should always allow this method to be called with
a false parameter, as this is used by various classes to
specify the authentication token should not be trusted. If an
implementation wishes to reject an invocation with a true
parameter (which would indicate the authentication token is trusted - a
potential security risk) the implementation should throw an java.lang.IllegalArgumentException.
isAuthenticated
public boolean isAuthenticated()
- Description copied from interface:
org.acegisecurity.Authentication
- Used to indicate to
AbstractSecurityInterceptor whether it
should present the authentication token to the
AuthenticationManager. Typically an
AuthenticationManager (or, more often, one of its
AuthenticationProviders) will return an immutable
authentication token after successful authentication, in which case
that token can safely return true to this method.
Returning true will improve performance, as calling the
AuthenticationManager for every request will no longer be
necessary.
For security reasons, implementations of this interface should be very
careful about returning true to this method unless they
are either immutable, or have some way of ensuring the properties have
not been changed since original creation.
getAuthorities
public GrantedAuthority[] getAuthorities()
- Description copied from interface:
org.acegisecurity.Authentication
- Set by an
AuthenticationManager to indicate the authorities
that the principal has been granted. Note that classes should not rely
on this value as being valid unless it has been set by a trusted
AuthenticationManager.
getCredentials
public java.lang.Object getCredentials()
- Description copied from interface:
org.acegisecurity.Authentication
- The credentials that prove the principal is correct. This is usually a
password, but could be anything relevant to the
AuthenticationManager. Callers are expected to populate
the credentials.
getPrincipal
public java.lang.Object getPrincipal()
- Description copied from interface:
org.acegisecurity.Authentication
- The identity of the principal being authenticated. This is usually a
username. Callers are expected to populate the principal.
JAVADOC | 
SOURCE | 
DOWNLOAD | NESTED | FIELD | CONSTR | METHOD