Interface AuthenticationEvaluator<T extends AbstractAuthenticationContext>
-
public interface AuthenticationEvaluator<T extends AbstractAuthenticationContext>
Evaluator which checks credentials of identity and return authenticated data about authenticated identity.- Author:
- semancik
-
-
Method Summary
All Methods Instance Methods Abstract Methods Modifier and Type Method Description org.springframework.security.authentication.UsernamePasswordAuthenticationToken
authenticate(ConnectionEnvironment connEnv, T authnCtx)
Checks credentials of identity and create token withMidPointPrincipal
of authenticated identity.<AC extends AbstractAuthenticationContext>
org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationTokenauthenticateUserPreAuthenticated(ConnectionEnvironment connEnv, AC authnCtx)
create authentication token for identity, but without checking credentials only find identity, check authorization and check required assignment@NotNull FocusType
checkCredentials(ConnectionEnvironment connEnv, T authnCtx)
Only one part of authentication - check credentials
-
-
-
Method Detail
-
authenticate
org.springframework.security.authentication.UsernamePasswordAuthenticationToken authenticate(ConnectionEnvironment connEnv, T authnCtx) throws org.springframework.security.authentication.BadCredentialsException, org.springframework.security.authentication.AuthenticationCredentialsNotFoundException, org.springframework.security.authentication.DisabledException, org.springframework.security.authentication.LockedException, org.springframework.security.authentication.CredentialsExpiredException, org.springframework.security.authentication.AuthenticationServiceException, org.springframework.security.access.AccessDeniedException, org.springframework.security.core.userdetails.UsernameNotFoundException
Checks credentials of identity and create token withMidPointPrincipal
of authenticated identity.- Parameters:
connEnv
- Properties of connection environmentauthnCtx
- Authentication context of typeAbstractAuthenticationContext
, which contains data needed for authentication of identity.- Returns:
- token with
MidPointPrincipal
- Throws:
org.springframework.security.authentication.BadCredentialsException
- when was set wrong authentication dataorg.springframework.security.authentication.AuthenticationCredentialsNotFoundException
- when object found by authentication identifier not contains credentialsorg.springframework.security.authentication.DisabledException
- when object found by authentication identifier is disabledorg.springframework.security.authentication.LockedException
- when object found by authentication identifier is lockedorg.springframework.security.authentication.CredentialsExpiredException
- when object found by authentication identifier was expired credentialsorg.springframework.security.authentication.AuthenticationServiceException
- when occur some internal server error during authenticationorg.springframework.security.access.AccessDeniedException
- when object found by authentication identifier is unauthorizedorg.springframework.security.core.userdetails.UsernameNotFoundException
- when object not found by authentication identifier
-
checkCredentials
@NotNull @NotNull FocusType checkCredentials(ConnectionEnvironment connEnv, T authnCtx) throws org.springframework.security.authentication.BadCredentialsException, org.springframework.security.authentication.AuthenticationCredentialsNotFoundException, org.springframework.security.authentication.DisabledException, org.springframework.security.authentication.LockedException, org.springframework.security.authentication.CredentialsExpiredException, org.springframework.security.authentication.AuthenticationServiceException, org.springframework.security.access.AccessDeniedException, org.springframework.security.core.userdetails.UsernameNotFoundException
Only one part of authentication - check credentials- Parameters:
connEnv
-authnCtx
-- Returns:
- focus identify by authentication context, after successfully checking
- Throws:
org.springframework.security.authentication.BadCredentialsException
org.springframework.security.authentication.AuthenticationCredentialsNotFoundException
org.springframework.security.authentication.DisabledException
org.springframework.security.authentication.LockedException
org.springframework.security.authentication.CredentialsExpiredException
org.springframework.security.authentication.AuthenticationServiceException
org.springframework.security.access.AccessDeniedException
org.springframework.security.core.userdetails.UsernameNotFoundException
-
authenticateUserPreAuthenticated
<AC extends AbstractAuthenticationContext> org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken authenticateUserPreAuthenticated(ConnectionEnvironment connEnv, AC authnCtx) throws org.springframework.security.authentication.DisabledException, org.springframework.security.authentication.AuthenticationServiceException, org.springframework.security.core.userdetails.UsernameNotFoundException
create authentication token for identity, but without checking credentials only find identity, check authorization and check required assignment- Parameters:
connEnv
-authnCtx
-- Returns:
- token with
MidPointPrincipal
- Throws:
org.springframework.security.authentication.DisabledException
- when object found by authentication identifier is disabledorg.springframework.security.authentication.AuthenticationServiceException
- when occur some internal server error during authenticationorg.springframework.security.core.userdetails.UsernameNotFoundException
- when object not found by authentication identifier
-
-