|Modifier and Type||Class and Description|
An extension point for the JaasProvider class that allows for custom logic for finding the current JAAS Subject, if not already available via the
|Constructor and Description|
Create a JAAS provider for authentication and authorization, using the supplied name for the login configuration.
|Modifier and Type||Method and Description|
Authenticate the user that is using the supplied credentials.
public JaasProvider(String policyName) throws LoginException
policyName- the name that will be used for the login context
LoginException- if the caller-specified
namedoes not appear in the
Configurationand there is no
Configurationentry for "other", or if the auth.login.defaultCallbackHandler security property was set, but the implementation class could not be loaded.
public ExecutionContext authenticate(Credentials credentials, String repositoryName, String workspaceName, ExecutionContext repositoryContext, Map<String,Object> sessionAttributes)
ExecutionContextthat reflects the authenticated environment, including the context's valid
security contextthat will be used for authorization throughout.
Note that each provider is handed a map into which it can place name-value pairs that will be used in the
Session attributes of the Session that results from this authentication attempt.
ModeShape will ignore any attributes if this provider does not authenticate the credentials.
credentials- the user's JCR credentials, which may be an
AnonymousCredentialsif authenticating as an anonymous user
repositoryName- the name of the JCR repository; never null
workspaceName- the name of the JCR workspace; never null
repositoryContext- the execution context of the repository, which may be wrapped by this method
sessionAttributes- the map of name-value pairs that will be placed into the
Session attributes; never null
Copyright © 2008-2014 JBoss, a division of Red Hat. All Rights Reserved.