org.jboss.axis.security.servlet
Class ServletSecurityProvider
java.lang.Object
org.jboss.axis.security.servlet.ServletSecurityProvider
- All Implemented Interfaces:
- SecurityProvider (src)
- public class ServletSecurityProvider
- extends java.lang.Object
- implements SecurityProvider (src)
A ServletSecurityProvider, combined with the ServletAuthenticatedUser
class, allows the standard servlet security mechanisms (isUserInRole(),
etc.) to integrate with Axis' access control mechanism.
By utilizing this class (which the AxisServlet can be configured to
do automatically), authentication and role information will come from
your servlet engine.
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
ServletSecurityProvider
public ServletSecurityProvider()
authenticate
public AuthenticatedUser (src) authenticate(MessageContext (src) msgContext)
- Authenticate a user from a username/password pair.
- Specified by:
authenticate in interface SecurityProvider (src)
- Parameters:
msgContext - the MessageContext containing authentication info
- Returns:
- an AuthenticatedUser or null
userMatches
public boolean userMatches(AuthenticatedUser (src) user,
java.lang.String principal)
- See if a user matches a principal name. The name might be a user
or a group.
- Specified by:
userMatches in interface SecurityProvider (src)
- Returns:
- true if the user matches the passed name