org.modeshape.jcr.security
Class SecurityContextProvider

java.lang.Object
  extended by org.modeshape.jcr.security.SecurityContextProvider
All Implemented Interfaces:
AuthenticationProvider

Deprecated. Use custom AuthenticationProvider implementations instead

@Deprecated
public class SecurityContextProvider
extends Object
implements AuthenticationProvider

An implementation of and AuthenticationProvider that checks whether the supplied credentials are SecurityContextCredentials and uses the contained SecurityContext for authentication and role-based authorization. This provider should be used with care, as it delegates authentication and authorization to the Credentials object supplied by the caller.


Constructor Summary
SecurityContextProvider()
          Deprecated.  
 
Method Summary
 ExecutionContext authenticate(Credentials credentials, String repositoryName, String workspaceName, ExecutionContext repositoryContext, Map<String,Object> sessionAttributes)
          Deprecated. Authenticate the user that is using the supplied credentials.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SecurityContextProvider

public SecurityContextProvider()
Deprecated. 
Method Detail

authenticate

public ExecutionContext authenticate(Credentials credentials,
                                     String repositoryName,
                                     String workspaceName,
                                     ExecutionContext repositoryContext,
                                     Map<String,Object> sessionAttributes)
Deprecated. 
Authenticate the user that is using the supplied credentials. If the supplied credentials are authenticated, this method should construct an ExecutionContext that reflects the authenticated environment, including the context's valid security context that will be used for authorization throughout.

Note that each provider is handed a map into which it can place name-value pairs that will be used in the Session attributes of the Session that results from this authentication attempt. ModeShape will ignore any attributes if this provider does not authenticate the credentials.

Specified by:
authenticate in interface AuthenticationProvider
Parameters:
credentials - the user's JCR credentials, which may be an AnonymousCredentials if authenticating as an anonymous user
repositoryName - the name of the JCR repository; never null
workspaceName - the name of the JCR workspace; never null
repositoryContext - the execution context of the repository, which may be wrapped by this method
sessionAttributes - the map of name-value pairs that will be placed into the Session attributes; never null
Returns:
the execution context for the authenticated user, or null if this provider could not authenticate the user
See Also:
AuthenticationProvider.authenticate(javax.jcr.Credentials, java.lang.String, java.lang.String, org.modeshape.graph.ExecutionContext, java.util.Map)


Copyright © 2008-2012 JBoss, a division of Red Hat. All Rights Reserved.