|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.alfresco.repo.webdav.auth.BaseAuthenticationFilter
org.alfresco.repo.webdav.auth.BaseSSOAuthenticationFilter
public abstract class BaseSSOAuthenticationFilter
Base class with common code and initialisation for single signon authentication filters.
Field Summary | |
---|---|
protected org.alfresco.repo.security.authentication.AuthenticationComponent |
authenticationComponent
|
protected static java.lang.String |
NO_AUTH_REQUIRED
|
Fields inherited from class org.alfresco.repo.webdav.auth.BaseAuthenticationFilter |
---|
ARG_TICKET, AUTHENTICATION_USER, authenticationService, nodeService, personService, transactionService |
Constructor Summary | |
---|---|
BaseSSOAuthenticationFilter()
|
Method Summary | |
---|---|
void |
afterPropertiesSet()
|
protected boolean |
allowsTicketLogons()
Check if ticket based logons are allowed |
protected boolean |
checkForTicketParameter(javax.servlet.ServletContext servletContext,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse resp)
Check if the request has specified a ticket parameter to bypass the standard authentication. |
protected SessionUser |
createUserEnvironment(javax.servlet.http.HttpSession session,
java.lang.String userName)
Callback to create the User environment as appropriate for a filter impl |
protected java.lang.String |
getLoginPage()
Return the login page address |
protected org.alfresco.jlan.server.config.SecurityConfigSection |
getSecurityConfigSection()
|
protected java.lang.String |
getServerName()
Because the file server configuration may change during the lifetime of this filter, this method checks against the last configured server name before returning a cached result |
protected boolean |
hasLoginPage()
Determine if the login page is available |
protected void |
init()
Initializes the filter. |
boolean |
isActive()
|
protected boolean |
isNTLMSSPBlob(byte[] byts,
int offset)
Check if a security blob starts with the NTLMSSP signature |
protected java.lang.String |
mapClientAddressToDomain(java.lang.String clientIP)
Map a client IP address to a domain |
protected boolean |
onLoginComplete(javax.servlet.ServletContext sc,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse res,
boolean userInit)
Callback executed on completion of NTLM login |
protected void |
onValidate(javax.servlet.ServletContext sc,
javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse res)
Callback executed on successful ticket validation during Type3 Message processing. |
protected void |
onValidateFailed(javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse res,
javax.servlet.http.HttpSession session)
Callback executed on failed authentication of a user ticket during Type3 Message processing |
protected void |
redirectToLoginPage(javax.servlet.http.HttpServletRequest req,
javax.servlet.http.HttpServletResponse res)
Redirect to the login page |
void |
setActive(boolean active)
Activates or deactivates the bean |
void |
setAuthenticationComponent(org.alfresco.repo.security.authentication.AuthenticationComponent authenticationComponent)
|
protected void |
setLoginPage(java.lang.String loginPage)
Set the login page address |
void |
setServerConfiguration(org.alfresco.filesys.ExtendedServerConfigurationAccessor serverConfiguration)
|
protected void |
setTicketLogons(boolean ticketsAllowed)
Set the ticket based logons allowed flag |
Methods inherited from class org.alfresco.repo.webdav.auth.BaseAuthenticationFilter |
---|
createUserEnvironment, createUserObject, doInSystemTransaction, getLogger, getSessionUser, getUserAttributeName, handleLoginForm, invalidateSession, setAuthenticationService, setNodeService, setPersonService, setTransactionService, setUserAttributeName |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Methods inherited from interface org.alfresco.repo.web.filter.beans.DependencyInjectedFilter |
---|
doFilter |
Field Detail |
---|
protected static final java.lang.String NO_AUTH_REQUIRED
protected org.alfresco.repo.security.authentication.AuthenticationComponent authenticationComponent
Constructor Detail |
---|
public BaseSSOAuthenticationFilter()
Method Detail |
---|
public void setServerConfiguration(org.alfresco.filesys.ExtendedServerConfigurationAccessor serverConfiguration)
serverConfiguration
- the serverConfiguration to setpublic void setAuthenticationComponent(org.alfresco.repo.security.authentication.AuthenticationComponent authenticationComponent)
authenticationComponent
- the authenticationComponent to setpublic final void setActive(boolean active)
active
- true
if the bean is active and initialization should completepublic final boolean isActive()
isActive
in interface org.alfresco.repo.management.subsystems.ActivateableBean
public final void afterPropertiesSet() throws javax.servlet.ServletException
afterPropertiesSet
in interface org.springframework.beans.factory.InitializingBean
javax.servlet.ServletException
protected void init() throws javax.servlet.ServletException
BaseSSOAuthenticationFilter.isActive()
. Subclasses
should override.
javax.servlet.ServletException
protected SessionUser createUserEnvironment(javax.servlet.http.HttpSession session, java.lang.String userName) throws java.io.IOException, javax.servlet.ServletException
session
- HttpSessionuserName
- String
java.io.IOException
javax.servlet.ServletException
protected void onValidate(javax.servlet.ServletContext sc, javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse res)
sc
- the servlet contextreq
- the requestres
- the responseprotected void onValidateFailed(javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse res, javax.servlet.http.HttpSession session) throws java.io.IOException
req
- HttpServletRequestres
- HttpServletResponsesession
- HttpSession
java.io.IOException
protected boolean onLoginComplete(javax.servlet.ServletContext sc, javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse res, boolean userInit) throws java.io.IOException
req
- HttpServletRequestres
- HttpServletResponse
java.io.IOException
protected final java.lang.String mapClientAddressToDomain(java.lang.String clientIP)
clientIP
- String
protected boolean checkForTicketParameter(javax.servlet.ServletContext servletContext, javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse resp)
servletContext
- the servlet contextreq
- the requestresp
- the response
protected void redirectToLoginPage(javax.servlet.http.HttpServletRequest req, javax.servlet.http.HttpServletResponse res) throws java.io.IOException
req
- HttpServletRequestreq
- HttpServletResponse
java.io.IOException
protected final boolean hasLoginPage()
protected final java.lang.String getLoginPage()
protected final void setLoginPage(java.lang.String loginPage)
loginPage
- Stringprotected final boolean allowsTicketLogons()
protected final void setTicketLogons(boolean ticketsAllowed)
ticketsAllowed
- booleanprotected final boolean isNTLMSSPBlob(byte[] byts, int offset)
byts
- byte[]offset
- int
protected java.lang.String getServerName()
protected org.alfresco.jlan.server.config.SecurityConfigSection getSecurityConfigSection()
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |