net.officefloor.plugin.web.http.security.scheme

Class BasicHttpSecuritySource

java.lang.Object

net.officefloor.plugin.web.http.security.impl.AbstractHttpSecuritySource<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies,None>

net.officefloor.plugin.web.http.security.scheme.BasicHttpSecuritySource

All Implemented Interfaces:

HttpSecuritySource<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies,None>

public class BasicHttpSecuritySource
extends AbstractHttpSecuritySource<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies,None>

HttpSecuritySource for Basic HTTP security.

Author:

Daniel Sagenschneider

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static class	BasicHttpSecuritySource.Dependencies Dependency keys.

Nested classes/interfaces inherited from class net.officefloor.plugin.web.http.security.impl.AbstractHttpSecuritySource

AbstractHttpSecuritySource.DependencyLabeller, AbstractHttpSecuritySource.Labeller, AbstractHttpSecuritySource.MetaDataContext<S,C,D extends Enum<D>,F extends Enum<F>>, AbstractHttpSecuritySource.SpecificationContext

Field Summary

Fields

Modifier and Type	Field and Description
static String	AUTHENTICATION_SCHEME_BASIC Authentication scheme Basic.
static String	PROPERTY_REALM Name of property to retrieve the realm being secured.

Constructor Summary

Constructors

Constructor and Description
BasicHttpSecuritySource()

Method Summary

Modifier and Type	Method and Description
void	authenticate(HttpAuthenticateContext<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies> context) Undertakes authentication.
void	challenge(HttpChallengeContext<BasicHttpSecuritySource.Dependencies,None> context) Triggers the authentication challenge to the client.
protected void	loadMetaData(AbstractHttpSecuritySource.MetaDataContext<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies,None> context) Overridden to load meta-data.
protected void	loadSpecification(AbstractHttpSecuritySource.SpecificationContext context) Overridden to load specifications.
void	logout(HttpLogoutContext<BasicHttpSecuritySource.Dependencies> context) Logs out.
boolean	ratify(HttpRatifyContext<HttpSecurity,Void> context) Ratifies whether enough information is available to undertake authentication.

Methods inherited from class net.officefloor.plugin.web.http.security.impl.AbstractHttpSecuritySource

getMetaData, getSpecification, init

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

AUTHENTICATION_SCHEME_BASIC

public static final String AUTHENTICATION_SCHEME_BASIC

Authentication scheme Basic.

See Also:

Constant Field Values

PROPERTY_REALM

public static final String PROPERTY_REALM

Name of property to retrieve the realm being secured.

See Also:

Constant Field Values

Constructor Detail

BasicHttpSecuritySource

public BasicHttpSecuritySource()

Method Detail

loadSpecification

protected void loadSpecification(AbstractHttpSecuritySource.SpecificationContext context)

Description copied from class: AbstractHttpSecuritySource

Overridden to load specifications.

Specified by:

loadSpecification in class AbstractHttpSecuritySource<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies,None>

Parameters:

context - Specifications.

loadMetaData

protected void loadMetaData(AbstractHttpSecuritySource.MetaDataContext<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies,None> context)
                     throws Exception

Description copied from class: AbstractHttpSecuritySource

Overridden to load meta-data.

Specified by:

loadMetaData in class AbstractHttpSecuritySource<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies,None>

Parameters:

context - Meta-data.

Throws:

Exception - If fails to load the meta-data.

ratify

public boolean ratify(HttpRatifyContext<HttpSecurity,Void> context)

Description copied from interface: HttpSecuritySource

Ratifies whether enough information is available to undertake authentication.

As authentication will likely require communication with external services (LDAP store, database, etc), this method allows checking whether enough information is available to undertake the authentication. The purpose is to avoid the Job depending on HttpAuthentication and inherit the dependencies of authentication subsequently causing execution by the authentication Team - especially as the majority of HttpRequest servicing will have the HTTP security cached in the HttpSession and not require the authentication dependencies causing the swap in Team.

Parameters:

context - HttpRatifyContext.

Returns:

true should enough information be available to undertake authentication. false if not enough information is available for authentication.

authenticate

public void authenticate(HttpAuthenticateContext<HttpSecurity,Void,BasicHttpSecuritySource.Dependencies> context)
                  throws IOException

Description copied from interface: HttpSecuritySource

Undertakes authentication.

Parameters:

context - HttpAuthenticateContext.

Throws:

IOException - If failure in communicating to necessary security services.

challenge

public void challenge(HttpChallengeContext<BasicHttpSecuritySource.Dependencies,None> context)
               throws IOException

Description copied from interface: HttpSecuritySource

Triggers the authentication challenge to the client.

Parameters:

context - HttpChallengeContext.

Throws:

IOException - If failure in communicating to necessary security services.

logout

public void logout(HttpLogoutContext<BasicHttpSecuritySource.Dependencies> context)
            throws IOException

Description copied from interface: HttpSecuritySource

Logs out.

Parameters:

context - HttpLogoutContext.

Throws:

IOException - If failure in communicating to necessary security services.