net.officefloor.plugin.web.http.security.scheme

Class MockHttpSecuritySource

java.lang.Object

net.officefloor.plugin.web.http.security.impl.AbstractHttpSecuritySource<HttpSecurity,Void,None,None>

net.officefloor.plugin.web.http.security.scheme.MockHttpSecuritySource

All Implemented Interfaces:

HttpSecuritySource<HttpSecurity,Void,None,None>

public class MockHttpSecuritySource
extends AbstractHttpSecuritySource<HttpSecurity,Void,None,None>

Mock HttpSecuritySource to use for testing.

It provides a HttpSecurity by the following Basic authentication scheme, except that:

• authentication is obtained by username and password being the same
• the HttpSecurity is provided the username as a role (allows logging in with various roles for testing). Multiple roles can be specified by the username being a comma separate list.

Author:

Daniel Sagenschneider

Nested Class Summary

Nested classes/interfaces inherited from class net.officefloor.plugin.web.http.security.impl.AbstractHttpSecuritySource

AbstractHttpSecuritySource.DependencyLabeller, AbstractHttpSecuritySource.Labeller, AbstractHttpSecuritySource.MetaDataContext<S,C,D extends Enum<D>,F extends Enum<F>>, AbstractHttpSecuritySource.SpecificationContext

Field Summary

Fields

Modifier and Type	Field and Description
static String	AUTHENTICATION_SCHEME_MOCK Authentication scheme reported to the application via the HttpSecurity.

Constructor Summary

Constructors

Constructor and Description
MockHttpSecuritySource()

Method Summary

Modifier and Type	Method and Description
void	authenticate(HttpAuthenticateContext<HttpSecurity,Void,None> context) Undertakes authentication.
void	challenge(HttpChallengeContext<None,None> context) Triggers the authentication challenge to the client.
protected void	loadMetaData(AbstractHttpSecuritySource.MetaDataContext<HttpSecurity,Void,None,None> context) Overridden to load meta-data.
protected void	loadSpecification(AbstractHttpSecuritySource.SpecificationContext context) Overridden to load specifications.
void	logout(HttpLogoutContext<None> context) Logs out.
boolean	ratify(HttpRatifyContext<HttpSecurity,Void> context) Ratifies whether enough information is available to undertake authentication.

Methods inherited from class net.officefloor.plugin.web.http.security.impl.AbstractHttpSecuritySource

getMetaData, getSpecification, init

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

AUTHENTICATION_SCHEME_MOCK

public static final String AUTHENTICATION_SCHEME_MOCK

Authentication scheme reported to the application via the HttpSecurity.

See Also:

Constant Field Values

Constructor Detail

MockHttpSecuritySource

public MockHttpSecuritySource()

Method Detail

loadSpecification

protected void loadSpecification(AbstractHttpSecuritySource.SpecificationContext context)

Description copied from class: AbstractHttpSecuritySource

Overridden to load specifications.

Specified by:

loadSpecification in class AbstractHttpSecuritySource<HttpSecurity,Void,None,None>

Parameters:

context - Specifications.

loadMetaData

protected void loadMetaData(AbstractHttpSecuritySource.MetaDataContext<HttpSecurity,Void,None,None> context)
                     throws Exception

Description copied from class: AbstractHttpSecuritySource

Overridden to load meta-data.

Specified by:

loadMetaData in class AbstractHttpSecuritySource<HttpSecurity,Void,None,None>

Parameters:

context - Meta-data.

Throws:

Exception - If fails to load the meta-data.

ratify

public boolean ratify(HttpRatifyContext<HttpSecurity,Void> context)

Description copied from interface: HttpSecuritySource

Ratifies whether enough information is available to undertake authentication.

As authentication will likely require communication with external services (LDAP store, database, etc), this method allows checking whether enough information is available to undertake the authentication. The purpose is to avoid the Job depending on HttpAuthentication and inherit the dependencies of authentication subsequently causing execution by the authentication Team - especially as the majority of HttpRequest servicing will have the HTTP security cached in the HttpSession and not require the authentication dependencies causing the swap in Team.

Parameters:

context - HttpRatifyContext.

Returns:

true should enough information be available to undertake authentication. false if not enough information is available for authentication.

authenticate

public void authenticate(HttpAuthenticateContext<HttpSecurity,Void,None> context)
                  throws IOException

Description copied from interface: HttpSecuritySource

Undertakes authentication.

Parameters:

context - HttpAuthenticateContext.

Throws:

IOException - If failure in communicating to necessary security services.

challenge

public void challenge(HttpChallengeContext<None,None> context)
               throws IOException

Description copied from interface: HttpSecuritySource

Triggers the authentication challenge to the client.

Parameters:

context - HttpChallengeContext.

Throws:

IOException - If failure in communicating to necessary security services.

logout

public void logout(HttpLogoutContext<None> context)
            throws IOException

Description copied from interface: HttpSecuritySource

Logs out.

Parameters:

context - HttpLogoutContext.

Throws:

IOException - If failure in communicating to necessary security services.