Class J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
java.lang.Object
org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
- All Implemented Interfaces:
org.springframework.beans.factory.InitializingBean
,AuthenticationDetailsSource<jakarta.servlet.http.HttpServletRequest,
PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails>
public class J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
extends Object
implements AuthenticationDetailsSource<jakarta.servlet.http.HttpServletRequest,PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails>, org.springframework.beans.factory.InitializingBean
Implementation of AuthenticationDetailsSource which converts the user's J2EE roles (as
obtained by calling
HttpServletRequest.isUserInRole(String)
) into
GrantedAuthority
s and stores these in the authentication details object.- Since:
- 2.0
-
Field Summary
Modifier and TypeFieldDescriptionThe role attributes returned by the configuredMappableAttributesRetriever
protected Attributes2GrantedAuthoritiesMapper
protected final org.apache.commons.logging.Log
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionvoid
Check that all required properties have been set.buildDetails
(jakarta.servlet.http.HttpServletRequest context) Builds the authentication details object.protected Collection<String>
getUserRoles
(jakarta.servlet.http.HttpServletRequest request) Obtains the list of user roles based on the current user's JEE roles.void
setMappableRolesRetriever
(MappableAttributesRetriever aJ2eeMappableRolesRetriever) void
-
Field Details
-
logger
protected final org.apache.commons.logging.Log logger -
j2eeMappableRoles
The role attributes returned by the configuredMappableAttributesRetriever
-
j2eeUserRoles2GrantedAuthoritiesMapper
-
-
Constructor Details
-
J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
public J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource()
-
-
Method Details
-
afterPropertiesSet
public void afterPropertiesSet()Check that all required properties have been set.- Specified by:
afterPropertiesSet
in interfaceorg.springframework.beans.factory.InitializingBean
-
getUserRoles
Obtains the list of user roles based on the current user's JEE roles. TheHttpServletRequest.isUserInRole(String)
method is called for each of the values in thej2eeMappableRoles
set to determine if that role should be assigned to the user.- Parameters:
request
- the request which should be used to extract the user's roles.- Returns:
- The subset of
j2eeMappableRoles
which applies to the current user making the request.
-
buildDetails
public PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails buildDetails(jakarta.servlet.http.HttpServletRequest context) Builds the authentication details object.- Specified by:
buildDetails
in interfaceAuthenticationDetailsSource<jakarta.servlet.http.HttpServletRequest,
PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails> - Parameters:
context
- the request object, which may be used by the authentication details object- Returns:
- a fully-configured authentication details instance
- See Also:
-
setMappableRolesRetriever
- Parameters:
aJ2eeMappableRolesRetriever
- The MappableAttributesRetriever to use
-
setUserRoles2GrantedAuthoritiesMapper
- Parameters:
mapper
- The Attributes2GrantedAuthoritiesMapper to use
-