Package org.springframework.security.web.authentication.preauth.j2ee

package org.springframework.security.web.authentication.preauth.j2ee

Pre-authentication support for container-authenticated requests.

It is assumed that standard JEE security has been configured and Spring Security hooks into the security methods exposed by HttpServletRequest to build Authentication object for the user.

Related Packages

Package	Description
org.springframework.security.web.authentication.preauth	Support for "pre-authenticated" scenarios, where Spring Security assumes the incoming request has already been authenticated by some externally configured system.
org.springframework.security.web.authentication.preauth.websphere	Websphere-specific pre-authentication classes.
org.springframework.security.web.authentication.preauth.x509	X.509 client certificate authentication support.

Classes

Class	Description
J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource	Implementation of AuthenticationDetailsSource which converts the user's J2EE roles (as obtained by calling HttpServletRequest.isUserInRole(String)) into GrantedAuthoritys and stores these in the authentication details object.
J2eePreAuthenticatedProcessingFilter	This AbstractPreAuthenticatedProcessingFilter implementation is based on the J2EE container-based authentication mechanism.
WebXmlMappableAttributesRetriever	This MappableAttributesRetriever implementation reads the list of defined J2EE roles from a web.xml file and returns these from { WebXmlMappableAttributesRetriever.getMappableAttributes().