Docjar: A Java Source and Docuemnt Enginecom.*    java.*    javax.*    org.*    all    new    plug-in

Quick Search    Search Deep

Page 1   2  
org.acegisecurity.acl.* (21)org.acegisecurity.adapters.* (13)
org.acegisecurity.afterinvocation.* (4)  
org.acegisecurity.captcha.* (10)  
org.acegisecurity.event.* (21)org.acegisecurity.intercept.* (23)
org.acegisecurity.providers.* (65)org.acegisecurity.runas.* (4)

org.acegisecurity: Javadoc index of package org.acegisecurity.


Package Samples:

org.acegisecurity.providers.cas.ticketvalidator: An authentication provider that can process Yale Central Authentication Service (CAS) service tickets and proxy tickets.  
org.acegisecurity.providers.cas.populator: An authentication provider that can process Yale Central Authentication Service (CAS) service tickets and proxy tickets.  
org.acegisecurity.intercept.method.aopalliance: Provides support objects for securing Java method invocations via different AOP libraries.  
org.acegisecurity.adapters.resin: Allows external containers to obtain authentication information from the system.  
org.acegisecurity.adapters.jboss: Allows external containers to obtain authentication information from the system.  
org.acegisecurity.adapters.cas: Allows external containers to obtain authentication information from the system.  
org.acegisecurity.acl.basic: Enables retrieval of access control lists (ACLs) for domain object instances.  
org.acegisecurity.intercept.method: Actually enforces the security and ties the whole security system together.  
org.acegisecurity.captcha: Provides core Acegi Security System for Spring interfaces and classes.  
org.acegisecurity.acl: Provides core Acegi Security System for Spring interfaces and classes.  
org.acegisecurity.providers.x509.cache: Implements a provider-based approach to authentication decisions.  
org.acegisecurity.providers.rcp: Implements a provider-based approach to authentication decisions.  
org.acegisecurity.providers.dao.salt: An authentication provider that relies upon a data access object.  
org.acegisecurity.providers.dao.cache: An authentication provider that relies upon a data access object.  
org.acegisecurity.providers.anonymous: Implements a provider-based approach to authentication decisions.  
org.acegisecurity.acl.basic.jdbc: Access control list implementation based on integer bit masks.  
org.acegisecurity.acl.basic.cache: Access control list implementation based on integer bit masks.  
org.acegisecurity.providers.jaas.event: An authentication provider for JAAS.  
org.acegisecurity.runas
org.acegisecurity.providers.x509

Classes:

JaasAuthenticationProvider: An org.acegisecurity.providers.AuthenticationProvider implementation that retrieves user details from a JAAS login configuration. This AuthenticationProvider is capable of validating org.acegisecurity.providers.UsernamePasswordAuthenticationToken requests contain the correct username and password. This implementation is backed by a JAAS configuration. The loginConfig property must be set to a given JAAS configuration file. This setter accepts a Spring org.springframework.core.io.Resource instance. It should point to a JAAS configuration file containing an index matching the loginContextName 55 ...
BasicAclEntryVoter: Given a domain object instance passed as a method argument, ensures the principal has appropriate permission as defined by the org.acegisecurity.acl.AclManager . The AclManager is used to retrieve the access control list (ACL) permissions associated with a domain object instance for the current Authentication object. This class is designed to process org.acegisecurity.acl.AclEntry s that are subclasses of org.acegisecurity.acl.basic.BasicAclEntry only. Generally these are obtained by using the org.acegisecurity.acl.basic.BasicAclProvider . The voter will vote if any ConfigAttribute#getAttribute() ...
AbstractSecurityInterceptor: Abstract class that implements security interception for secure objects. The AbstractSecurityInterceptor will ensure the proper startup configuration of the security interceptor. It will also implement the proper handling of secure object invocations, being: Obtain the org.acegisecurity.Authentication object from the SecurityContextHolder . Determine if the request relates to a secured or public invocation by looking up the secure object request against the ObjectDefinitionSource . For an invocation that is secured (there is a ConfigAttributeDefinition for the secure object invocation): If either ...
AbstractAclVoter: Given a domain object instance passed as a method argument, ensures the principal has appropriate permission as defined by the org.acegisecurity.acl.AclManager . The AclManager is used to retrieve the access control list (ACL) permissions associated with a domain object instance for the current Authentication object. This class is designed to process org.acegisecurity.acl.AclEntry s that are subclasses of org.acegisecurity.acl.basic.BasicAclEntry only. Generally these are obtained by using the org.acegisecurity.acl.basic.BasicAclProvider . The voter will vote if any ConfigAttribute#getAttribute() ...
AbstractProcessingFilter: Abstract processor of browser-based HTTP-based authentication requests. This filter is responsible for processing authentication requests. If authentication is successful, the resulting org.acegisecurity.Authentication object will be placed into the SecurityContext , which is guaranteed to have already been created by an earlier filter. If authentication fails, the AuthenticationException will be placed into the HttpSession with the attribute defined by ACEGI_SECURITY_LAST_EXCEPTION_KEY 55 . To use this filter, it is necessary to specify the following properties: defaultTargetUrl indicates the ...
FilterChainProxy: Delegates Filter requests to a list of Spring-managed beans. The FilterChainProxy is loaded via a standard FilterToBeanProxy declaration in web.xml . FilterChainProxy will then pass init(FilterConfig) 55 , destroy() 55 , #doInit() and doFilter(ServletRequest, ServletResponse, FilterChain) 55 invocations through to each Filter defined against FilterChainProxy . FilterChainProxy is configured using a standard org.acegisecurity.intercept.web.FilterInvocationDefinitionSource . Each possible URI pattern that FilterChainProxy should service must be entered. The first matching URI pattern located by FilterInvocationDefinitionSource ...
BasicAclEntryAfterInvocationCollectionFilteringProvider: Given a Collection of domain object instances returned from a secure object invocation, remove any Collection elements the principal does not have appropriate permission to access as defined by the org.acegisecurity.acl.AclManager . The AclManager is used to retrieve the access control list (ACL) permissions associated with each Collection domain object instance element for the current Authentication object. This class is designed to process org.acegisecurity.acl.AclEntry s that are subclasses of org.acegisecurity.acl.basic.BasicAclEntry only. Generally these are obtained by using the org.acegisecurity.acl.basic.BasicAclProvider ...
FilterToBeanProxy: Delegates Filter requests to a Spring-managed bean. This class acts as a proxy on behalf of a target Filter that is defined in the Spring bean context. It is necessary to specify which target Filter should be proxied as a filter initialization parameter. On filter initialisation, the class will use Spring's WebApplicationContextUtils.getWebApplicationContext(ServletContext sc) > WebApplicationContextUtils.getWebApplicationContext(ServletContext sc) 55 method to obtain an ApplicationContext instance. It will expect to find the target Filter in this ApplicationContext . To use this filter, it is ...
TokenBasedRememberMeServices: Identifies previously remembered users by a Base-64 encoded cookie. This implementation does not rely on an external database, so is attractive for simple applications. The cookie will be valid for a specific period from the date of the last loginSuccess(HttpServletRequest, HttpServletResponse, Authentication) 55 . As per the interface contract, this method will only be called when the principal completes a successful interactive authentication. As such the time period commences from the last authentication attempt where they furnished credentials - not the time period they last logged in via remember-me. ...
BasicAclEntryAfterInvocationProvider: Given a domain object instance returned from a secure object invocation, ensures the principal has appropriate permission as defined by the org.acegisecurity.acl.AclManager . The AclManager is used to retrieve the access control list (ACL) permissions associated with a domain object instance for the current Authentication object. This class is designed to process org.acegisecurity.acl.AclEntry s that are subclasses of org.acegisecurity.acl.basic.BasicAclEntry only. Generally these are obtained by using the org.acegisecurity.acl.basic.BasicAclProvider . This after invocation provider will fire if ...
CaptchaEntryPoint: The captcha entry point : redirect to the captcha test page. This entry point can force the use of SSL : see getForceHttps() 55 This entry point allows internal OR external redirect : see setOutsideWebApp(boolean) 55 / Original request can be added to the redirect path using a custom translation : see setIncludeOriginalRequest(boolean) 55 Original request is translated using URLEncoding and the following translation mapping in the redirect url : original url => getOriginalRequestUrlParameterName() 55 If isIncludeOriginalParameters() 55 original method => getOriginalRequestMethodParameterName() ...
SecurityEnforcementFilter: Wraps requests to the FilterSecurityInterceptor . This filter is necessary because it provides the bridge between incoming requests and the FilterSecurityInterceptor instance. If an org.acegisecurity.AuthenticationException is detected, the filter will launch the authenticationEntryPoint . This allows common handling of authentication failures originating from any subclass of org.acegisecurity.intercept.AbstractSecurityInterceptor . If an org.acegisecurity.AccessDeniedException is detected, the filter will determine whether or not the user is an anonymous user. If they are an anonymous user, the ...
AbstractUserDetailsAuthenticationProvider: A base org.acegisecurity.providers.AuthenticationProvider that allows subclasses to override and work with org.acegisecurity.userdetails.UserDetails objects. The class is designed to respond to org.acegisecurity.providers.UsernamePasswordAuthenticationToken authentication requests. Upon successful validation, a UsernamePasswordAuthenticationToken will be created and returned to the caller. The token will include as its principal either a String representation of the username, or the org.acegisecurity.userdetails.UserDetails that was returned from the authentication repository. Using String is appropriate ...
ProviderManager: Iterates an org.acegisecurity.Authentication request through a list of AuthenticationProvider s. Can optionally be configured with a ConcurrentSessionController to limit the number of sessions a user can have. AuthenticationProvider s are tried in order until one provides a non-null response. A non-null response indicates the provider had authority to decide on the authentication request and no further providers are tried. If an AuthenticationException is thrown by a provider, it is retained until subsequent providers are tried. If a subsequent provider successfully authenticates the request, the ...
BasicProcessingFilter: Processes a HTTP request's BASIC authorization headers, putting the result into the SecurityContextHolder . For a detailed background on what this filter is designed to process, refer to RFC 1945, Section 11.1 . Any realm name presented in the HTTP request is ignored. In summary, this filter is responsible for processing any request that has a HTTP request header of Authorization with an authentication scheme of Basic and a Base64-encoded username:password token. For example, to authenticate user "Aladdin" with password "open sesame" the following header would be presented: Authorization: Basic ...
BasicAclProvider: Retrieves access control lists (ACL) entries for domain object instances from a data access object (DAO). This implementation will provide ACL lookup services for any object that it can determine the AclObjectIdentity for by calling the obtainIdentity(Object) 55 method. Subclasses can override this method if they only want the BasicAclProvider responding to particular domain object instances. BasicAclProvider will walk an inheritance hierarchy if a BasicAclEntry returned by the DAO indicates it has a parent. NB: inheritance occurs at a domain instance object level. It does not occur at an ACL recipient ...
DigestProcessingFilter: Processes a HTTP request's Digest authorization headers, putting the result into the SecurityContextHolder . For a detailed background on what this filter is designed to process, refer to RFC 2617 (which superseded RFC 2069, although this filter support clients that implement either RFC 2617 or RFC 2069). This filter can be used to provide Digest authentication services to both remoting protocol clients (such as Hessian and SOAP) as well as standard user agents (such as Internet Explorer and FireFox). This Digest implementation has been designed to avoid needing to store session state between invocations. ...
SwitchUserProcessingFilter: Switch User processing filter responsible for user context switching. This filter is similar to Unix 'su' however for Acegi-managed web applications. A common use-case for this feature is the ability to allow higher-authority users (i.e. ROLE_ADMIN) to switch to a regular user (i.e. ROLE_USER). This filter assumes that the user performing the switch will be required to be logged in as normal (i.e. ROLE_ADMIN user). The user will then access a page/controller that enables the administrator to specify who they wish to become (see switchUserUrl ). Note: This URL will be required to have to appropriate ...
RunAsManager: Creates a new temporary Authentication object for the current secure object invocation only. This interface permits implementations to replace the Authentication object that applies to the current secure object invocation only. The org.acegisecurity.intercept.AbstractSecurityInterceptor will replace the Authentication object held in the SecurityContext for the duration of the secure object callback only, returning it to the original Authentication object when the callback ends. This is provided so that systems with two layers of objects can be established. One layer is public facing and has normal ...
RunAsManagerImpl: Basic concrete implementation of a org.acegisecurity.RunAsManager . Is activated if any ConfigAttribute#getAttribute() is prefixed with RUN_AS_ . If found, it generates a new RunAsUserToken containing the same principal, credentials and granted authorities as the original org.acegisecurity.Authentication object, along with GrantedAuthorityImpl s for each RUN_AS_ indicated. The created GrantedAuthorityImpl s will be prefixed with a special prefix indicating that it is a role (default prefix value is ROLE_ ), and then the remainder of the RUN_AS_ keyword. For example, RUN_AS_FOO will result in the ...
StatelessTicketCache: Caches CAS service tickets and CAS proxy tickets for stateless connections. When a service ticket or proxy ticket is validated against the CAS server, it is unable to be used again. Most types of callers are stateful and are associated with a given HttpSession . This allows the affirmative CAS validation outcome to be stored in the HttpSession , meaning the removal of the ticket from the CAS server is not an issue. Stateless callers, such as remoting protocols, cannot take advantage of HttpSession . If the stateless caller is located a significant network distance from the CAS server, acquiring ...
CasPasswordHandlerProxy: Enables CAS to use the Acegi Security System for authentication. This class works along with CasPasswordHandler to enable users to easily migrate from stand-alone Acegi Security System deployments to enterprise-wide CAS deployments. It should be noted that the Acegi Security System will operate as a CAS client irrespective of the PasswordHandler used on the CAS server. In other words, this class need not be used on the CAS server if not desired. It exists solely for the convenience of users wishing have CAS delegate to an Acegi Security System-based AuthenticationManager . This class works requires ...
GrantedAuthorityEffectiveAclsResolver: Simple implementation of EffectiveAclsResolver . This implementation does not need to understand the "recipient" types presented in a BasicAclEntry because it merely delegates to the detected Authentication.getPrincipal() > Authentication.getPrincipal() 55 or Authentication.getAuthorities() > Authentication.getAuthorities() 55 . The principal object or granted authorities object has its Object.equals(recipient) method called to make the decision as to whether the recipient in the BasicAclEntry is the same as the principal or granted authority. This class should prove an adequate ACLs resolver if ...
SiteminderAuthenticationProcessingFilter: Extends Acegi's AuthenticationProcessingFilter to pick up Netegrity Siteminder's headers. Also provides a backup form-based authentication and the ability set source key names. Siteminder must present two headers to this filter, a username and password. You must set the header keys before this filter is used for authentication, otherwise Siteminder checks will be skipped. If the Siteminder check is unsuccessful (i.e. if the headers are not found), then the form parameters will be checked (see next paragraph). This allows applications to optionally function even when their Siteminder infrastructure ...
RememberMeProcessingFilter: Detects if there is no Authentication object in the SecurityContext , and populates it with a remember-me authentication token if a RememberMeServices implementation so requests. Concrete RememberMeServices implementations will have their RememberMeServices.autoLogin(HttpServletRequest, HttpServletResponse) 55 method called by this filter. The Authentication or null returned by that method will be placed into the SecurityContext . If authentication is successful, an org.acegisecurity.event.authentication.InteractiveAuthenticationSuccessEvent will be published to the application context. No events ...

Home | Contact Us | Privacy Policy | Terms of Service