org.acegisecurity.providers.AbstractAuthenticationToken
org.acegisecurity.providers.TestingAuthenticationToken
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Object
public class TestingAuthenticationToken
An Authentication implementation that is
designed for use whilst unit testing.
The corresponding authentication provider is TestingAuthenticationProvider.
| Constructor Summary | |
|---|---|
protected |
TestingAuthenticationToken()
|
|
TestingAuthenticationToken(Object principal,
Object credentials,
GrantedAuthority[] authorities)
|
| Method Summary | |
|---|---|
GrantedAuthority[] |
getAuthorities()
Set by an AuthenticationManager to indicate the authorities
that the principal has been granted. |
Object |
getCredentials()
The credentials that prove the principal is correct. |
Object |
getPrincipal()
The identity of the principal being authenticated. |
boolean |
isAuthenticated()
Used to indicate to AbstractSecurityInterceptor whether it
should present the authentication token to the
AuthenticationManager. |
void |
setAuthenticated(boolean isAuthenticated)
See Authentication.isAuthenticated() for a full description. |
| Methods inherited from class org.acegisecurity.providers.AbstractAuthenticationToken |
|---|
equals, getDetails, getName, toString |
| Methods inherited from class java.lang.Object |
|---|
clone, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait |
| Methods inherited from interface java.security.Principal |
|---|
hashCode |
| Constructor Detail |
|---|
public TestingAuthenticationToken(Object principal,
Object credentials,
GrantedAuthority[] authorities)
protected TestingAuthenticationToken()
| Method Detail |
|---|
public void setAuthenticated(boolean isAuthenticated)
AuthenticationAuthentication.isAuthenticated() for a full description.
Implementations should always allow this method to be called with
a false parameter, as this is used by various classes to
specify the authentication token should not be trusted. If an
implementation wishes to reject an invocation with a true
parameter (which would indicate the authentication token is trusted - a
potential security risk) the implementation should throw an IllegalArgumentException.
isAuthenticated - true if the token should be trusted
(which may result in an exception) or false if the
token should not be trustedpublic boolean isAuthenticated()
AuthenticationAbstractSecurityInterceptor whether it
should present the authentication token to the
AuthenticationManager. Typically an
AuthenticationManager (or, more often, one of its
AuthenticationProviders) will return an immutable
authentication token after successful authentication, in which case
that token can safely return true to this method.
Returning true will improve performance, as calling the
AuthenticationManager for every request will no longer be
necessary.
For security reasons, implementations of this interface should be very
careful about returning true to this method unless they
are either immutable, or have some way of ensuring the properties have
not been changed since original creation.
AbstractSecurityInterceptor does not need to
represent the token for re-authentication to the
AuthenticationManagerpublic GrantedAuthority[] getAuthorities()
AuthenticationAuthenticationManager to indicate the authorities
that the principal has been granted. Note that classes should not rely
on this value as being valid unless it has been set by a trusted
AuthenticationManager.
null
if authentication has not been completedpublic Object getCredentials()
AuthenticationAuthenticationManager. Callers are expected to populate
the credentials.
Principalpublic Object getPrincipal()
Authentication
Principal being authenticated
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||