org.jasig.portal.security.provider
Class TrustSecurityContext

java.lang.Object
  org.jasig.portal.security.provider.ChainingSecurityContext
      org.jasig.portal.security.provider.TrustSecurityContext

All Implemented Interfaces:

java.io.Serializable, ISecurityContext

 class TrustSecurityContext
extends ChainingSecurityContext
implements ISecurityContext

This is an implementation of a SecurityContext that merely checks to see if the user exists in the UP_USERS database table but otherwise presumes to be pre-authenticated by the context from which it is called. The typical system where this might be used is a portal whose main page is protected by HTTP authentication (BASIC or otherwise).

Version:

$Revision: 1.21 $

Author:

Andrew Newman, newman@yale.edu

Nested Class Summary

Nested classes/interfaces inherited from class org.jasig.portal.security.provider.ChainingSecurityContext

ChainingSecurityContext.ChainingAdditionalDescriptor, ChainingSecurityContext.ChainingOpaqueCredentials, ChainingSecurityContext.ChainingPrincipal

Field Summary

private static org.apache.commons.logging.Log	log
private int	TRUSTSECURITYAUTHTYPE

Fields inherited from class org.jasig.portal.security.provider.ChainingSecurityContext

isauth, myAdditionalDescriptor, myOpaqueCredentials, myOrder, myPrincipal, mySubContexts, stopWhenAuthenticated

Constructor Summary

TrustSecurityContext()

Method Summary

void	authenticate() We walk the chain of subcontext assigning principals and opaquecredentials from the parent.
int	getAuthType() Returns the canonical authentication type for this flavor of authentication.

Methods inherited from class org.jasig.portal.security.provider.ChainingSecurityContext

addSubContext, doesSubContextExist, getAdditionalDescriptor, getOpaqueCredentials, getOpaqueCredentialsInstance, getPrincipal, getPrincipalInstance, getSubContext, getSubContextNames, getSubContexts, isAuthenticated

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.jasig.portal.security.ISecurityContext

addSubContext, getAdditionalDescriptor, getOpaqueCredentials, getOpaqueCredentialsInstance, getPrincipal, getPrincipalInstance, getSubContext, getSubContextNames, getSubContexts, isAuthenticated

Field Detail

log

private static final org.apache.commons.logging.Log log

TRUSTSECURITYAUTHTYPE

private final int TRUSTSECURITYAUTHTYPE

See Also:

Constant Field Values

Constructor Detail

TrustSecurityContext

TrustSecurityContext()

Method Detail

getAuthType

public int getAuthType()

Description copied from interface: ISecurityContext

Returns the canonical authentication type for this flavor of authentication. Each value returned should be either a globally registered auth flavor or a local variant.

Specified by:

getAuthType in interface ISecurityContext

Returns:

The unique authentication value identifier. Values with the high order 16 bits clear are local (0x0000 - 0x00FF) where values with the high order 16 bits set (0xFF00 - 0xFFFF are foundation types distributed by JASIG. All other should be registered and globally unique.

authenticate

public void authenticate()
                  throws PortalSecurityException

Description copied from class: ChainingSecurityContext

We walk the chain of subcontext assigning principals and opaquecredentials from the parent. Note that the contexts themselves should resist actually performing the assignment if an assignment has already been made to either the credentials or the UID.

Specified by:

authenticate in interface ISecurityContext

Overrides:

authenticate in class ChainingSecurityContext

Throws:

PortalSecurityException

See Also:

ISecurityContext.getPrincipalInstance(), ISecurityContext.getOpaqueCredentialsInstance()