Package org.ametys.web

Class WebAuthenticateAction

java.lang.Object

org.apache.avalon.framework.logger.AbstractLogEnabled

org.apache.cocoon.acting.AbstractAction

org.apache.cocoon.acting.ServiceableAction

org.ametys.core.authentication.AuthenticateAction

org.ametys.web.WebAuthenticateAction

All Implemented Interfaces:

Initializable, Component, LogEnabled, Serviceable, ThreadSafe, Action

public class WebAuthenticateAction
extends AuthenticateAction

Special authentication process for web context and aware of front-offices.

Nested Class Summary

Nested classes/interfaces inherited from class org.ametys.core.authentication.AuthenticateAction

AuthenticateAction.TOKEN_MODE

Field Summary

Fields

Modifier and Type	Field	Description
static final String	REQUEST_ATTRIBUTE_FRONTOFFICE_CREDENTIALPROVIDER_ID	The request attribute to set front office credential provider id
static final String	REQUEST_ATTRIBUTE_FRONTOFFICE_REQUEST	The request attribute set to "true" when the request came from the front and was IP checked
static final String	REQUEST_ATTRIBUTE_FRONTOFFICE_USERIDENTITY	The request attribute to set front office user identity

Fields inherited from class org.ametys.core.authentication.AuthenticateAction

_acceptedUrlPatterns, _authenticateTokenManager, _currentUserProvider, _observationManager, _populationContextHelper, _userManager, _userPasswordManager, _userPopulationDAO, HEADER_TOKEN, PARAMETERS_PARAMETER_TOKEN, PARAMETERS_PARAMETER_TOKEN_CONTEXT, REQUEST_ATTRIBUTE_AUTHENTICATED, REQUEST_ATTRIBUTE_AVAILABLE_USER_POPULATIONS_LIST, REQUEST_ATTRIBUTE_CONTEXTS, REQUEST_ATTRIBUTE_CREDENTIAL_PROVIDER_INDEX, REQUEST_ATTRIBUTE_CREDENTIAL_PROVIDER_LIST, REQUEST_ATTRIBUTE_GRANTED, REQUEST_ATTRIBUTE_INTERNAL_ALLOWED, REQUEST_ATTRIBUTE_INVALID_POPULATION, REQUEST_ATTRIBUTE_LOGIN_URL, REQUEST_ATTRIBUTE_SHOULD_DISPLAY_USER_POPULATIONS_LIST, REQUEST_ATTRIBUTE_USER_POPULATION_ID, REQUEST_PARAMETER_CREDENTIALPROVIDER_INDEX, REQUEST_PARAMETER_NONBLOCING, REQUEST_PARAMETER_POPULATION_NAME, REQUEST_PARAMETER_TOKEN, REQUEST_PARAMETER_TOKEN_CONTEXT, SESSION_CONNECTING_CREDENTIALPROVIDER_INDEX, SESSION_CONNECTING_CREDENTIALPROVIDER_INDEX_LASTBLOCKINGKNOWN, SESSION_CONNECTING_CREDENTIALPROVIDER_MODE, SESSION_CONNECTING_USERPOPULATION_ID, SESSION_CREDENTIALPROVIDER, SESSION_CREDENTIALPROVIDER_MODE, SESSION_USERIDENTITY, SITEMAP_PARAMETER_TOKEN_MODE

Fields inherited from class org.apache.cocoon.acting.ServiceableAction

manager

Fields inherited from class org.apache.cocoon.acting.AbstractAction

EMPTY_MAP

Fields inherited from interface org.apache.cocoon.acting.Action

ROLE

Constructor Summary

Constructors

Constructor	Description
WebAuthenticateAction()

Method Summary

Modifier and Type	Method	Description
protected List<String>	_getContexts(Request request, Parameters parameters)	Get the authentication context
protected CredentialProvider	_getCredentialProviderFromSession(Request request)	Get the credential provider used for the current connection
Map	act(Redirector redirector, SourceResolver resolver, Map objectModel, String source, Parameters parameters)
static CredentialProvider	getCredentialProviderFromSession(Request request)	Get the credential provider used for the current connection
void	service(ServiceManager smanager)

Methods inherited from class org.ametys.core.authentication.AuthenticateAction

_acceptedUrl, _doProcess, _getAvailableUserPopulationsIds, _getChosenUserPopulationId, _getCredentialProviderModeFromSession, _getCurrentCredentialProviderIndex, _getCurrentCredentialProviderIndexFromParameter, _getTokenFromRequest, _getUserIdentity, _getUserIdentityFromSession, _getWeakPasswordURI, _handleAuthenticationToken, _handleLogout, _handleWeakPassword, _hasCredentialProviders, _internalRequest, _isCurrentCredentialProviderInBlockingMode, _logLoginEvent, _logLogoutEvent, _preFlightCheck, _prepareUserPopulationsAndCredentialProviders, _process, _resetConnectingStateToSession, _saveConnectingStateToSession, _setUserIdentityInSession, _validateCurrentlyConnectedUser, _validateCurrentlyConnectedUserIsInAuthorizedPopulation, _validateToken, getCredentialProviderModeFromSession, getLoginURL, getLoginURLParameters, getLogoutURL, getUserIdentityFromSession, initialize, renewSession, setUserIdentityInSession, skipCurrentCredentialProvider

Methods inherited from class org.apache.avalon.framework.logger.AbstractLogEnabled

enableLogging, getLogger, setupLogger, setupLogger, setupLogger

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

REQUEST_ATTRIBUTE_FRONTOFFICE_USERIDENTITY

public static final String REQUEST_ATTRIBUTE_FRONTOFFICE_USERIDENTITY

The request attribute to set front office user identity

See Also:

• Constant Field Values

REQUEST_ATTRIBUTE_FRONTOFFICE_CREDENTIALPROVIDER_ID

public static final String REQUEST_ATTRIBUTE_FRONTOFFICE_CREDENTIALPROVIDER_ID

The request attribute to set front office credential provider id

See Also:

• Constant Field Values

REQUEST_ATTRIBUTE_FRONTOFFICE_REQUEST

public static final String REQUEST_ATTRIBUTE_FRONTOFFICE_REQUEST

The request attribute set to "true" when the request came from the front and was IP checked

See Also:

• Constant Field Values

Constructor Details

WebAuthenticateAction

public WebAuthenticateAction()

Method Details

service

public void service(ServiceManager smanager)
             throws ServiceException

Specified by:

service in interface Serviceable

Overrides:

service in class ServiceableAction

Throws:

ServiceException

_getContexts

protected List<String> _getContexts(Request request,
 Parameters parameters)

Description copied from class: AuthenticateAction

Get the authentication context

Overrides:

_getContexts in class AuthenticateAction

Parameters:

request - The request

parameters - The action parameters

Returns:

The context

act

public Map act(Redirector redirector,
 SourceResolver resolver,
 Map objectModel,
 String source,
 Parameters parameters)
        throws Exception

Specified by:

act in interface Action

Overrides:

act in class AuthenticateAction

Throws:

Exception

_getCredentialProviderFromSession

protected CredentialProvider _getCredentialProviderFromSession(Request request)

Description copied from class: AuthenticateAction

Get the credential provider used for the current connection

Overrides:

_getCredentialProviderFromSession in class AuthenticateAction

Parameters:

request - The request

Returns:

The credential provider used or null

getCredentialProviderFromSession

public static CredentialProvider getCredentialProviderFromSession(Request request)

Get the credential provider used for the current connection

Parameters:

request - The request

Returns:

The credential provider used or null