| java.lang.Object biz.hammurapi.web.security.AuthFilter
AuthFilter | public class AuthFilter implements Filter(Code) | | This class handles authentication - it makes sure that each request is authenticated
author: Pavel Vlasov version: $Revision: 1.1 $ |
AUTHORIZATION_PROVIDER | final public static String AUTHORIZATION_PROVIDER(Code) | | |
LOGIN_URL_ATTRIBUTE | final public static String LOGIN_URL_ATTRIBUTE(Code) | | |
MAX_LOGIN_ATTEMPTS | final public static String MAX_LOGIN_ATTEMPTS(Code) | | |
REMAINING_LOGIN_ATTEMPTS | final public static String REMAINING_LOGIN_ATTEMPTS(Code) | | |
destroy | public void destroy()(Code) | | |
doFilter | public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException(Code) | | Checks user in session. If user is present then authorization provider is injected into request.
If there is no credentials then Guest credentials are used if such user exists and is not blocked.
If Guest user doesn't exists then control is passed to login url. If login URL is null then basic
authentication is used.
Parameters: request - The servlet request we are processing Parameters: result - The servlet response we are creating Parameters: chain - The filter chain we are processing exception: IOException - if an input/output error occurs exception: ServletException - if a servlet error occurs |
getUnauthenticatedPrincipal | public String getUnauthenticatedPrincipal()(Code) | | Name of unauthenticated principal (guest user) for this application. |
|
|