Package africa.absa.inception.security

Class SecurityServiceAuthenticationManager

java.lang.Object

africa.absa.inception.security.SecurityServiceAuthenticationManager

All Implemented Interfaces:

org.springframework.security.authentication.AuthenticationManager

public class SecurityServiceAuthenticationManager
extends Object
implements org.springframework.security.authentication.AuthenticationManager

The SecurityServiceAuthenticationManager class provides an authentication manager implementation based on the Security Service.

Author:

Marcus Portmann

Constructor Summary

Constructors

Constructor	Description
SecurityServiceAuthenticationManager(ISecurityService securityService, UserDetailsService userDetailsService)	Constructs a new SecurityServiceAuthenticationManager.

Method Summary

Modifier and Type	Method	Description
org.springframework.security.core.Authentication	authenticate(org.springframework.security.core.Authentication authentication)	Attempts to authenticate the passed Authentication object, returning a fully populated Authentication object (including granted authorities) if successful.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SecurityServiceAuthenticationManager

public SecurityServiceAuthenticationManager(ISecurityService securityService,
 UserDetailsService userDetailsService)

Constructs a new SecurityServiceAuthenticationManager.

Parameters:

securityService - the Security Service

userDetailsService - the User Details Service

Method Details

authenticate

public org.springframework.security.core.Authentication authenticate(org.springframework.security.core.Authentication authentication)
                                                              throws org.springframework.security.core.AuthenticationException

Attempts to authenticate the passed Authentication object, returning a fully populated Authentication object (including granted authorities) if successful.

An AuthenticationManager must honour the following contract concerning exceptions:

• A DisabledException must be thrown if an account is disabled and the AuthenticationManager can test for this state.
• A LockedException must be thrown if an account is locked and the AuthenticationManager can test for account locking.
• A BadCredentialsException must be thrown if incorrect credentials are presented. Whilst the above exceptions are optional, an AuthenticationManager must always test credentials.

Exceptions should be tested for and if applicable thrown in the order expressed above (i.e. if an account is disabled or locked, the authentication request is immediately rejected and the credentials testing process is not performed). This prevents credentials being tested against disabled or locked accounts.

Specified by:

authenticate in interface org.springframework.security.authentication.AuthenticationManager

Parameters:

authentication - the authentication request object

Returns:

a fully authenticated object including credentials

Throws:

org.springframework.security.core.AuthenticationException