top.dcenter.ums.security.core.oauth.oneclicklogin

类 OneClickLoginAuthenticationFilter

java.lang.Object

org.springframework.web.filter.GenericFilterBean

org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

top.dcenter.ums.security.core.oauth.oneclicklogin.OneClickLoginAuthenticationFilter

所有已实现的接口:

javax.servlet.Filter, org.springframework.beans.factory.Aware, org.springframework.beans.factory.BeanNameAware, org.springframework.beans.factory.DisposableBean, org.springframework.beans.factory.InitializingBean, org.springframework.context.ApplicationEventPublisherAware, org.springframework.context.EnvironmentAware, org.springframework.context.MessageSourceAware, org.springframework.core.env.EnvironmentCapable, org.springframework.web.context.ServletContextAware

public class OneClickLoginAuthenticationFilter
extends org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

一键登录配置过滤器

从以下版本开始:

2021.5.13 15:15

作者:

YongWu zheng

字段概要

从类继承的字段 org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

authenticationDetailsSource, eventPublisher, messages

从类继承的字段 org.springframework.web.filter.GenericFilterBean

logger

构造器概要

构造器

构造器和说明
OneClickLoginAuthenticationFilter(OneClickLoginService oneClickLoginService, OneClickLoginProperties oneClickLoginProperties, org.springframework.security.authentication.AuthenticationDetailsSource<javax.servlet.http.HttpServletRequest,?> authenticationDetailsSource)

方法概要

限定符和类型	方法和说明
org.springframework.security.core.Authentication	attemptAuthentication(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
protected Map<String,String>	getOtherParamMap(List<String> otherParamNames, javax.servlet.http.HttpServletRequest request) 从 request 中获取 otherParamNames 的 paramValue
protected String	obtainAccessToken(javax.servlet.http.HttpServletRequest request) 获取 access token;
protected void	setDetails(javax.servlet.http.HttpServletRequest request, OneClickLoginAuthenticationToken authRequest) Provided so that subclasses may configure what is put into the auth request's details property.
void	setPostOnly(boolean postOnly) Defines whether only HTTP POST requests will be allowed by this filter.

从类继承的方法 org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

afterPropertiesSet, doFilter, getAllowSessionCreation, getAuthenticationManager, getFailureHandler, getRememberMeServices, getSuccessHandler, requiresAuthentication, setAllowSessionCreation, setApplicationEventPublisher, setAuthenticationDetailsSource, setAuthenticationFailureHandler, setAuthenticationManager, setAuthenticationSuccessHandler, setContinueChainBeforeSuccessfulAuthentication, setFilterProcessesUrl, setMessageSource, setRememberMeServices, setRequiresAuthenticationRequestMatcher, setSessionAuthenticationStrategy, successfulAuthentication, unsuccessfulAuthentication

从类继承的方法 org.springframework.web.filter.GenericFilterBean

addRequiredProperty, createEnvironment, destroy, getEnvironment, getFilterConfig, getFilterName, getServletContext, init, initBeanWrapper, initFilterBean, setBeanName, setEnvironment, setServletContext

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

构造器详细资料

OneClickLoginAuthenticationFilter

public OneClickLoginAuthenticationFilter(@NonNull
                                         OneClickLoginService oneClickLoginService,
                                         @NonNull
                                         OneClickLoginProperties oneClickLoginProperties,
                                         @Nullable
                                         org.springframework.security.authentication.AuthenticationDetailsSource<javax.servlet.http.HttpServletRequest,?> authenticationDetailsSource)

方法详细资料

attemptAuthentication

public org.springframework.security.core.Authentication attemptAuthentication(javax.servlet.http.HttpServletRequest request,
                                                                              javax.servlet.http.HttpServletResponse response)
                                                                       throws org.springframework.security.core.AuthenticationException

指定者:

attemptAuthentication 在类中 org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

抛出:

org.springframework.security.core.AuthenticationException

getOtherParamMap

@Nullable
protected Map<String,String> getOtherParamMap(@NonNull
                                                         List<String> otherParamNames,
                                                         @NonNull
                                                         javax.servlet.http.HttpServletRequest request)

从 request 中获取 otherParamNames 的 paramValue

参数:

otherParamNames - 参数名称列表

request - request

返回:

map(paramName, paramValue)

obtainAccessToken

protected String obtainAccessToken(javax.servlet.http.HttpServletRequest request)

获取 access token;

参数:

request - so that request attributes can be retrieved

返回:

access token

setDetails

protected void setDetails(javax.servlet.http.HttpServletRequest request,
                          OneClickLoginAuthenticationToken authRequest)

Provided so that subclasses may configure what is put into the auth request's details property.

参数:

request - that an auth request is being created for

authRequest - the auth request object that should have its details set

setPostOnly

public void setPostOnly(boolean postOnly)

Defines whether only HTTP POST requests will be allowed by this filter. If set to true, and an auth request is received which is not a POST request, an exception will be raised immediately and auth will not be attempted. The unsuccessfulAuthentication() method will be called as if handling a failed auth.

Defaults to true but may be overridden by subclasses.