Package org.eclipse.jetty.security.authentication

Class SpnegoAuthenticator

    • Field Detail

      • LOG

        private static final Logger LOG
        Deprecated.

      • _authMethod

        private java.lang.String _authMethod
        Deprecated.

    • Constructor Detail

      • SpnegoAuthenticator

        public SpnegoAuthenticator()
        Deprecated.

      • SpnegoAuthenticator

        public SpnegoAuthenticator​(java.lang.String authMethod)
        Deprecated.
        Allow for a custom authMethod value to be set for instances where SPNEGO may not be appropriate
        Parameters:
        authMethod - the auth method

    • Method Detail

      • getAuthMethod

        public java.lang.String getAuthMethod()
        Deprecated.
        Returns:
        The name of the authentication method

      • validateRequest

        public Authentication validateRequest​(javax.servlet.ServletRequest request,
                                      javax.servlet.ServletResponse response,
                                      boolean mandatory)
                               throws ServerAuthException
        Deprecated.
        Description copied from interface: Authenticator
        Validate a request
        Parameters:
        request - The request
        response - The response
        mandatory - True if authentication is mandatory.
        Returns:
        An Authentication. If Authentication is successful, this will be a Authentication.User. If a response has been sent by the Authenticator (which can be done for both successful and unsuccessful authentications), then the result will implement Authentication.ResponseSent. If Authentication is not mandatory, then a Authentication.Deferred may be returned.
        Throws:
        ServerAuthException - if unable to validate request

      • getAuthSchemeFromHeader

        java.lang.String getAuthSchemeFromHeader​(java.lang.String header)
        Deprecated.
        Extracts the auth_scheme from the HTTP Authorization header, Authorization: <auth_scheme> <token>.
        Parameters:
        header - The HTTP Authorization header or null.
        Returns:
        The parsed auth scheme from the header, or the empty string.

      • isAuthSchemeNegotiate

        boolean isAuthSchemeNegotiate​(java.lang.String authScheme)
        Deprecated.
        Determines if provided auth scheme text from the Authorization header is case-insensitively equal to negotiate.
        Parameters:
        authScheme - The auth scheme component of the Authorization header
        Returns:
        True if the auth scheme component is case-insensitively equal to negotiate, False otherwise.

      • secureResponse

        public boolean secureResponse​(javax.servlet.ServletRequest request,
                              javax.servlet.ServletResponse response,
                              boolean mandatory,
                              Authentication.User validatedUser)
                       throws ServerAuthException
        Deprecated.
        Description copied from interface: Authenticator
        is response secure
        Parameters:
        request - the request
        response - the response
        mandatory - if security is mandator
        validatedUser - the user that was validated
        Returns:
        true if response is secure
        Throws:
        ServerAuthException - if unable to test response