Class SpnegoAuthenticator

java.lang.Object
org.eclipse.jetty.security.authentication.LoginAuthenticator
org.eclipse.jetty.security.authentication.SpnegoAuthenticator
All Implemented Interfaces:
Authenticator
@Deprecated public class SpnegoAuthenticator extends LoginAuthenticator
Deprecated.
use ConfigurableSpnegoAuthenticator instead.

  • Field Details

    • LOG

      private static final Logger LOG
      Deprecated.

    • _authMethod

      private String _authMethod
      Deprecated.

  • Constructor Details

    • SpnegoAuthenticator

      public SpnegoAuthenticator()
      Deprecated.

    • SpnegoAuthenticator

      public SpnegoAuthenticator(String authMethod)
      Deprecated.
      Allow for a custom authMethod value to be set for instances where SPNEGO may not be appropriate
      Parameters:
      authMethod - the auth method

  • Method Details

    • getAuthMethod

      public String getAuthMethod()
      Deprecated.
      Returns:
      The name of the authentication method

    • validateRequest

      public Authentication validateRequest(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, boolean mandatory) throws ServerAuthException
      Deprecated.
      Description copied from interface: Authenticator
      Validate a request
      Parameters:
      request - The request
      response - The response
      mandatory - True if authentication is mandatory.
      Returns:
      An Authentication. If Authentication is successful, this will be a Authentication.User. If a response has been sent by the Authenticator (which can be done for both successful and unsuccessful authentications), then the result will implement Authentication.ResponseSent. If Authentication is not mandatory, then a Authentication.Deferred may be returned.
      Throws:
      ServerAuthException - if unable to validate request

    • getAuthSchemeFromHeader

      String getAuthSchemeFromHeader(String header)
      Deprecated.
      Extracts the auth_scheme from the HTTP Authorization header, Authorization: <auth_scheme> <token>.
      Parameters:
      header - The HTTP Authorization header or null.
      Returns:
      The parsed auth scheme from the header, or the empty string.

    • isAuthSchemeNegotiate

      boolean isAuthSchemeNegotiate(String authScheme)
      Deprecated.
      Determines if provided auth scheme text from the Authorization header is case-insensitively equal to negotiate.
      Parameters:
      authScheme - The auth scheme component of the Authorization header
      Returns:
      True if the auth scheme component is case-insensitively equal to negotiate, False otherwise.

    • secureResponse

      public boolean secureResponse(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, boolean mandatory, Authentication.User validatedUser) throws ServerAuthException
      Deprecated.
      Description copied from interface: Authenticator
      is response secure
      Parameters:
      request - the request
      response - the response
      mandatory - if security is mandator
      validatedUser - the user that was validated
      Returns:
      true if response is secure
      Throws:
      ServerAuthException - if unable to test response