Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.randomcoder.security.cardspace
Class CardSpaceProcessingFilter

java.lang.Object
  extended by org.acegisecurity.ui.AbstractProcessingFilter
      extended by org.randomcoder.security.cardspace.CardSpaceProcessingFilter
All Implemented Interfaces:
Filter, InitializingBean, ApplicationEventPublisherAware, MessageSourceAware
public class CardSpaceProcessingFilter
extends AbstractProcessingFilter

Processes a Windows CardSpace Information Card.

Login forms must present a single parameter (by default xmlToken which contains an encrypted SAML token.

Do not use this class directly. Instead configure web.xml to use the FilterToBeanProxy.

 Copyright (c) 2006, Craig Condit. All rights reserved.
 
 Redistribution and use in source and binary forms, with or without
 modification, are permitted provided that the following conditions are met:
 
   * Redistributions of source code must retain the above copyright notice,
     this list of conditions and the following disclaimer.
   * Redistributions in binary form must reproduce the above copyright notice,
     this list of conditions and the following disclaimer in the documentation
     and/or other materials provided with the distribution.
     
 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
 LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
 CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
 SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
 INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
 CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 POSSIBILITY OF SUCH DAMAGE.

Field Summary
 
Fields inherited from class org.acegisecurity.ui.AbstractProcessingFilter
ACEGI_SAVED_REQUEST_KEY, ACEGI_SECURITY_LAST_EXCEPTION_KEY, authenticationDetailsSource, eventPublisher, logger, messages
 
Constructor Summary
CardSpaceProcessingFilter()
           
 
Method Summary
 Authentication attemptAuthentication(HttpServletRequest request)
          Attempts authentication using CardSpace tokens.
 String getDefaultFilterProcessesUrl()
          This filter by default responds to /j_acegi_cardspace_check
 void setCertificateContext(CertificateContext certificateContext)
          Sets the certificate context to retrieve private keys and certificates from.
 void setDebug(boolean debug)
          Turns on or off debugging output of XML tokens (defaults to off).
 void setParameter(String parameter)
          Sets the name of the parameter to read the xml token from (defaults to xmlToken.
 
Methods inherited from class org.acegisecurity.ui.AbstractProcessingFilter
afterPropertiesSet, destroy, doFilter, getAuthenticationDetailsSource, getAuthenticationFailureUrl, getAuthenticationManager, getDefaultTargetUrl, getExceptionMappings, getFilterProcessesUrl, getRememberMeServices, init, isAlwaysUseDefaultTargetUrl, isContinueChainBeforeSuccessfulAuthentication, obtainFullRequestUrl, onPreAuthentication, onSuccessfulAuthentication, onUnsuccessfulAuthentication, requiresAuthentication, sendRedirect, setAlwaysUseDefaultTargetUrl, setApplicationEventPublisher, setAuthenticationDetailsSource, setAuthenticationFailureUrl, setAuthenticationManager, setContinueChainBeforeSuccessfulAuthentication, setDefaultTargetUrl, setExceptionMappings, setFilterProcessesUrl, setMessageSource, setRememberMeServices, successfulAuthentication, unsuccessfulAuthentication
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

CardSpaceProcessingFilter

public CardSpaceProcessingFilter()
Method Detail

setCertificateContext

public void setCertificateContext(CertificateContext certificateContext)
Sets the certificate context to retrieve private keys and certificates from.

Parameters:
certificateContext - certificate context

setParameter

public void setParameter(String parameter)
Sets the name of the parameter to read the xml token from (defaults to xmlToken.

Parameters:
parameter - paramater name.

setDebug

public void setDebug(boolean debug)
Turns on or off debugging output of XML tokens (defaults to off).

Parameters:
debug - true to enable debugging, false otherwise

getDefaultFilterProcessesUrl

public String getDefaultFilterProcessesUrl()
This filter by default responds to /j_acegi_cardspace_check

Specified by:
getDefaultFilterProcessesUrl in class AbstractProcessingFilter
Returns:
the default

attemptAuthentication

public Authentication attemptAuthentication(HttpServletRequest request)
                                     throws AuthenticationException
Attempts authentication using CardSpace tokens.

Specified by:
attemptAuthentication in class AbstractProcessingFilter
Parameters:
request - HTTP servlet request
Returns:
authenticated CardSpaceAuthenticationToken
Throws:
AuthenticationException - if the token is missing or invalid
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2006-2010 Craig Condit. All Rights Reserved.