|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object | +--com.bea.security.PublicSecurityService | +--com.bea.security.AuthenticationService
The authentication service provides functions to an application related to establishing, verifying, and transferring an identity.
Fields inherited from class com.bea.security.PublicSecurityService |
COMPATIBLE,
COMPATIBLE_DEPRECATED,
COMPATIBLE_UNKNOWN,
NOT_COMPATIBLE |
Method Summary | |
AuthenticIdentity |
assertIdentity(java.lang.String tokentype,
java.lang.Object token)
Establishes an authenticated identity based on an assertion token of a type supported by the configured authentication providers. |
AuthenticIdentity |
assertIdentity(java.lang.String tokentype,
java.lang.Object token,
AppContext ctx)
Establishes an authenticated identity based on an assertion token of a type supported by the configured authentication providers. |
AuthenticIdentity |
authenticate(javax.security.auth.callback.CallbackHandler handler)
Starts a JAAS authentication handshake that will produce an authenticated identity. |
AuthenticIdentity |
authenticate(javax.security.auth.callback.CallbackHandler handler,
AppContext ctx)
Starts a JAAS authentication handshake that will produce an authenticated identity. |
java.lang.Object |
getChallengeAssertionToken(java.lang.String tokentype)
Gets an identity assertion challenge for identity asserters that support challenges. |
java.lang.Object |
getChallengeAssertionToken(java.lang.String tokentype,
AppContext ctx)
Gets an identity assertion challenge for identity asserters that support challenges. |
ServiceType |
getServiceType()
Indicates this service's type. |
ServiceVersion |
getVersion()
Indicates this service's version. |
boolean |
isAssertionTokenSupported(java.lang.String tokentype)
Checks with the security runtime to see if an assertion token type is supported. |
int |
isCompatible(ServiceVersion version)
Determines if the version of the public service API specified in the Java application is compatible with the current version of the service API in the security runtime instance. |
boolean |
validateIdentity(AuthenticIdentity identity)
Deprecated. Not implemented in ALES30 and above |
Methods inherited from class java.lang.Object |
clone,
equals,
finalize,
getClass,
hashCode,
notify,
notifyAll,
toString,
wait,
wait,
wait |
Method Detail |
public ServiceType getServiceType()
ServiceType
object indicating this service's type.public ServiceVersion getVersion()
ServiceVersion
indicating the service version number and patch level.public int isCompatible(ServiceVersion version)
version
- a ServiceVersion
which is being asked for by the Java application.
The current service, that is, the service in the security runtime instance,
will indiciate if it supports the version specified in the isCompatible()
method.NOT_COMPATIBLE
if the service is not compatible
with the supplied version, COMPATIBLE
if the service is fully compatible,
COMPATIBLE_DEPRECATED
if the service is compatible, but some functions have
been depricated between the versions, or, finally, COMPATIBLE_UNKNOWN
if the version
passed in is newer than the current version, so compatibility is unknown.public AuthenticIdentity assertIdentity(java.lang.String tokentype, java.lang.Object token) throws IdentityNotAuthenticException, InvalidAssertionTokenException
tokentype
- the type of token provided for assertion.token
- the object which contains the token of type 'tokentype'.Identity
if the assertion was successful or
null
if the assertion was unsuccessful. NOTE: A built-in identity asserter is included as part of the java api. This assertor takes a token name of "WLS.Subject" and a token object that is the WebLogic Server form of identity. If an identity assertion provider is plugged in to handle the assertion type of "WLS.Subject", then the provider will be used. If no identity assertion provider is plugged in to handle this type the built-in version will be used.
javax.security.auth.Subject is the form of identity used in WebLogic Servers. This mechanism was built-in to provide an easy way to convert between identity formats.
public AuthenticIdentity assertIdentity(java.lang.String tokentype, java.lang.Object token, AppContext ctx) throws IdentityNotAuthenticException, InvalidAssertionTokenException
tokentype
- the type of token provided for assertion.token
- the object which contains the token of type 'tokentype'.Identity
if the assertion was successful; otherwise,
an exception is throw. NOTE: A built-in identity asserter is included as part of the java api. This assertor takes a token name of "WLS.Subject" and a token object that is the WebLogic Server form of identity. If an identity assertion provider is plugged in to handle the assertion type of "WLS.Subject", then the provider will be used. If no identity assertion provider is plugged in to handle this type the built-in version will be used.
javax.security.auth.Subject is the form of identity used in WebLogic Servers. This mechanism was built-in to provide an easy way to convert between identity formats.
public boolean isAssertionTokenSupported(java.lang.String tokentype)
assertIdentity
.
tokentype
- the type of token you wish to use.true
if the token type is supported, false
if it is not.public java.lang.Object getChallengeAssertionToken(java.lang.String tokentype) throws InvalidAssertionTokenException
tokentype
- the type of identity assertion challenge requested.ctx
- the application context relevant to the identity asseertionObject
appropriate for the assertion type
containing the challenge.public java.lang.Object getChallengeAssertionToken(java.lang.String tokentype, AppContext ctx) throws InvalidAssertionTokenException
tokentype
- the type of identity assertion challenge requested.ctx
- the application context relevant to the identity asseertionObject
appropriate for the assertion type
containing the challenge.public AuthenticIdentity authenticate(javax.security.auth.callback.CallbackHandler handler) throws IdentityNotAuthenticException
handler
- a handler (javax.security.auth.callback.CallbackHandler
) that can respond to callbacks
and provide information to the runtime that can authenticate a user..AuthenticIdentity
representing the authenticated user.public AuthenticIdentity authenticate(javax.security.auth.callback.CallbackHandler handler, AppContext ctx) throws IdentityNotAuthenticException
handler
- a handler (javax.security.auth.callback.CallbackHandler
) that can respond to callbacks
and provide information to the runtime that can authenticate a user.ctx
- application context to be considered during authenticationAuthenticIdentity
representing the authenticated user.public boolean validateIdentity(AuthenticIdentity identity)
identity
- an AuthenticIdentity
representing the authenticated user to validate.TRUE
if this user is valid, otherwise FALSE
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |