AuthenticationProvider (Oracle WebLogic Server API Reference)

Overview

Package

Class

Use

Tree

Deprecated

Index

Help

Oracle Fusion Middleware
Oracle WebLogic Server API Reference
11g Release 1 (10.3.4)

Part Number E13941-04

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

weblogic.security.spi
Interface AuthenticationProvider

All Superinterfaces:: SecurityProvider

public interface AuthenticationProvider
extends SecurityProvider
extends SecurityProvider

The AuthenticationProvider interface exposes the services provided by an Authentication provider to the WebLogic Security Framework. This allows the Authentication provider to be manipulated (initialized, started, stopped, and so on).

Method Summary
`AppConfigurationEntry`	`getAssertionModuleConfiguration()` Gets the `AppConfigurationEntry` for the associated Identity Assertion provider's JAAS `LoginModule`.
`IdentityAsserter`	`getIdentityAsserter()` Gets this Authentication provider's associated Identity Assertion provider.
`AppConfigurationEntry`	`getLoginModuleConfiguration()` Gets the `AppConfigurationEntry` for this Authentication provider's JAAS `LoginModule`.
`PrincipalValidator`	`getPrincipalValidator()` Gets this Authentication provider's associated Principal Validation provider.

Methods inherited from interface weblogic.security.spi.SecurityProvider
`getDescription, initialize, shutdown`

Method Detail

getLoginModuleConfiguration

AppConfigurationEntry getLoginModuleConfiguration()

Gets the AppConfigurationEntry for this Authentication provider's JAAS LoginModule.

Returns:: the JAAS configuration specific to this Authentication provider that is needed to properly execute login authentication in this security realm.

getAssertionModuleConfiguration

AppConfigurationEntry getAssertionModuleConfiguration()

Gets the AppConfigurationEntry for the associated Identity Assertion provider's JAAS LoginModule.

Note that the assertIdentity() method of an Identity Assertion provider is called every time identity assertion occurs, but the LoginModules may not be called if the Subject is cached. The -Dweblogic.security.identityAssertionTTL flag can be used to affect this behavior (for example, to modify the default TTL of 5 minutes or to disable the cache by setting the flag to 0).

It is the responsibility of the Identity Assertion provider to ensure not just that the token is valid, but also that the user is still valid (for example, the user has not been deleted).

Returns:: the JAAS configuration specific to an Identity Assertion provider that is needed to properly execute identity assertion in this security realm.

getPrincipalValidator

PrincipalValidator getPrincipalValidator()

Gets this Authentication provider's associated Principal Validation provider.

Returns:: a Principal Validation provider.

getIdentityAsserter

IdentityAsserter getIdentityAsserter()

Gets this Authentication provider's associated Identity Assertion provider.

Returns:: an Identity Assertion provider.