public interface AuthenticationProvider extends SecurityProvider
AuthenticationProvider interface exposes the services provided by an
Authentication provider to the WebLogic Security Framework. This allows the
Authentication provider to be manipulated (initialized, started, stopped, and
so on).| Modifier and Type | Method and Description |
|---|---|
AppConfigurationEntry |
getAssertionModuleConfiguration()
Gets the
AppConfigurationEntry for the associated
Identity Assertion provider's JAAS LoginModule. |
IdentityAsserter |
getIdentityAsserter()
Gets this Authentication provider's associated Identity Assertion provider.
|
AppConfigurationEntry |
getLoginModuleConfiguration()
Gets the
AppConfigurationEntry for this
Authentication provider's JAAS LoginModule. |
PrincipalValidator |
getPrincipalValidator()
Gets this Authentication provider's associated Principal Validation provider.
|
getDescription, initialize, shutdownAppConfigurationEntry getLoginModuleConfiguration()
AppConfigurationEntry for this
Authentication provider's JAAS LoginModule.AppConfigurationEntry getAssertionModuleConfiguration()
AppConfigurationEntry for the associated
Identity Assertion provider's JAAS LoginModule.
Note that the assertIdentity() method of an Identity Assertion provider is called every
time identity assertion occurs, but the LoginModules may not be called if the Subject is cached.
The -Dweblogic.security.identityAssertionTTL flag can be used to affect this behavior
(for example, to modify the default TTL of 5 minutes or to disable the cache by setting the flag to 0).
It is the responsibility of the Identity Assertion provider to ensure not just that the token is valid, but also that the user is still valid (for example, the user has not been deleted).
PrincipalValidator getPrincipalValidator()
IdentityAsserter getIdentityAsserter()