This project has retired. For details please refer to its Attic page.

org.apache.maven.archiva.security
Class ArchivaServletAuthenticator

java.lang.Object
  org.apache.maven.archiva.security.ArchivaServletAuthenticator

All Implemented Interfaces:

ServletAuthenticator

public class ArchivaServletAuthenticator
extends java.lang.Object
implements ServletAuthenticator

Constructor Summary

ArchivaServletAuthenticator()

Method Summary

boolean	isAuthenticated(javax.servlet.http.HttpServletRequest request, org.codehaus.plexus.redback.authentication.AuthenticationResult result) Authentication check for users.
boolean	isAuthorized(javax.servlet.http.HttpServletRequest request, org.codehaus.plexus.redback.system.SecuritySession securitySession, java.lang.String repositoryId, java.lang.String permission) Authorization check for valid users.
boolean	isAuthorized(java.lang.String principal, java.lang.String repoId, java.lang.String permission) Authorization check specific for user guest, which doesn't go through HttpBasicAuthentication#getAuthenticationResult( HttpServletRequest request, HttpServletResponse response ) since no credentials are attached to the request.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ArchivaServletAuthenticator

public ArchivaServletAuthenticator()

Method Detail

isAuthenticated

public boolean isAuthenticated(javax.servlet.http.HttpServletRequest request,
                               org.codehaus.plexus.redback.authentication.AuthenticationResult result)
                        throws org.codehaus.plexus.redback.authentication.AuthenticationException,
                               org.codehaus.plexus.redback.policy.AccountLockedException,
                               org.codehaus.plexus.redback.policy.MustChangePasswordException

Description copied from interface: ServletAuthenticator

Authentication check for users.

Specified by:

isAuthenticated in interface ServletAuthenticator

Returns:

Throws:

org.codehaus.plexus.redback.authentication.AuthenticationException

org.codehaus.plexus.redback.policy.AccountLockedException

org.codehaus.plexus.redback.policy.MustChangePasswordException

isAuthorized

public boolean isAuthorized(javax.servlet.http.HttpServletRequest request,
                            org.codehaus.plexus.redback.system.SecuritySession securitySession,
                            java.lang.String repositoryId,
                            java.lang.String permission)
                     throws org.codehaus.plexus.redback.authorization.AuthorizationException,
                            org.codehaus.plexus.redback.authorization.UnauthorizedException

Description copied from interface: ServletAuthenticator

Authorization check for valid users.

Specified by:

isAuthorized in interface ServletAuthenticator

Returns:

Throws:

org.codehaus.plexus.redback.authorization.AuthorizationException

org.codehaus.plexus.redback.authorization.UnauthorizedException

isAuthorized

public boolean isAuthorized(java.lang.String principal,
                            java.lang.String repoId,
                            java.lang.String permission)
                     throws org.codehaus.plexus.redback.authorization.UnauthorizedException

Description copied from interface: ServletAuthenticator

Authorization check specific for user guest, which doesn't go through HttpBasicAuthentication#getAuthenticationResult( HttpServletRequest request, HttpServletResponse response ) since no credentials are attached to the request. See also MRM-911

Specified by:

isAuthorized in interface ServletAuthenticator

Returns:

Throws:

org.codehaus.plexus.redback.authorization.UnauthorizedException