This project has retired. For details please refer to its Attic page.
ServletAuthenticator

org.apache.maven.archiva.security
Interface ServletAuthenticator

Package class diagram package ServletAuthenticator
All Known Implementing Classes:
ArchivaServletAuthenticator

public interface ServletAuthenticator


Method Summary
 boolean isAuthenticated(javax.servlet.http.HttpServletRequest request, org.codehaus.plexus.redback.authentication.AuthenticationResult result)
          Authentication check for users.
 boolean isAuthorized(javax.servlet.http.HttpServletRequest request, org.codehaus.plexus.redback.system.SecuritySession securitySession, java.lang.String repositoryId, java.lang.String permission)
          Authorization check for valid users.
 boolean isAuthorized(java.lang.String principal, java.lang.String repoId, java.lang.String permission)
          Authorization check specific for user guest, which doesn't go through HttpBasicAuthentication#getAuthenticationResult( HttpServletRequest request, HttpServletResponse response ) since no credentials are attached to the request.
 

Method Detail

isAuthenticated

boolean isAuthenticated(javax.servlet.http.HttpServletRequest request,
                        org.codehaus.plexus.redback.authentication.AuthenticationResult result)
                        throws org.codehaus.plexus.redback.authentication.AuthenticationException,
                               org.codehaus.plexus.redback.policy.AccountLockedException,
                               org.codehaus.plexus.redback.policy.MustChangePasswordException
Authentication check for users.

Parameters:
request -
result -
Returns:
Throws:
org.codehaus.plexus.redback.authentication.AuthenticationException
org.codehaus.plexus.redback.policy.AccountLockedException
org.codehaus.plexus.redback.policy.MustChangePasswordException

isAuthorized

boolean isAuthorized(javax.servlet.http.HttpServletRequest request,
                     org.codehaus.plexus.redback.system.SecuritySession securitySession,
                     java.lang.String repositoryId,
                     java.lang.String permission)
                     throws org.codehaus.plexus.redback.authorization.AuthorizationException,
                            org.codehaus.plexus.redback.authorization.UnauthorizedException
Authorization check for valid users.

Parameters:
request -
securitySession -
repositoryId -
isWriteRequest -
Returns:
Throws:
org.codehaus.plexus.redback.authorization.AuthorizationException
org.codehaus.plexus.redback.authorization.UnauthorizedException

isAuthorized

boolean isAuthorized(java.lang.String principal,
                     java.lang.String repoId,
                     java.lang.String permission)
                     throws org.codehaus.plexus.redback.authorization.UnauthorizedException
Authorization check specific for user guest, which doesn't go through HttpBasicAuthentication#getAuthenticationResult( HttpServletRequest request, HttpServletResponse response ) since no credentials are attached to the request. See also MRM-911

Parameters:
principal -
repoId -
isWriteRequest -
Returns:
Throws:
org.codehaus.plexus.redback.authorization.UnauthorizedException