public class ContainerBasedAuthenticationProvider extends Object implements AuthenticationProvider
Constructor and Description |
---|
ContainerBasedAuthenticationProvider() |
Modifier and Type | Method and Description |
---|---|
void |
augmentResponseByAuthenticationChallenge(javax.servlet.http.HttpServletResponse response,
ProcessEngine engine)
Callback to add an authentication challenge to the response to the client.
|
AuthenticationResult |
extractAuthenticatedUser(javax.servlet.http.HttpServletRequest request,
ProcessEngine engine)
Checks the request for authentication.
|
public ContainerBasedAuthenticationProvider()
public AuthenticationResult extractAuthenticatedUser(javax.servlet.http.HttpServletRequest request, ProcessEngine engine)
AuthenticationProvider
AuthenticationResult
that indicates, whether authentication was
successful, and, if true, always provides the authenticated user.
The result can only be successful if a valid user id was provided in the
request. It is not required to provide the group or tenant id, as they will
be resolved via the IdentityService
(e.g.
ProcessEngineAuthenticationFilter.setAuthenticatedUser(org.camunda.bpm.engine.ProcessEngine, java.lang.String, java.util.List<java.lang.String>, java.util.List<java.lang.String>)
).extractAuthenticatedUser
in interface AuthenticationProvider
request
- the request to authenticateengine
- the process engine the request addresses. May be used to
authenticate against the engine's identity service.public void augmentResponseByAuthenticationChallenge(javax.servlet.http.HttpServletResponse response, ProcessEngine engine)
AuthenticationProvider
Callback to add an authentication challenge to the response to the client. Called in case of unsuccessful authentication.
For example, a Http Basic auth implementation may set the WWW-Authenticate header to Basic realm="engine name"
.
augmentResponseByAuthenticationChallenge
in interface AuthenticationProvider
engine
- the process engine the request addressed. May be considered as an authentication realm to create a specific authentication
challengeCopyright © 2022. All rights reserved.