|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object egovframework.rfc3.iam.security.authentication.NullRememberMeServices
public class NullRememberMeServices
Implementation of NullRememberMeServices
that does nothing.
Used as a default by several framework classes.
Constructor Summary | |
---|---|
NullRememberMeServices()
|
Method Summary | |
---|---|
org.springframework.security.core.Authentication |
autoLogin(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
This method will be called whenever the SecurityContextHolder does not contain an
Authentication object and Spring Security wishes to provide an implementation with an
opportunity to authenticate the request using remember-me capabilities. |
void |
loginFail(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
Called whenever an interactive authentication attempt was made, but the credentials supplied by the user were missing or otherwise invalid. |
void |
loginSuccess(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
org.springframework.security.core.Authentication successfulAuthentication)
Called whenever an interactive authentication attempt is successful. |
org.springframework.security.core.Authentication |
onCookiesValidate(java.lang.String cookieName,
javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
생성된 인증 쿠기 유효 여부 및 실시간 업데이트 하기 |
Methods inherited from class java.lang.Object |
---|
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public NullRememberMeServices()
Method Detail |
---|
public org.springframework.security.core.Authentication autoLogin(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
RFC3RememberMeServices
SecurityContextHolder
does not contain an
Authentication
object and Spring Security wishes to provide an implementation with an
opportunity to authenticate the request using remember-me capabilities. Spring Security makes no attempt
whatsoever to determine whether the browser has requested remember-me services or presented a valid cookie.
Such determinations are left to the implementation. If a browser has presented an unauthorised cookie for
whatever reason, it should be silently ignored and invalidated using the HttpServletResponse
object.
The returned Authentication
must be acceptable to
AuthenticationManager
or
AuthenticationProvider
defined by the web application.
It is recommended RememberMeAuthenticationToken
be
used in most cases, as it has a corresponding authentication provider.
autoLogin
in interface RFC3RememberMeServices
request
- to look for a remember-me token withinresponse
- to change, cancel or modify the remember-me token
null
if the request should not be authenticatedpublic org.springframework.security.core.Authentication onCookiesValidate(java.lang.String cookieName, javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
RFC3RememberMeServices
onCookiesValidate
in interface RFC3RememberMeServices
public void loginFail(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
RFC3RememberMeServices
HttpServletRequest
.
loginFail
in interface RFC3RememberMeServices
request
- that contained an invalid authentication requestresponse
- to change, cancel or modify the remember-me tokenpublic void loginSuccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.springframework.security.core.Authentication successfulAuthentication)
RFC3RememberMeServices
HttpServletResponse
, although this is not recommended. Instead,
implementations should typically look for a request parameter that indicates the browser has presented an
explicit request for authentication to be remembered, such as the presence of a HTTP POST parameter.
loginSuccess
in interface RFC3RememberMeServices
request
- that contained the valid authentication requestresponse
- to change, cancel or modify the remember-me tokensuccessfulAuthentication
- representing the successfully authenticated principal
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |