All Classes and Interfaces

Class	Description
AbstractLoginService	AbstractLoginService Base class for LoginServices that allows subclasses to provide the user authentication and authorization information, but provides common behaviour such as handling authentication.
AbstractUserAuthentication	AbstractUserAuthentication Base class for representing an authenticated user.
Authenticator	Authenticator Interface
Authenticator.AuthConfiguration	Authenticator Configuration
Authenticator.Factory	Authenticator Factory
AuthorizationService	A service to query for user roles.
BasicAuthenticator
ClientCertAuthenticator	Deprecated. Prefer using SslClientCertAuthenticator
ConfigurableSpnegoAuthenticator	A LoginAuthenticator that uses SPNEGO and the GSS API to authenticate requests.
ConfigurableSpnegoLoginService	A configurable (as opposed to using system properties) SPNEGO LoginService.
ConstraintAware
ConstraintMapping
ConstraintSecurityHandler	ConstraintSecurityHandler
DefaultAuthenticatorFactory	The Default Authenticator Factory.
DefaultIdentityService	Default Identity Service implementation.
DefaultUserIdentity	The default implementation of UserIdentity.
DeferredAuthentication
DigestAuthenticator	The nonce max age in ms can be set with the SecurityHandler.setInitParameter(String, String) using the name "maxNonceAge".
EmptyLoginService	LoginService implementation which always denies any attempt to login.
FormAuthenticator	FORM Authenticator.
FormAuthenticator.FormAuthentication	This Authentication represents a just completed Form authentication.
FormAuthenticator.FormRequest
FormAuthenticator.FormResponse
HashLoginService	An implementation of a LoginService that stores users and roles in-memory in HashMaps.
IdentityService	Associates UserIdentities from with threads and UserIdentity.Contexts.
JDBCLoginService	JDBC as a source of user authentication and authorization information.
LoggedOutAuthentication	LoggedOutAuthentication An Authentication indicating that a user has been previously, but is not currently logged in, but may be capable of logging in after a call to Request.login(String,String)
LoginAuthenticator
LoginCallback	This is similar to the jaspi PasswordValidationCallback but includes user principal and group info as well.
LoginCallbackImpl	This is similar to the jaspi PasswordValidationCallback but includes user principal and group info as well.
LoginService	Login Service Interface.
PropertyUserStore	This class monitors a property file of the format mentioned below and notifies registered listeners of the changes to the the given file.
PropertyUserStore.UserListener
RoleInfo	RoleInfo Badly named class that holds the role and user data constraint info for a path/http method combination, extracted and combined from security constraints.
RolePrincipal	RolePrincipal Represents a role.
RoleRunAsToken
RunAsToken	marker interface for run-as-role tokens
SecurityHandler	Abstract SecurityHandler.
ServerAuthException
SessionAuthentication	SessionAuthentication When a user has been successfully authenticated with some types of Authenticator, the Authenticator stashes a SessionAuthentication into an HttpSession to remember that the user is authenticated.
SpnegoUserIdentity
SpnegoUserPrincipal
SslClientCertAuthenticator	CLIENT-CERT authenticator.
UserAuthentication
UserDataConstraint
UserPrincipal	UserPrincipal Represents a user with a credential.
UserStore	Store of user authentication and authorization information.
WrappedAuthConfiguration	A wrapper for Authenticator.AuthConfiguration.