All Classes and Interfaces
Class
Description
AbstractLoginService
Base class for LoginServices that allows subclasses to provide the user authentication and authorization information,
but provides common behaviour such as handling authentication.
The Authentication state of a request.
Authentication is Deferred, either so that credentials can later be passed
with
AuthenticationState.login(String, String, Request, Response); or that existing
credentials on the request may be validated with AuthenticationState.Deferred.authenticate(Request);
or an authentication dialog can be advanced with AuthenticationState.Deferred.authenticate(Request, Response, Callback).A tag interface used to identify a
Response that might be passed to
Authenticator.validateRequest(Request, Response, Callback) while
doing deferred authentication when a challenge cannot be sent.Authentication Response sent state.
The
SecurityHandler will use this to wrap the Request.A successful Authentication with User information.
Authenticator Interface
Authenticator Configuration
Authenticator Factory
A Security constraint that is applied to a request, which contain:
A name
Authorization to specify if authentication is needed and what roles are applicable
An optional list of role names used for
Constraint.Authorization.KNOWN_ROLE
A Transport constraint, indicating if it must be secure or not.
The Authorization applied to any authentication of the request/
Builder for Constraint.
The constraints requirement for the transport
The Default Authenticator Factory.
The default
IdentityService, which creates and uses DefaultUserIdentitys.The nonce max age in ms can be set with the
SecurityHandler.setParameter(String, String)
using the name "maxNonceAge".LoginService implementation which always denies any attempt to login.
FORM Authenticator.
An implementation of a LoginService that stores users and roles in-memory in HashMaps.
Associates UserIdentities from with threads and UserIdentity.Contexts.
An association between an identity and the current thread that can be terminated by
IdentityService.Association.close().An opaque token created by
IdentityService.newRunAsToken(String) and used by IdentityService.associate(UserIdentity, RunAsToken)Implementation of jetty's LoginService that works with JAAS for
authorization and authentication.
JAASPrincipal
JAASUserPrincipal
JDBC as a source of user authentication and authorization information.
A UserPrincipal with extra jdbc key info.
This Authentication represents a just completed authentication, that has sent a response, typically to
redirect the client to the original request target..
Base class for representing a successful authentication state.
Login Service Interface.
This class monitors a property file of the format mentioned below
and notifies registered listeners of the changes to the the given file.
PropertyUserStoreManager
Maintains a map of PropertyUserStores, keyed off the location of the property file containing
the authentication and authorization information.
RolePrincipal
Represents a role.
Abstract SecurityHandler.
A concrete implementation of
SecurityHandler that uses a PathMappings to
match request to a list of Constraints, which are applied in the order of
least significant to most significant.A server specific Authentication or Authorization exception.
SessionAuthentication
When a user has been successfully authenticated with some types
of Authenticator, the Authenticator stashes a SessionAuthentication
into an HttpSession to remember that the user is authenticated.
A LoginAuthenticator that uses SPNEGO and the GSS API to authenticate requests.
A configurable (as opposed to using system properties) SPNEGO LoginService.
CLIENT-CERT authenticator.
User object that encapsulates user identity and operations such as run-as-role actions,
checking isUserInRole and getUserPrincipal.
UserPrincipal
Represents a user with a credential.
Store of user authentication and authorization information.