Package org.springframework.security.openid

Class OpenIDAuthenticationProvider

  • All Implemented Interfaces:
    org.springframework.beans.factory.InitializingBean, org.springframework.security.authentication.AuthenticationProvider
    @Deprecated
public class OpenIDAuthenticationProvider
extends java.lang.Object
implements org.springframework.security.authentication.AuthenticationProvider, org.springframework.beans.factory.InitializingBean
    Deprecated.
    The OpenID 1.0 and 2.0 protocols have been deprecated and users are encouraged to migrate to OpenID Connect, which is supported by spring-security-oauth2.
    Finalises the OpenID authentication by obtaining local authorities for the authenticated user.

    The authorities are obtained by calling the configured UserDetailsService. The UserDetails it returns must, at minimum, contain the username and GrantedAuthority objects applicable to the authenticated user. Note that by default, Spring Security ignores the password and enabled/disabled status of the UserDetails because this is authentication-related and should have been enforced by another provider server.

    The UserDetails returned by implementations is stored in the generated Authentication token, so additional properties such as email addresses, telephone numbers etc can easily be stored.

    • Method Summary

      All Methods Instance Methods Concrete Methods Deprecated Methods 
      Modifier and Type Method Description
      void afterPropertiesSet()
      Deprecated.
       
      org.springframework.security.core.Authentication authenticate​(org.springframework.security.core.Authentication authentication)
      Deprecated.
       
      protected org.springframework.security.core.Authentication createSuccessfulAuthentication​(org.springframework.security.core.userdetails.UserDetails userDetails, OpenIDAuthenticationToken auth)
      Deprecated.
      Handles the creation of the final Authentication object which will be returned by the provider.
      void setAuthenticationUserDetailsService​(org.springframework.security.core.userdetails.AuthenticationUserDetailsService<OpenIDAuthenticationToken> userDetailsService)
      Deprecated.
      Used to load the UserDetails for the authenticated OpenID user.
      void setAuthoritiesMapper​(org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper authoritiesMapper)
      Deprecated.
       
      void setUserDetailsService​(org.springframework.security.core.userdetails.UserDetailsService userDetailsService)
      Deprecated.
      Used to load the UserDetails for the authenticated OpenID user.
      boolean supports​(java.lang.Class<?> authentication)
      Deprecated.
       

      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    • Constructor Detail

      • OpenIDAuthenticationProvider

        public OpenIDAuthenticationProvider()
        Deprecated.

    • Method Detail

      • afterPropertiesSet

        public void afterPropertiesSet()
        Deprecated.
        Specified by:
        afterPropertiesSet in interface org.springframework.beans.factory.InitializingBean

      • authenticate

        public org.springframework.security.core.Authentication authenticate​(org.springframework.security.core.Authentication authentication)
                                                              throws org.springframework.security.core.AuthenticationException
        Deprecated.
        Specified by:
        authenticate in interface org.springframework.security.authentication.AuthenticationProvider
        Throws:
        org.springframework.security.core.AuthenticationException

      • createSuccessfulAuthentication

        protected org.springframework.security.core.Authentication createSuccessfulAuthentication​(org.springframework.security.core.userdetails.UserDetails userDetails,
                                                                                          OpenIDAuthenticationToken auth)
        Deprecated.
        Handles the creation of the final Authentication object which will be returned by the provider.

        The default implementation just creates a new OpenIDAuthenticationToken from the original, but with the UserDetails as the principal and including the authorities loaded by the UserDetailsService.

        Parameters:
        userDetails - the loaded UserDetails object
        auth - the token passed to the authenticate method, containing
        Returns:
        the token which will represent the authenticated user.

      • setUserDetailsService

        public void setUserDetailsService​(org.springframework.security.core.userdetails.UserDetailsService userDetailsService)
        Deprecated.
        Used to load the UserDetails for the authenticated OpenID user.

      • setAuthenticationUserDetailsService

        public void setAuthenticationUserDetailsService​(org.springframework.security.core.userdetails.AuthenticationUserDetailsService<OpenIDAuthenticationToken> userDetailsService)
        Deprecated.
        Used to load the UserDetails for the authenticated OpenID user.

      • supports

        public boolean supports​(java.lang.Class<?> authentication)
        Deprecated.
        Specified by:
        supports in interface org.springframework.security.authentication.AuthenticationProvider

      • setAuthoritiesMapper

        public void setAuthoritiesMapper​(org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper authoritiesMapper)
        Deprecated.