Class DigestAuthenticationEntryPoint
- All Implemented Interfaces:
org.springframework.beans.factory.InitializingBean
,org.springframework.core.Ordered
,AuthenticationEntryPoint
SecurityEnforcementFilter
to commence authentication via the
DigestAuthenticationFilter
.
The nonce sent back to the user agent will be valid for the period indicated by
setNonceValiditySeconds(int)
. By default this is 300 seconds. Shorter times
should be used if replay attacks are a major concern. Larger values can be used if
performance is a greater concern. This class correctly presents the
stale=true
header when the nonce has expired, so properly implemented user
agents will automatically renegotiate with a new nonce value (i.e. without presenting a
new password dialog box to the user).
-
Field Summary
Fields inherited from interface org.springframework.core.Ordered
HIGHEST_PRECEDENCE, LOWEST_PRECEDENCE
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionvoid
void
commence
(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, org.springframework.security.core.AuthenticationException authException) Commences an authentication scheme.getKey()
int
int
getOrder()
void
void
setNonceValiditySeconds
(int nonceValiditySeconds) void
setOrder
(int order) void
setRealmName
(String realmName)
-
Constructor Details
-
DigestAuthenticationEntryPoint
public DigestAuthenticationEntryPoint()
-
-
Method Details
-
getOrder
public int getOrder()- Specified by:
getOrder
in interfaceorg.springframework.core.Ordered
-
setOrder
public void setOrder(int order) -
afterPropertiesSet
public void afterPropertiesSet()- Specified by:
afterPropertiesSet
in interfaceorg.springframework.beans.factory.InitializingBean
-
commence
public void commence(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response, org.springframework.security.core.AuthenticationException authException) throws IOException Description copied from interface:AuthenticationEntryPoint
Commences an authentication scheme.ExceptionTranslationFilter
will populate theHttpSession
attribute namedAbstractAuthenticationProcessingFilter.SPRING_SECURITY_SAVED_REQUEST_KEY
with the requested target URL before calling this method.Implementations should modify the headers on the
ServletResponse
as necessary to commence the authentication process.- Specified by:
commence
in interfaceAuthenticationEntryPoint
- Parameters:
request
- that resulted in anAuthenticationException
response
- so that the user agent can begin authenticationauthException
- that caused the invocation- Throws:
IOException
-
getKey
-
getNonceValiditySeconds
public int getNonceValiditySeconds() -
getRealmName
-
setKey
-
setNonceValiditySeconds
public void setNonceValiditySeconds(int nonceValiditySeconds) -
setRealmName
-