Class SslClientCertAuthenticator
- java.lang.Object
-
- org.eclipse.jetty.security.authentication.LoginAuthenticator
-
- org.eclipse.jetty.security.authentication.SslClientCertAuthenticator
-
- All Implemented Interfaces:
Authenticator
public class SslClientCertAuthenticator extends LoginAuthenticator
CLIENT-CERT authenticator.This
Authenticatorimplements client certificate authentication. The client certificates available in the request will be verified against the configuredSslContextFactoryinstance
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from interface org.eclipse.jetty.security.Authenticator
Authenticator.AuthConfiguration, Authenticator.Factory
-
-
Field Summary
-
Fields inherited from class org.eclipse.jetty.security.authentication.LoginAuthenticator
_identityService, _loginService
-
-
Constructor Summary
Constructors Constructor Description SslClientCertAuthenticator(SslContextFactory sslContextFactory)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description java.lang.StringgetAuthMethod()booleanisValidateCerts()booleansecureResponse(javax.servlet.ServletRequest req, javax.servlet.ServletResponse res, boolean mandatory, Authentication.User validatedUser)is response securevoidsetValidateCerts(boolean validateCerts)AuthenticationvalidateRequest(javax.servlet.ServletRequest req, javax.servlet.ServletResponse res, boolean mandatory)Validate a request-
Methods inherited from class org.eclipse.jetty.security.authentication.LoginAuthenticator
getLoginService, login, logout, prepareRequest, renewSession, setConfiguration
-
-
-
-
Constructor Detail
-
SslClientCertAuthenticator
public SslClientCertAuthenticator(SslContextFactory sslContextFactory)
-
-
Method Detail
-
getAuthMethod
public java.lang.String getAuthMethod()
- Returns:
- The name of the authentication method
-
validateRequest
public Authentication validateRequest(javax.servlet.ServletRequest req, javax.servlet.ServletResponse res, boolean mandatory) throws ServerAuthException
Description copied from interface:AuthenticatorValidate a request- Parameters:
req- The requestres- The responsemandatory- True if authentication is mandatory.- Returns:
- An Authentication. If Authentication is successful, this will be a
Authentication.User. If a response has been sent by the Authenticator (which can be done for both successful and unsuccessful authentications), then the result will implementAuthentication.ResponseSent. If Authentication is not mandatory, then aAuthentication.Deferredmay be returned. - Throws:
ServerAuthException- if unable to validate request
-
secureResponse
public boolean secureResponse(javax.servlet.ServletRequest req, javax.servlet.ServletResponse res, boolean mandatory, Authentication.User validatedUser) throws ServerAuthExceptionDescription copied from interface:Authenticatoris response secure- Parameters:
req- the requestres- the responsemandatory- if security is mandatorvalidatedUser- the user that was validated- Returns:
- true if response is secure
- Throws:
ServerAuthException- if unable to test response
-
isValidateCerts
public boolean isValidateCerts()
- Returns:
- true if SSL certificate has to be validated.
-
setValidateCerts
public void setValidateCerts(boolean validateCerts)
- Parameters:
validateCerts- true if SSL certificates have to be validated.
-
-