| Note |
|---|
| icon | false |
|---|
| title | HttpServletRequest |
|---|
| An HttpServletRequest addressed to the Logon Controller representing a request for authentication. |
enters the | Warning |
|---|
| icon | false |
|---|
| title | Logon Controller |
|---|
| Controller which examines the request and applies some logic. |
Logon controller applies an | Tip |
|---|
| icon | false |
|---|
| title | AuthenticationRequestBinder |
|---|
| Translates from an HttpServletRequest to an AuthenticationRequest. | Code Block |
|---|
/**
* Interface for components that know how to extract from HttpServletRequest
* whatever it is that constitutes actual arguments of the request for authentication.
*/
public interface AuthenticationRequestBinder {
/**
* Parse an HttpServletRequest and extract from it whatever it is that is necessary as input to the AuthenticationHandler
* which will examine the request for authentication represented by the HttpServletRequest. Return an Object
* encapsulating that extracted information. Specific implementations will return specific objects which in turn specific
* AuthenticationHandler implementations will expect and consume.
* @returns an object representing the relevant information for the authentication request
* @throws RuntimeException - indicates failure
*/
Object authenticationRequestFromHttpServletRequest(HttpServletRequest httpServletRequest);
}
|
|
Once the Logon Controller has applied its AuthenticationRequestBinder, it has an AuthenticationRequest in hand. It then passes that AuthenticationRequest to an AuthenticationHandler (or it passes it more generally into the CAS engine, which will return a TicketGrantingTicket, a Cookie representation of which the Logon Controller will then store back into the user's browser. The purpose of this page is to explore the path of the AuthenticationRequest more than to nail down exactly the Logon Controller implementation). |