...
- The authentication JSP and authentication service class retrieve the claimed identity of the person performing the authentication, instantiate a class implementing the "Principal" interface, acquire the claimed user's credentials and use them to instantiate a class implementing the "OpaqueCredentials" interface.
- A class implementing the interface "SecurityContext" will be instantiated and a method with the signature:
is executed.Code Block title SecurityContext void authenticate(Principal, OpaqueCredentials);
- A method with the signature:
boolean isAuthenticated();
is executed and if the result is "true", then the layout object and the individual channels for the portal session are instantiated. The choice of security provider is derived from a properties file. Secondary security contexts may be registered in a chain off the initial "SecurityContext" object. - The parent SecurityContext channel iterates through the chained security context objects and call the authenticate() method of each.
...