Package org.apache.sling.auth.core.spi
@Version("1.2.3")
package org.apache.sling.auth.core.spi
Provides API to be implemented by provides of authentication
mechanisms. The most important interface (and service definition) is
the
AuthenticationHandler
interface with the
AbstractAuthenticationHandler
being an abstract base implementation from which concrete
implementations may inherit.- Version:
- 1.2.3
-
ClassDescriptionThe
AbstractAuthenticationFormServletprovides a basic implementation of a simple servlet to render a login form for authentication purposes.Deprecated.TheAuthenticationFeedbackHandlermay be implemented byAuthenticationHandlerservices to request being informed on the success or failure of authentication.TheAuthenticationHandlerinterface defines the service API used by the authentication implementation to support plugin various ways of extracting credentials from the request.This enum indicates the supported detailed login failure reason codes:invalid_login: indicates username/password mismatch.password_expired: indicates password has expired or was never set and change initial password is enabledaccount_locked: the account was disabled or lockedaccount_not_found: the account was not found (not the same as username password mismatch)expired_token: the token credentials used have expiredTheAuthenticationInfoconveys any authentication credentials and/or details extracted by theAuthenticationHandler.extractCredentials(javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse)method from the request.Service interface which allows bundles to modify theAuthenticationInfoobject right after oneAuthenticationHandlerhas returned an {AuthenticationInfofrom theAuthenticationHandler.extractCredentials(HttpServletRequest, HttpServletResponse)method or an anonymousAuthenticationInfohas been created.
AuthenticationHandlerimplementations should extendDefaultAuthenticationFeedbackHandlerdirectly and use the utility methods in theAuthUtilclass.