Package com.evolveum.midpoint.authentication.api.evaluator

Interface AuthenticationEvaluator<T extends AbstractAuthenticationContext,A extends org.springframework.security.core.Authentication>

public interface AuthenticationEvaluator<T extends AbstractAuthenticationContext,A extends org.springframework.security.core.Authentication>

Evaluator which checks credentials of identity and return authenticated data about authenticated identity.

Author:

semancik

Method Summary

Modifier and Type	Method	Description
A	authenticate(ConnectionEnvironment connEnv, T authnCtx)	Checks credentials of identity and create token with MidPointPrincipal of authenticated identity.

Method Details

authenticate

A authenticate(ConnectionEnvironment connEnv,
 T authnCtx)
        throws org.springframework.security.authentication.BadCredentialsException,
org.springframework.security.authentication.AuthenticationCredentialsNotFoundException,
org.springframework.security.authentication.DisabledException,
org.springframework.security.authentication.LockedException,
org.springframework.security.authentication.CredentialsExpiredException,
org.springframework.security.authentication.AuthenticationServiceException,
org.springframework.security.access.AccessDeniedException,
org.springframework.security.core.userdetails.UsernameNotFoundException

Checks credentials of identity and create token with MidPointPrincipal of authenticated identity.

Parameters:

connEnv - Properties of connection environment

authnCtx - Authentication context of type AbstractAuthenticationContext, which contains data needed for authentication of identity.

Returns:

token with MidPointPrincipal

Throws:

org.springframework.security.authentication.BadCredentialsException - when was set wrong authentication data

org.springframework.security.authentication.AuthenticationCredentialsNotFoundException - when object found by authentication identifier not contains credentials

org.springframework.security.authentication.DisabledException - when object found by authentication identifier is disabled

org.springframework.security.authentication.LockedException - when object found by authentication identifier is locked

org.springframework.security.authentication.CredentialsExpiredException - when object found by authentication identifier was expired credentials

org.springframework.security.authentication.AuthenticationServiceException - when occur some internal server error during authentication

org.springframework.security.access.AccessDeniedException - when object found by authentication identifier is unauthorized

org.springframework.security.core.userdetails.UsernameNotFoundException - when object not found by authentication identifier