@Deprecated public class CasRealm extends AuthorizingRealm
CasToken
(which essentially
wraps a CAS service ticket) and validates it against the CAS server using a configured CAS
TicketValidator
.
The validationProtocol
is CAS
by default, which indicates that a
a Cas20ServiceTicketValidator
will be used for ticket validation. You can alternatively set
or Saml11TicketValidator
of CAS client. It is based on
AuthorizingRealm
for both authentication and authorization. User id and attributes are retrieved from the CAS
service ticket validation response during authentication phase. Roles and permissions are computed during authorization phase (according
to the attributes previously retrieved).Modifier and Type | Field and Description |
---|---|
static String |
DEFAULT_REMEMBER_ME_ATTRIBUTE_NAME
Deprecated.
|
static String |
DEFAULT_VALIDATION_PROTOCOL
Deprecated.
|
Constructor and Description |
---|
CasRealm()
Deprecated.
|
Modifier and Type | Method and Description |
---|---|
protected org.jasig.cas.client.validation.TicketValidator |
createTicketValidator()
Deprecated.
|
protected AuthenticationInfo |
doGetAuthenticationInfo(AuthenticationToken token)
Deprecated.
Authenticates a user and retrieves its information.
|
protected AuthorizationInfo |
doGetAuthorizationInfo(PrincipalCollection principals)
Deprecated.
Retrieves the AuthorizationInfo for the given principals (the CAS previously authenticated user : id + attributes).
|
protected org.jasig.cas.client.validation.TicketValidator |
ensureTicketValidator()
Deprecated.
|
String |
getCasServerUrlPrefix()
Deprecated.
|
String |
getCasService()
Deprecated.
|
String |
getDefaultPermissions()
Deprecated.
|
String |
getDefaultRoles()
Deprecated.
|
String |
getPermissionAttributeNames()
Deprecated.
|
String |
getRememberMeAttributeName()
Deprecated.
|
String |
getRoleAttributeNames()
Deprecated.
|
String |
getValidationProtocol()
Deprecated.
|
protected void |
onInit()
Deprecated.
Initializes this realm and potentially enables a cache, depending on configuration.
|
void |
setCasServerUrlPrefix(String casServerUrlPrefix)
Deprecated.
|
void |
setCasService(String casService)
Deprecated.
|
void |
setDefaultPermissions(String defaultPermissions)
Deprecated.
|
void |
setDefaultRoles(String defaultRoles)
Deprecated.
|
void |
setPermissionAttributeNames(String permissionAttributeNames)
Deprecated.
|
void |
setRememberMeAttributeName(String rememberMeAttributeName)
Deprecated.
|
void |
setRoleAttributeNames(String roleAttributeNames)
Deprecated.
|
void |
setValidationProtocol(String validationProtocol)
Deprecated.
|
afterCacheManagerSet, checkPermission, checkPermission, checkPermission, checkPermissions, checkPermissions, checkPermissions, checkRole, checkRole, checkRoles, checkRoles, checkRoles, clearCachedAuthorizationInfo, doClearCache, getAuthorizationCache, getAuthorizationCacheKey, getAuthorizationCacheName, getAuthorizationInfo, getPermissionResolver, getPermissions, getRolePermissionResolver, hasAllRoles, hasRole, hasRole, hasRoles, hasRoles, isAuthorizationCachingEnabled, isPermitted, isPermitted, isPermitted, isPermitted, isPermitted, isPermitted, isPermittedAll, isPermittedAll, isPermittedAll, setAuthorizationCache, setAuthorizationCacheName, setAuthorizationCachingEnabled, setName, setPermissionResolver, setRolePermissionResolver
assertCredentialsMatch, clearCachedAuthenticationInfo, getAuthenticationCache, getAuthenticationCacheKey, getAuthenticationCacheKey, getAuthenticationCacheName, getAuthenticationInfo, getAuthenticationTokenClass, getCredentialsMatcher, init, isAuthenticationCachingEnabled, isAuthenticationCachingEnabled, setAuthenticationCache, setAuthenticationCacheName, setAuthenticationCachingEnabled, setAuthenticationTokenClass, setCredentialsMatcher, supports
clearCache, getAvailablePrincipal, getCacheManager, getName, isCachingEnabled, onLogout, setCacheManager, setCachingEnabled
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
init
public static final String DEFAULT_REMEMBER_ME_ATTRIBUTE_NAME
public static final String DEFAULT_VALIDATION_PROTOCOL
public CasRealm()
protected void onInit()
AuthorizingRealm
cache
property has been set, it will be
used to cache the AuthorizationInfo objects returned from AuthorizingRealm.getAuthorizationInfo(org.apache.shiro.subject.PrincipalCollection)
method invocations.
All future calls to getAuthorizationInfo
will attempt to use this cache first
to alleviate any potentially unnecessary calls to an underlying data store.cache
property has not been set,
the cacheManager
property will be checked.
If a cacheManager
has been set, it will be used to create an authorization
cache
, and this newly created cache which will be used as specified in #1.(org.apache.shiro.cache.Cache) cache
or cacheManager
properties are set, caching will be disabled and authorization look-ups will be delegated to
subclass implementations for each authorization check.onInit
in class AuthorizingRealm
protected org.jasig.cas.client.validation.TicketValidator ensureTicketValidator()
protected org.jasig.cas.client.validation.TicketValidator createTicketValidator()
protected AuthenticationInfo doGetAuthenticationInfo(AuthenticationToken token) throws AuthenticationException
doGetAuthenticationInfo
in class AuthenticatingRealm
token
- the authentication tokenAuthenticationInfo
object containing account data resulting from the
authentication ONLY if the lookup is successful (i.e. account exists and is valid, etc.)AuthenticationException
- if there is an error during authentication.protected AuthorizationInfo doGetAuthorizationInfo(PrincipalCollection principals)
doGetAuthorizationInfo
in class AuthorizingRealm
principals
- the primary identifying principals of the AuthorizationInfo that should be retrieved.SimpleAuthorizationInfo
public String getCasServerUrlPrefix()
public void setCasServerUrlPrefix(String casServerUrlPrefix)
public String getCasService()
public void setCasService(String casService)
public String getValidationProtocol()
public void setValidationProtocol(String validationProtocol)
public String getRememberMeAttributeName()
public void setRememberMeAttributeName(String rememberMeAttributeName)
public String getDefaultRoles()
public void setDefaultRoles(String defaultRoles)
public String getDefaultPermissions()
public void setDefaultPermissions(String defaultPermissions)
public String getRoleAttributeNames()
public void setRoleAttributeNames(String roleAttributeNames)
public String getPermissionAttributeNames()
public void setPermissionAttributeNames(String permissionAttributeNames)
Copyright © 2004–2020 The Apache Software Foundation. All rights reserved.