public interface PostAuthenticationFilter
For example, such a custom filter can be used to prevent users from logging in from multiple client computers at the same time, or making sure that clients only can login from authorized computers by checking the client computers' IP numbers.
It can also be used to perform some kind of identity transformation, for example when the login identifier differs from the application identity.
May be combined with username/password authentication and a custom login page if some additional information (besides the username and the password) needs to be collected from the user and validated or logged.
Modifier and Type | Method and Description |
---|---|
SecurityContext |
filter(SecurityContext securityContext,
AuthenticationContext authContext)
Applies a post authentication filter on the provided
SecurityContext argument. |
void |
setConfiguration(java.lang.String configuration)
Set the configuration to be used when performing post
authentication filtering.
|
void setConfiguration(java.lang.String configuration) throws PostAuthenticationFilterException
PostAuthenticationFilter
implementation. For
example, it could be a configuration name, a filename or a
key/value pair.configuration
- the configurationPostAuthenticationFilterException
- if an error occurs setting the configurationSecurityContext filter(SecurityContext securityContext, AuthenticationContext authContext)
SecurityContext
argument. If an authenticated user
should be blocked by the filter, the filter should return
null
. If a transformation is made, the provided
SecurityContext
argument should be wrapped.securityContext
- the SecurityContext
object to be filteredauthContext
- the context in which the authentication takes placeSecurityContext
value, or
null
when the authentication attempt is blockedCopyright © 2000-2020 TIBCO Software Inc. All Rights Reserved.