|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface CasAuthoritiesPopulator
Populates the UserDetails
associated with a CAS authenticated
user.
CAS does not provide the authorities (roles) granted to a user. It merely
authenticates their identity. As the Acegi Security System for Spring needs
to know the authorities granted to a user in order to construct a valid
Authentication
object, implementations of this interface will
provide this information.
A UserDetails
is returned by implementations. The
UserDetails
must, at minimum, contain the username and
GrantedAuthority[]
objects applicable to the CAS-authenticated
user. Note that Acegi Security ignores the password and enabled/disabled
status of the UserDetails
because this is
authentication-related and should have been enforced by the CAS server. The
UserDetails
returned by implementations is stored in the
generated CasAuthenticationToken
, so additional properties
such as email addresses, telephone numbers etc can easily be stored.
Implementations should not perform any caching. They will only be called when a refresh is required.
Method Summary | |
---|---|
UserDetails |
getUserDetails(String casUserId)
Obtains the granted authorities for the specified user. |
Method Detail |
---|
UserDetails getUserDetails(String casUserId) throws AuthenticationException
May throw any
AuthenticationException
or return null
if the authorities are unavailable.
casUserId
- as obtained from the CAS validation service
AuthenticationException
- DOCUMENT ME!
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |