org.pac4j.core.client

Class IndirectClient<C extends Credentials,U extends CommonProfile>

java.lang.Object

org.pac4j.core.util.InitializableObject

org.pac4j.core.client.BaseClient<C,U>

org.pac4j.core.client.IndirectClient<C,U>

All Implemented Interfaces:

Client<C,U>

Direct Known Subclasses:

CasClient, CasProxyReceptor, FormClient, GaeUserServiceClient, IndirectBasicAuthClient, IndirectKerberosClient, OAuth10Client, OAuth20Client, OidcClient, SAML2Client, YahooOpenIdClient

public abstract class IndirectClient<C extends Credentials,U extends CommonProfile>
extends BaseClient<C,U>

Indirect client: the requested protected URL is saved, the user is redirected to the identity provider for login and back to the application after the sucessful authentication and finally to the originally requested URL.

Since:

1.9.0

Author:

Jerome Leleu

Field Summary

Fields

Modifier and Type	Field and Description
static String	ATTEMPTED_AUTHENTICATION_SUFFIX
protected String	callbackUrl
protected CallbackUrlResolver	callbackUrlResolver
protected UrlResolver	urlResolver

Fields inherited from class org.pac4j.core.client.BaseClient

logger

Constructor Summary

Constructors

Constructor and Description
IndirectClient()

Method Summary

Modifier and Type	Method and Description
protected abstract void	clientInit() Initialize the client.
String	computeFinalCallbackUrl(WebContext context)
protected void	defaultLogoutActionBuilder(LogoutActionBuilder<U> logoutActionBuilder)
protected void	defaultRedirectActionBuilder(RedirectActionBuilder redirectActionBuilder)
AjaxRequestResolver	getAjaxRequestResolver()
String	getCallbackUrl()
CallbackUrlResolver	getCallbackUrlResolver()
C	getCredentials(WebContext context) Get the credentials from the web context.
RedirectAction	getLogoutAction(WebContext context, U currentProfile, String targetUrl) Return the logout action (indirect clients).
LogoutActionBuilder<U>	getLogoutActionBuilder()
RedirectAction	getRedirectAction(WebContext context) Get the redirectAction computed for this client.
RedirectActionBuilder	getRedirectActionBuilder()
UrlResolver	getUrlResolver()
protected void	internalInit() Internal initialization of the object.
protected CallbackUrlResolver	newDefaultCallbackUrlResolver()
HttpAction	redirect(WebContext context) Redirect to the authentication provider for an indirect client.
void	setAjaxRequestResolver(AjaxRequestResolver ajaxRequestResolver)
void	setCallbackUrl(String callbackUrl)
void	setCallbackUrlResolver(CallbackUrlResolver callbackUrlResolver)
void	setLogoutActionBuilder(LogoutActionBuilder<U> logoutActionBuilder)
void	setRedirectActionBuilder(RedirectActionBuilder redirectActionBuilder)
void	setUrlResolver(UrlResolver urlResolver)
String	toString()

Methods inherited from class org.pac4j.core.client.BaseClient

addAuthorizationGenerator, addAuthorizationGenerators, defaultAuthenticator, defaultCredentialsExtractor, defaultProfileCreator, getAuthenticator, getAuthorizationGenerators, getCredentialsExtractor, getCustomProperties, getName, getProfileCreator, getUserProfile, notifySessionRenewal, retrieveCredentials, retrieveUserProfile, setAuthenticator, setAuthorizationGenerator, setAuthorizationGenerators, setAuthorizationGenerators, setCredentialsExtractor, setCustomProperties, setName, setProfileCreator

Methods inherited from class org.pac4j.core.util.InitializableObject

init

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Detail

ATTEMPTED_AUTHENTICATION_SUFFIX

public static final String ATTEMPTED_AUTHENTICATION_SUFFIX

See Also:

Constant Field Values

callbackUrl

protected String callbackUrl

urlResolver

protected UrlResolver urlResolver

callbackUrlResolver

protected CallbackUrlResolver callbackUrlResolver

Constructor Detail

IndirectClient

public IndirectClient()

Method Detail

internalInit

protected final void internalInit()

Description copied from class: InitializableObject

Internal initialization of the object.

Specified by:

internalInit in class InitializableObject

newDefaultCallbackUrlResolver

protected CallbackUrlResolver newDefaultCallbackUrlResolver()

clientInit

protected abstract void clientInit()

Initialize the client.

redirect

public final HttpAction redirect(WebContext context)

Description copied from interface: Client

Redirect to the authentication provider for an indirect client.

Parameters:

context - the current web context

Returns:

the performed redirection

getRedirectAction

public RedirectAction getRedirectAction(WebContext context)

Get the redirectAction computed for this client. All the logic is encapsulated here. It should not be called be directly, the redirect(WebContext) should be generally called instead.

If an authentication has already been tried for this client and has failed (null credentials) or if the request is an AJAX one, an authorized response (401 HTTP status code) is returned instead of a redirection.

Parameters:

context - context

Returns:

the redirection action

getCredentials

public final C getCredentials(WebContext context)

Get the credentials from the web context. In some cases, a HttpAction may be thrown:

• if the CasClient receives a logout request, it returns a 200 HTTP status code
• for the IndirectBasicAuthClient, if no credentials are sent to the callback url, an unauthorized response (401 HTTP status code) is returned to request credentials through a popup.

Parameters:

context - the current web context

Returns:

the credentials

getLogoutAction

public final RedirectAction getLogoutAction(WebContext context,
                                            U currentProfile,
                                            String targetUrl)

Description copied from interface: Client

Return the logout action (indirect clients).

Parameters:

context - the current web context

currentProfile - the currentProfile

targetUrl - the target url after logout

Returns:

the redirection

computeFinalCallbackUrl

public String computeFinalCallbackUrl(WebContext context)

setCallbackUrl

public void setCallbackUrl(String callbackUrl)

getCallbackUrl

public String getCallbackUrl()

getUrlResolver

public UrlResolver getUrlResolver()

setUrlResolver

public void setUrlResolver(UrlResolver urlResolver)

getCallbackUrlResolver

public CallbackUrlResolver getCallbackUrlResolver()

setCallbackUrlResolver

public void setCallbackUrlResolver(CallbackUrlResolver callbackUrlResolver)

getAjaxRequestResolver

public AjaxRequestResolver getAjaxRequestResolver()

setAjaxRequestResolver

public void setAjaxRequestResolver(AjaxRequestResolver ajaxRequestResolver)

getRedirectActionBuilder

public RedirectActionBuilder getRedirectActionBuilder()

defaultRedirectActionBuilder

protected void defaultRedirectActionBuilder(RedirectActionBuilder redirectActionBuilder)

getLogoutActionBuilder

public LogoutActionBuilder<U> getLogoutActionBuilder()

defaultLogoutActionBuilder

protected void defaultLogoutActionBuilder(LogoutActionBuilder<U> logoutActionBuilder)

setRedirectActionBuilder

public void setRedirectActionBuilder(RedirectActionBuilder redirectActionBuilder)

setLogoutActionBuilder

public void setLogoutActionBuilder(LogoutActionBuilder<U> logoutActionBuilder)

toString

public String toString()

Overrides:

toString in class BaseClient<C extends Credentials,U extends CommonProfile>