blue.hive.security.authentication

Class BHiveDaoAuthenticationProvider

java.lang.Object

org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider

blue.hive.security.authentication.BHiveDaoAuthenticationProvider

All Implemented Interfaces:

org.springframework.beans.factory.Aware, org.springframework.beans.factory.InitializingBean, org.springframework.context.MessageSourceAware, org.springframework.security.authentication.AuthenticationProvider

public class BHiveDaoAuthenticationProvider
extends org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider

DAO를 통한 인증 프로바이더 org.springframework.security.authentication.dao.DaoAuthenticationProvider을 수정 - deprecated된 org.springframework.security.authentication.encoding.PasswordEncoder를 org.springframework.security.crypto.password.PasswordEncoder 계열로 변경 - 기본 인코더를 PlaintextPasswordEncoder에서 NoOpPasswordEncoder로 변경 - 불필요 Salt 관리 제거 필요시 additionalAuthenticationChecks에 추가로직 구현 원하는 추가 예외를 Throw 처리 가능 An AuthenticationProvider implementation that retrieves user details from a UserDetailsService.

Author:

DongMan Kwon dmkwon@intellicode.co.kr

Field Summary

Fields inherited from class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider

hideUserNotFoundExceptions, logger, messages

Constructor Summary

Constructors

Constructor and Description
BHiveDaoAuthenticationProvider()

Method Summary

Modifier and Type	Method and Description
protected void	additionalAuthenticationChecks(org.springframework.security.core.userdetails.UserDetails userDetails, org.springframework.security.authentication.UsernamePasswordAuthenticationToken authentication)
protected void	doAfterPropertiesSet()
protected org.springframework.security.crypto.password.PasswordEncoder	getPasswordEncoder()
protected org.springframework.security.core.userdetails.UserDetailsService	getUserDetailsService()
protected org.springframework.security.core.userdetails.UserDetails	retrieveUser(String username, org.springframework.security.authentication.UsernamePasswordAuthenticationToken authentication)
void	setPasswordEncoder(Object passwordEncoder) Sets the PasswordEncoder instance to be used to encode and validate passwords.
void	setUserDetailsService(org.springframework.security.core.userdetails.UserDetailsService userDetailsService)

Methods inherited from class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider

afterPropertiesSet, authenticate, createSuccessAuthentication, getPostAuthenticationChecks, getPreAuthenticationChecks, getUserCache, isForcePrincipalAsString, isHideUserNotFoundExceptions, setAuthoritiesMapper, setForcePrincipalAsString, setHideUserNotFoundExceptions, setMessageSource, setPostAuthenticationChecks, setPreAuthenticationChecks, setUserCache, supports

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

BHiveDaoAuthenticationProvider

public BHiveDaoAuthenticationProvider()

Method Detail

additionalAuthenticationChecks

protected void additionalAuthenticationChecks(org.springframework.security.core.userdetails.UserDetails userDetails,
                                              org.springframework.security.authentication.UsernamePasswordAuthenticationToken authentication)
                                       throws org.springframework.security.core.AuthenticationException

Specified by:

additionalAuthenticationChecks in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider

Throws:

org.springframework.security.core.AuthenticationException

doAfterPropertiesSet

protected void doAfterPropertiesSet()
                             throws Exception

Overrides:

doAfterPropertiesSet in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider

Throws:

Exception

retrieveUser

protected final org.springframework.security.core.userdetails.UserDetails retrieveUser(String username,
                                                                                       org.springframework.security.authentication.UsernamePasswordAuthenticationToken authentication)
                                                                                throws org.springframework.security.core.AuthenticationException

Specified by:

retrieveUser in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider

Throws:

org.springframework.security.core.AuthenticationException

setPasswordEncoder

public void setPasswordEncoder(Object passwordEncoder)

Sets the PasswordEncoder instance to be used to encode and validate passwords. If not set, the password will be compared as plain text.

For systems which are already using salted password which are encoded with a previous release, the encoder should be of type org.springframework.security.authentication.encoding.PasswordEncoder . Otherwise, the recommended approach is to use org.springframework.security.crypto.password.PasswordEncoder.

Parameters:

passwordEncoder - must be an instance of one of the PasswordEncoder types.

getPasswordEncoder

protected org.springframework.security.crypto.password.PasswordEncoder getPasswordEncoder()

setUserDetailsService

public void setUserDetailsService(org.springframework.security.core.userdetails.UserDetailsService userDetailsService)

getUserDetailsService

protected org.springframework.security.core.userdetails.UserDetailsService getUserDetailsService()