@Deprecated public class CasFilter extends AuthenticatingFilter
shiro.ini
:
[main] casFilter = org.apache.shiro.cas.CasFilter ... [urls] /shiro-cas = casFilter ...(example : http://host:port/mycontextpath/shiro-cas)
PERMISSIVE
DEFAULT_SUCCESS_URL
DEFAULT_LOGIN_URL, GET_METHOD, POST_METHOD
appliedPaths, pathMatcher
ALREADY_FILTERED_SUFFIX
filterConfig
Constructor and Description |
---|
CasFilter()
Deprecated.
|
Modifier and Type | Method and Description |
---|---|
protected AuthenticationToken |
createToken(ServletRequest request,
ServletResponse response)
Deprecated.
The token created for this authentication is a CasToken containing the CAS service ticket received on the CAS service url (on which
the filter must be configured).
|
protected boolean |
isAccessAllowed(ServletRequest request,
ServletResponse response,
Object mappedValue)
Deprecated.
Returns
false to always force authentication (user is never considered authenticated by this filter). |
protected boolean |
onAccessDenied(ServletRequest request,
ServletResponse response)
Deprecated.
Execute login by creating
token and logging subject
with this token. |
protected boolean |
onLoginFailure(AuthenticationToken token,
AuthenticationException ae,
ServletRequest request,
ServletResponse response)
Deprecated.
If login has failed, redirect user to the CAS error page (no ticket or ticket validation failed) except if the user is already
authenticated, in which case redirect to the default success url.
|
protected boolean |
onLoginSuccess(AuthenticationToken token,
Subject subject,
ServletRequest request,
ServletResponse response)
Deprecated.
If login has been successful, redirect user to the original protected url.
|
void |
setFailureUrl(String failureUrl)
Deprecated.
|
cleanup, createToken, createToken, executeLogin, getHost, isPermissive, isRememberMe
getSuccessUrl, issueSuccessRedirect, setSuccessUrl
getLoginUrl, getSubject, isLoginRequest, onAccessDenied, onPreHandle, redirectToLogin, saveRequest, saveRequestAndRedirectToLogin, setLoginUrl
getPathWithinApplication, isEnabled, pathsMatch, pathsMatch, preHandle, processPathConfig
afterCompletion, doFilterInternal, executeChain, postHandle
doFilter, getAlreadyFilteredAttributeName, isEnabled, isEnabled, setEnabled, shouldNotFilter
getName, setName, toStringBuilder
destroy, getFilterConfig, getInitParam, init, onFilterConfigSet, setFilterConfig
getContextAttribute, getContextInitParam, getServletContext, removeContextAttribute, setContextAttribute, setServletContext, toString
public CasFilter()
protected AuthenticationToken createToken(ServletRequest request, ServletResponse response) throws Exception
createToken
in class AuthenticatingFilter
request
- the incoming requestresponse
- the outgoing responseException
- if there is an error processing the request.protected boolean onAccessDenied(ServletRequest request, ServletResponse response) throws Exception
token
and logging subject
with this token.onAccessDenied
in class AccessControlFilter
request
- the incoming requestresponse
- the outgoing responsetrue
if the request should continue to be processed; false if the subclass will
handle/render the response directly.Exception
- if there is an error processing the request.protected boolean isAccessAllowed(ServletRequest request, ServletResponse response, Object mappedValue)
false
to always force authentication (user is never considered authenticated by this filter).isAccessAllowed
in class AuthenticatingFilter
request
- the incoming requestresponse
- the outgoing responsemappedValue
- the filter-specific config value mapped to this filter in the URL rules mappings.false
protected boolean onLoginSuccess(AuthenticationToken token, Subject subject, ServletRequest request, ServletResponse response) throws Exception
onLoginSuccess
in class AuthenticatingFilter
token
- the token representing the current authenticationsubject
- the current authenticated subjetrequest
- the incoming requestresponse
- the outgoing responseException
- if there is an error processing the request.protected boolean onLoginFailure(AuthenticationToken token, AuthenticationException ae, ServletRequest request, ServletResponse response)
onLoginFailure
in class AuthenticatingFilter
token
- the token representing the current authenticationae
- the current authentication exceptionrequest
- the incoming requestresponse
- the outgoing responsepublic void setFailureUrl(String failureUrl)
Copyright © 2004–2020 The Apache Software Foundation. All rights reserved.