@Version("1.2.3")
Package org.apache.sling.auth.core.spi
Provides API to be implemented by provides of authentication
mechanisms. The most important interface (and service definition) is
the
AuthenticationHandler
interface with the
AbstractAuthenticationHandler
being an abstract base implementation from which concrete
implementations may inherit.-
Interface Summary Interface Description AuthenticationFeedbackHandler TheAuthenticationFeedbackHandlermay be implemented byAuthenticationHandlerservices to request being informed on the success or failure of authentication.AuthenticationHandler TheAuthenticationHandlerinterface defines the service API used by the authentication implementation to support plugin various ways of extracting credentials from the request.AuthenticationInfoPostProcessor Service interface which allows bundles to modify theAuthenticationInfoobject right after oneAuthenticationHandlerhas returned an {AuthenticationInfofrom theAuthenticationHandler.extractCredentials(HttpServletRequest, HttpServletResponse)method or an anonymousAuthenticationInfohas been created. -
Class Summary Class Description AbstractAuthenticationFormServlet TheAbstractAuthenticationFormServletprovides a basic implementation of a simple servlet to render a login form for authentication purposes.AbstractAuthenticationHandler Deprecated. since Bundle 1.0.8;AuthenticationHandlerimplementations should extendDefaultAuthenticationFeedbackHandlerdirectly and use the utility methods in theAuthUtilclass.AuthenticationInfo TheAuthenticationInfoconveys any authentication credentials and/or details extracted by theAuthenticationHandler.extractCredentials(javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse)method from the request.DefaultAuthenticationFeedbackHandler -
Enum Summary Enum Description AuthenticationHandler.FAILURE_REASON_CODES This enum indicates the supported detailed login failure reason codes:invalid_login: indicates username/password mismatch.password_expired: indicates password has expired or was never set and change initial password is enabledaccount_locked: the account was disabled or lockedaccount_not_found: the account was not found (not the same as username password mismatch)expired_token: the token credentials used have expired