Examples of org.apache.shiro.authc.pam.ModularRealmAuthenticator

org.apache.shiro.authc.pam.ModularRealmAuthenticator
A {@code ModularRealmAuthenticator} delgates account lookups to a pluggable (modular) collection of{@link Realm}s. This enables PAM (Pluggable Authentication Module) behavior in Shiro. In addition to authorization duties, a Shiro Realm can also be thought of a PAM 'module'.
Using this Authenticator allows you to "plug-in" your own {@code Realm}s as you see fit. Common realms are those based on accessing LDAP, relational databases, file systems, etc.
If only one realm is configured (this is often the case for most applications), authentication success is naturally only dependent upon invoking this one Realm's {@link Realm#getAuthenticationInfo(org.apache.shiro.authc.AuthenticationToken)} method.
But if two or more realms are configured, PAM behavior is implemented by iterating over the collection of realms and interacting with each over the course of the authentication attempt. As this is more complicated, this authenticator allows customized behavior for interpreting what happens when interacting with multiple realms - for example, you might require all realms to be successful during the attempt, or perhaps only at least one must be successful, or some other interpretation. This customized behavior can be performed via the use of a {@link #setAuthenticationStrategy(AuthenticationStrategy) AuthenticationStrategy}, which you can inject as a property of this class.
The strategy object provides callback methods that allow you to determine what constitutes a success or failure in a multi-realm (PAM) scenario. And because this only makes sense in a mult-realm scenario, the strategy object is only utilized when more than one Realm is configured.
As most multi-realm applications require at least one Realm authenticates successfully, the default implementation is the {@link AtLeastOneSuccessfulStrategy}. @author Jeremy Haile @author Les Hazlewood @see #setRealms @see AtLeastOneSuccessfulStrategy @see AllSuccessfulStrategy @see FirstSuccessfulStrategy @since 0.1

        subjectDAO.setSessionStorageEvaluator(sessionStorageEvaluator);
        securityManager.setSubjectDAO(subjectDAO);


        final Authenticator authenticator = securityManager.getAuthenticator();
        if (authenticator instanceof ModularRealmAuthenticator) {
            ModularRealmAuthenticator a = (ModularRealmAuthenticator) authenticator;
            a.setAuthenticationStrategy(new RethrowingFirstSuccessfulStrategy());
            a.setAuthenticationListeners(
                    Lists.<AuthenticationListener>newArrayList(new PlayAuthenticationListener())
            );
        }
        SecurityUtils.setSecurityManager(securityManager);

View Full Code Here

    public void test() {


        DefaultSecurityManager securityManager = new DefaultSecurityManager();


        //设置authenticator
        ModularRealmAuthenticator authenticator = new ModularRealmAuthenticator();
        authenticator.setAuthenticationStrategy(new AtLeastOneSuccessfulStrategy());
        securityManager.setAuthenticator(authenticator);


        //设置authorizer
        ModularRealmAuthorizer authorizer = new ModularRealmAuthorizer();
        authorizer.setPermissionResolver(new WildcardPermissionResolver());

View Full Code Here

     * <code>authenticator</code> instance to a
     * {@link org.apache.shiro.authc.pam.ModularRealmAuthenticator ModularRealmAuthenticator}.
     */
    public AuthenticatingSecurityManager() {
        super();
        this.authenticator = new ModularRealmAuthenticator();
    }

View Full Code Here

     * <code>authenticator</code> instance to a
     * {@link org.apache.shiro.authc.pam.ModularRealmAuthenticator ModularRealmAuthenticator}.
     */
    public AuthenticatingSecurityManager() {
        super();
        this.authenticator = new ModularRealmAuthenticator();
    }

View Full Code Here


  @PostConstruct
  public void init() {
    log.info("Initializing Shiro SecurityManager");


    ModularRealmAuthenticator authenticator = new ModularRealmAuthenticator();
    authenticator.setAuthenticationListeners(toCollection(authenticationListeners));
    authenticator.setRealms(Arrays.asList(realm));
    
    DefaultWebSessionManager sessionManager = new DefaultWebSessionManager();
    sessionManager.setSessionListeners(toCollection(sessionListeners));


    DefaultWebSecurityManager securityManager = new DefaultWebSecurityManager(Arrays.asList(realm));

View Full Code Here

TOP

Related Classes of org.apache.shiro.authc.pam.ModularRealmAuthenticator

br.com.caelum.vraptor.security.produces.SecurityFacade

com.github.zhangkaitao.shiro.chapter4.NonConfigurationCreateTest

lib.Global

org.apache.shiro.mgt.AuthenticatingSecurityManager

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.