Examples of org.jasig.cas.authentication.principal.Credentials

• org.jasig.cas.authentication.principal.Credentials
  Marker interface for credentials required to authenticate a principal.

  The Credentials is an opaque object that represents the information a user asserts proves that the user is who it says it is. In CAS, any information that is to be presented for authentication must be wrapped (or implement) the Credentials interface. Credentials can contain a userid and password, or a Certificate, or an IP address, or a cookie value. Some credentials require validation, while others (such as container based or Filter based validation) are inherently trustworthy.

  People who choose to implement their own Credentials object should take care that any toString() they implement does not accidentally expose confidential information. toString() can be called from various portions of the CAS code base, including logging statements, and thus toString should never contain anything confidential or anything that should not be logged.

  Credentials objects that are included in CAS do NOT expose any confidential information. @author William G. Thompson, Jr. @version $Revision: 1.2 $ $Date: 2007/01/22 20:35:26 $ @since 3.0

  This is a published and supported CAS Server 3 API.

        if (log.isDebugEnabled()) {
            log.debug("Obtaining credentials...");
            log.debug(getRequest().getEntityAsForm().toString());
        }

        final Credentials c = obtainCredentials();
        try {
            final String ticketGrantingTicketId = this.centralAuthenticationService.createTicketGrantingTicket(c);
            getResponse().setStatus(determineStatus());
            final Reference ticket_ref = getRequest().getResourceRef().addSegment(ticketGrantingTicketId);
            getResponse().setLocationRef(ticket_ref);

    protected final boolean isRenewPresent(final RequestContext context) {
        return StringUtils.hasText(context.getRequestParameters().get("renew"));
    }

    protected final Event doExecute(final RequestContext context) {
        final Credentials credentials = constructCredentialsFromRequest(context);

        if (credentials == null) {
            return error();
        }

 *
 */
public final class CredentialsAsFirstParameterResourceResolver implements AuditResourceResolver {

    public String[] resolveFrom(final JoinPoint joinPoint, final Object retval) {
        final Credentials credentials = (Credentials) AopUtils.unWrapJoinPoint(joinPoint).getArgs()[0];
        return new String[] { "supplied credentials: " + credentials.toString() };
    }

        final Credentials credentials = (Credentials) AopUtils.unWrapJoinPoint(joinPoint).getArgs()[0];
        return new String[] { "supplied credentials: " + credentials.toString() };
    }

    public String[] resolveFrom(final JoinPoint joinPoint, final Exception exception) {
        final Credentials credentials = (Credentials) AopUtils.unWrapJoinPoint(joinPoint).getArgs()[0];
        return new String[] { "supplied credentials: " + credentials.toString() };
    }

            }
            return generateErrorView("INVALID_REQUEST", "INVALID_REQUEST", null);
        }

        try {
            final Credentials serviceCredentials = getServiceCredentialsFromRequest(request);
            String proxyGrantingTicketId = null;

            // XXX should be able to validate AND THEN use
            if (serviceCredentials != null) {
                try {

    }

    @Test
    public void testNoHandlerFound() throws AuthenticationException {
        try {
            getAuthenticationManager().authenticate(new Credentials(){

                private static final long serialVersionUID = -4897240037527663222L;
                // there is nothing to do here
            });
            fail("Authentication should have failed.");