Examples of UsernamePasswordToken

org.apache.shiro.authc.UsernamePasswordToken
sun.com/j2se/1.5.0/docs/guide/security/jce/JCERefGuide.html#PBEEx"> Java Cryptography Extension Reference Guide.

To avoid this possibility of later memory access, the application developer should always call {@link #clear() clear()} after using the token to perform a login attempt.
@author Jeremy Haile @author Les Hazlewood @since 0.1
org.jsecurity.authc.UsernamePasswordToken

Examples of org.apache.shiro.authc.UsernamePasswordToken

        jdbcRealm = new JdbcRealm();
    }


    @Override
    public boolean authenticate(String userName, Object credentials) throws UserStoreException {
        AuthenticationToken authenticationToken = new UsernamePasswordToken(userName,
                passwordDigester.getPasswordHashValue((String) credentials));


        AuthenticationInfo authenticationInfo;
        try {

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken


    private PasswordDigester passwordDigester;


    public boolean authenticate(String userName, Object credentials) throws UserStoreException {


        AuthenticationToken authenticationToken = new UsernamePasswordToken(userName,
                passwordDigester.getPasswordHashValue((String) credentials));


        AuthenticationInfo authenticationInfo;
        try {
            authenticationInfo = ldapRealm.getAuthenticationInfo(authenticationToken);

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken


        LoginCommand command = (LoginCommand) cmd;


        Subject subject = SecurityUtils.getSubject();


        UsernamePasswordToken token = new UsernamePasswordToken(command.getUsername(), command.getPassword());


        try {
            subject.login(token);
        } catch (AuthenticationException e) {
            log.debug("Error authenticating.", e);

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken

     * @return an {@link AuthenticationInfo} instance containing information retrieved from LDAP.
     * @throws NamingException if any LDAP errors occur during the search.
     */
    protected AuthenticationInfo queryForAuthenticationInfo(AuthenticationToken token, LdapContextFactory ldapContextFactory) throws NamingException {


        UsernamePasswordToken upToken = (UsernamePasswordToken) token;


        // Binds using the username and password provided by the user.
        LdapContext ctx = null;
        try {
            ctx = ldapContextFactory.getLdapContext(upToken.getUsername(), String.valueOf(upToken.getPassword()));
        } finally {
            LdapUtils.closeContext(ctx);
        }


        return buildAuthenticationInfo(upToken.getUsername(), upToken.getPassword());
    }

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken

        if (_subject == null) {
            _subject = SecurityUtils.getSubject();
        }


        // use dan to run as a normal user (which cannot close an account)
        _subject.login(new UsernamePasswordToken("dan", "123"));
    }

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken

        if (_subject == null) {
            _subject = SecurityUtils.getSubject();
        }


        // use sally to run as a superviser (which cannot operate an account)
        _subject.login(new UsernamePasswordToken("sally", "1234"));
    }

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken

        users.put("user2", "user2,role2");
        IniSecurityManagerFactory factory = new IniSecurityManagerFactory(ini);
        SecurityManager sm = factory.getInstance();


        Subject subject = new Subject.Builder(sm).buildSubject();
        subject.login(new UsernamePasswordToken("user1", "user1"));


        assertTrue(subject.getPrincipal().equals("user1"));
        assertTrue(subject.hasRole("role1"));
        assertFalse(subject.isRunAs());
        assertNull(subject.getPreviousPrincipals());

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken

    @Test
    public void testBasic() {
        CredentialsMatcher matcher = (CredentialsMatcher) ClassUtils.newInstance(getMatcherClass());
        byte[] hashed = hash("password").getBytes();
        AuthenticationInfo account = new SimpleAuthenticationInfo("username", hashed, "realmName");
        AuthenticationToken token = new UsernamePasswordToken("username", "password");
        assertTrue(matcher.doCredentialsMatch(token, account));
    }

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken

        subject.execute(new Runnable() {
            public void run() {
                //the plain-text 'secret' should be converted to an Sha256 hash first
                //by the CredentialsMatcher.  This should return quietly if
                //this test case is valid:
                SecurityUtils.getSubject().login(new UsernamePasswordToken("admin", "secret"));
            }
        });
        assertTrue(subject.getPrincipal().equals("admin"));
    }

View Full Code Here

Examples of org.apache.shiro.authc.UsernamePasswordToken

        IniSecurityManagerFactory factory = new IniSecurityManagerFactory(ini);
        SecurityManager sm = factory.getInstance();


        //try to log-in:
        Subject subject = new Subject.Builder(sm).buildSubject();
        subject.login(new UsernamePasswordToken("admin", "admin"));
        Session session = subject.getSession();
        session.setAttribute("hello", "world");
        //session should have been started, and a cache is in use.  Assert that the SessionDAO is still using
        //the cache instances provided by our custom CacheManager and not the Default MemoryConstrainedCacheManager

View Full Code Here

0 1 2 3 4 5

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.