org.wildfly.security.http.HttpServerAuthenticationMechanism Maven / Gradle / Ivy

Go to download

Show more of this group Show more artifacts with this name
Show all versions of wildfly-client-all

This artifact provides a single jar that contains all classes required to use remote EJB and JMS, including all dependencies. It is intended for use by those not using maven, maven users should just import the EJB and JMS BOM's instead (shaded JAR's cause lots of problems with maven, as it is very easy to inadvertently end up with different versions on classes on the class path).

The newest version!

/*
 * JBoss, Home of Professional Open Source.
 * Copyright 2015 Red Hat, Inc., and individual contributors
 * as indicated by the @author tags.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.wildfly.security.http;

/**
 * Definition of a server side HTTP authentication mechanism.
 *
 * @author Darran Lofthouse
 */
public interface HttpServerAuthenticationMechanism {

    /**
     * Get the name of this mechanism, where appropriate this should be the IANA registered name.
     *
     * @return the name of the mechanism.
     */
    String getMechanismName();

    /**
     * Evaluate the current request and attempt to authenticate if appropriate.
     *
     * The mechanism should call the appropriate callback methods on the {link HttpServerResponse} to both indicate the outcome
     * of the evaluation and to register any {@link HttpServerMechanismsResponder} as required.
     *
     * @param request representation of the HTTP request.
     * @throws HttpAuthenticationException if there is an internal failure handling the authentication.
     */
    void evaluateRequest(HttpServerRequest request) throws HttpAuthenticationException;

    /**
     * Get the property negotiated as a result of authentication.
     *
     * Mechanisms only make properties available after indicating a successful authentication has completed.
     *
     * @param propertyName the name of the property.
     * @return the value of the property or {@code null} if the specified property is not available.
     */
    default Object getNegotiatedProperty(String propertyName) {
        return null;
    }

    /**
     * Get the strongly typed property negotiated as a result of authentication.
     *
     * Mechanisms only make properties available after indicating a successful authentication has completed.
     *
     * Note: This form of the mechanism will also return {@code null} if the property is set but is of a different type.
     *
     * @param propertyName the name of the property.
     * @param type the expected type of the property.
     * @return the value of the property or {@code null} if the specified property is not available or is of a different type..
     */
    default  T getNegotiationProperty(String propertyName, Class type) {
        Object property = getNegotiatedProperty(propertyName);
        if (property != null && type.isInstance(property)) {
            return type.cast(property);
        }
        return null;
    }

    /**
     * Dispose of any resources currently held by this authentication mechanism.
     */
    default void dispose() {
    }

}