at.spardat.xma.security
Interface LoginModuleServer

All Known Subinterfaces:
LoginModuleServerWithContextChange

public interface LoginModuleServer

This is the interface of all server side authentication plugins. Server side authentication plugins are used to check the user data send by the client. Server side authentication plugins cooperate with their client side authenticatin plugins (JAAS LoginModule). The LoginModule usually encrypts the credentials in an way the server side authentication module can verify; e.g. by using a challenge response procedure.


Method Summary
 java.lang.Object getPreLoginInfo(javax.servlet.http.HttpSession session)
          Get information needed on the client side before the login.
 boolean login(javax.security.auth.Subject subject, javax.servlet.http.HttpSession session)
          Do the login on the server.
 boolean logout(javax.security.auth.Subject subject, javax.servlet.http.HttpSession session)
          Do the logout on the server.
 

Method Detail

getPreLoginInfo

public java.lang.Object getPreLoginInfo(javax.servlet.http.HttpSession session)
Get information needed on the client side before the login. Eg. some defaults for the login dialog or a challenge for a challange response procedure.

Parameters:
session - the HttpSession
Returns:
an object containing this information. This object must be serializable.

login

public boolean login(javax.security.auth.Subject subject,
                     javax.servlet.http.HttpSession session)
Do the login on the server. This typically validates the principals and credentials of the given subject and add some more information to the principal.

Parameters:
subject - the subject as returned by the corresponding LoginModule Any changes in the subject are send back to the client by the runtime.
session - the HttpSession
Returns:
true if the subject is successfully verified false otherwise

logout

public boolean logout(javax.security.auth.Subject subject,
                      javax.servlet.http.HttpSession session)
Do the logout on the server. This may release some resources.

Parameters:
subject - the subject as returned by the corresponding LoginModule
session - the HttpSession
Returns:
true if the logout was successfull