Package com.erudika.para.server.security.filters

Class LdapAuthFilter

java.lang.Object

org.springframework.web.filter.GenericFilterBean

org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

com.erudika.para.server.security.filters.LdapAuthFilter

All Implemented Interfaces:

jakarta.servlet.Filter, org.springframework.beans.factory.Aware, org.springframework.beans.factory.BeanNameAware, org.springframework.beans.factory.DisposableBean, org.springframework.beans.factory.InitializingBean, org.springframework.context.ApplicationEventPublisherAware, org.springframework.context.EnvironmentAware, org.springframework.context.MessageSourceAware, org.springframework.core.env.EnvironmentCapable, org.springframework.web.context.ServletContextAware

public class LdapAuthFilter
extends org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

A filter that handles authentication requests to an LDAP server.

Author:

Alex Bogdanovski [[email protected]]

Field Summary

Fields

Modifier and Type	Field	Description
static final String	LDAP_ACTION	The default filter mapping.

Constructor Summary

Constructors

Constructor	Description
LdapAuthFilter(String defaultFilterProcessesUrl)	Default constructor.

Method Summary

Modifier and Type	Method	Description
org.springframework.security.core.Authentication	attemptAuthentication(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response)	Handles an authentication request.
UserAuthentication	getOrCreateUser(com.erudika.para.core.App app, String accessToken)	Calls an external API to get the user profile using a given access token.

Methods inherited from class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

afterPropertiesSet, doFilter, getRememberMeServices, setAllowSessionCreation, setApplicationEventPublisher, setAuthenticationConverter, setAuthenticationDetailsSource, setAuthenticationFailureHandler, setAuthenticationManager, setAuthenticationSuccessHandler, setContinueChainBeforeSuccessfulAuthentication, setFilterProcessesUrl, setMessageSource, setMfaEnabled, setRememberMeServices, setRequiresAuthenticationRequestMatcher, setSecurityContextHolderStrategy, setSecurityContextRepository, setSessionAuthenticationStrategy

Methods inherited from class org.springframework.web.filter.GenericFilterBean

destroy, getEnvironment, getFilterConfig, init, setBeanName, setEnvironment, setServletContext

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

LDAP_ACTION

public static final String LDAP_ACTION

The default filter mapping.

See Also:

• Constant Field Values

Constructor Details

LdapAuthFilter

public LdapAuthFilter(String defaultFilterProcessesUrl)

Default constructor.

Parameters:

defaultFilterProcessesUrl - the url of the filter

Method Details

attemptAuthentication

public org.springframework.security.core.Authentication attemptAuthentication(jakarta.servlet.http.HttpServletRequest request,
 jakarta.servlet.http.HttpServletResponse response)
                                                                       throws IOException

Handles an authentication request.

Overrides:

attemptAuthentication in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter

Parameters:

request - HTTP request

response - HTTP response

Returns:

an authentication object that contains the principal object if successful.

Throws:

IOException - ex

getOrCreateUser

public UserAuthentication getOrCreateUser(com.erudika.para.core.App app,
 String accessToken)
                                   throws IOException

Calls an external API to get the user profile using a given access token.

Parameters:

app - the app where the user will be created, use null for root app

accessToken - access token - in the case of LDAP this is should be "uid:password"

Returns:

UserAuthentication object or null if something went wrong

Throws:

IOException - ex