org.jasypt.springsecurity4.authentication.rememberme

Class TokenBasedRememberMeServices

Object

org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices

org.jasypt.springsecurity4.authentication.rememberme.TokenBasedRememberMeServices

All Implemented Interfaces:

org.springframework.beans.factory.InitializingBean, org.springframework.security.web.authentication.logout.LogoutHandler, org.springframework.security.web.authentication.RememberMeServices

public final class TokenBasedRememberMeServices
extends org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices

Implementation of org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices which provides a "remember-me" cookie arranged in the same way as org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices, but using a Jasypt StringDigester passed as a parameter for performing the digest of the signature in the cookie (username + ":" + expiry time + ":" + password + ":" + key).

This class is thread-safe

Since:

1.9.3

Author:

Hoki Torres

Field Summary

Fields inherited from class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices

DEFAULT_PARAMETER, logger, messages, SPRING_SECURITY_REMEMBER_ME_COOKIE_KEY, TWO_WEEKS_S

Constructor Summary

Constructors

Modifier	Constructor and Description
protected	TokenBasedRememberMeServices(String key, org.springframework.security.core.userdetails.UserDetailsService userDetailsService)

Method Summary

Modifier and Type	Method and Description
void	onLoginSuccess(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, org.springframework.security.core.Authentication successfulAuthentication)
protected org.springframework.security.core.userdetails.UserDetails	processAutoLoginCookie(String[] cookieTokens, javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)
void	setDigester(org.jasypt.digest.StringDigester digester)

Methods inherited from class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices

afterPropertiesSet, autoLogin, cancelCookie, createSuccessfulAuthentication, decodeCookie, encodeCookie, extractRememberMeCookie, getAuthenticationDetailsSource, getCookieName, getKey, getParameter, getTokenValiditySeconds, getUserDetailsService, loginFail, loginSuccess, logout, onLoginFail, rememberMeRequested, setAlwaysRemember, setAuthenticationDetailsSource, setAuthoritiesMapper, setCookie, setCookieName, setParameter, setTokenValiditySeconds, setUserDetailsChecker, setUseSecureCookie

Methods inherited from class Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

TokenBasedRememberMeServices

protected TokenBasedRememberMeServices(String key,
                                       org.springframework.security.core.userdetails.UserDetailsService userDetailsService)

Method Detail

setDigester

public void setDigester(org.jasypt.digest.StringDigester digester)

processAutoLoginCookie

protected org.springframework.security.core.userdetails.UserDetails processAutoLoginCookie(String[] cookieTokens,
                                                                                           javax.servlet.http.HttpServletRequest request,
                                                                                           javax.servlet.http.HttpServletResponse response)

Specified by:

processAutoLoginCookie in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices

onLoginSuccess

public void onLoginSuccess(javax.servlet.http.HttpServletRequest request,
                           javax.servlet.http.HttpServletResponse response,
                           org.springframework.security.core.Authentication successfulAuthentication)

Specified by:

onLoginSuccess in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices