KualiDistributedSessionFilter (Rice Client Contrib 2.1.13 API)

java.lang.Object
- org.acegisecurity.ui.AbstractProcessingFilter
- - org.acegisecurity.ui.cas.CasProcessingFilter
  - - org.kuali.rice.kim.client.acegi.KualiDistributedSessionFilter

All Implemented Interfaces:

javax.servlet.Filter, org.springframework.beans.factory.Aware, org.springframework.beans.factory.InitializingBean, org.springframework.context.ApplicationEventPublisherAware, org.springframework.context.MessageSourceAware
```
public class KualiDistributedSessionFilter
extends org.acegisecurity.ui.cas.CasProcessingFilter
```
This class is the main integration point for implementing the distributed session in ACEGI. TODO: Need to add check for missing DST (update DistributedSession)

Author:

Kuali Rice Team (rice.collab@kuali.org)

See Also:

CasProcessingFilter.attemptAuthentication(javax.servlet.http.HttpServletRequest)

Field Summary
- Fields inherited from class org.acegisecurity.ui.cas.CasProcessingFilter
  CAS_STATEFUL_IDENTIFIER, CAS_STATELESS_IDENTIFIER
- Fields inherited from class org.acegisecurity.ui.AbstractProcessingFilter
  ACEGI_SAVED_REQUEST_KEY, ACEGI_SECURITY_LAST_EXCEPTION_KEY, authenticationDetailsSource, eventPublisher, logger, messages

Constructor Summary

Constructors
Constructor and Description

KualiDistributedSessionFilter()

Constructors
Constructor and Description
`KualiDistributedSessionFilter()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`org.acegisecurity.Authentication`	`attemptAuthentication(javax.servlet.http.HttpServletRequest request)` This overridden method gets called if requiresAuthentication is true.
`protected boolean`	`requiresAuthentication(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)` This overridden method checks if the DST is valid.
`void`	`setDistributedSession(DistributedSession distributedSession)`

Methods inherited from class org.acegisecurity.ui.cas.CasProcessingFilter
getDefaultFilterProcessesUrl, init

Methods inherited from class org.acegisecurity.ui.AbstractProcessingFilter
afterPropertiesSet, destroy, determineFailureUrl, determineTargetUrl, doFilter, getAuthenticationDetailsSource, getAuthenticationFailureUrl, getAuthenticationManager, getDefaultTargetUrl, getExceptionMappings, getFilterProcessesUrl, getRememberMeServices, isAlwaysUseDefaultTargetUrl, isContinueChainBeforeSuccessfulAuthentication, obtainFullRequestUrl, onPreAuthentication, onSuccessfulAuthentication, onUnsuccessfulAuthentication, sendRedirect, setAlwaysUseDefaultTargetUrl, setApplicationEventPublisher, setAuthenticationDetailsSource, setAuthenticationFailureUrl, setAuthenticationManager, setBufferSize, setContinueChainBeforeSuccessfulAuthentication, setDefaultTargetUrl, setExceptionMappings, setFilterProcessesUrl, setMessageSource, setRememberMeServices, setUseRelativeContext, successfulAuthentication, unsuccessfulAuthentication

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - KualiDistributedSessionFilter
```
public KualiDistributedSessionFilter()
```
- Method Detail
  - attemptAuthentication
```
public org.acegisecurity.Authentication attemptAuthentication(javax.servlet.http.HttpServletRequest request)
                                                       throws org.acegisecurity.AuthenticationException
```
    This overridden method gets called if requiresAuthentication is true. If Session is Invalid, throw a KualiDistribtedSessionExpiredException. The session is determined invalid if the authentication is of type KualiDistribtedSessionExpiredAuthentication. Otherwise it would have to verify if the DST is valid twice.
    
    Overrides:
    
    attemptAuthentication in class org.acegisecurity.ui.cas.CasProcessingFilter
    
    Returns:
    
    the authentication result of the super method
    
    Throws:
    
    org.acegisecurity.AuthenticationException
    
    See Also:
    
    CasProcessingFilter.attemptAuthentication(javax.servlet.http.HttpServletRequest)
  - requiresAuthentication
```
protected boolean requiresAuthentication(javax.servlet.http.HttpServletRequest request,
                                         javax.servlet.http.HttpServletResponse response)
```
    This overridden method checks if the DST is valid. If it's not, the authentication is set to a new, non-authenticated, KualiDistributedSessionExpiredAuthentication which is the indication for attemptAuthentication that the session has expired
    
    Overrides:
    
    requiresAuthentication in class org.acegisecurity.ui.AbstractProcessingFilter
    
    Returns:
    
    true if DST is inValid or if super method returns true
    
    See Also:
    
    AbstractProcessingFilter.requiresAuthentication(javax.servlet.http.HttpServletRequest, javax.servlet.http.HttpServletResponse)
  - setDistributedSession
```
public void setDistributedSession(DistributedSession distributedSession)
```
    Parameters:
    
    distributedSession - the distributedSession to set

Class KualiDistributedSessionFilter

Field Summary

Fields inherited from class org.acegisecurity.ui.cas.CasProcessingFilter

Fields inherited from class org.acegisecurity.ui.AbstractProcessingFilter

Constructor Summary

Method Summary

Methods inherited from class org.acegisecurity.ui.cas.CasProcessingFilter

Methods inherited from class org.acegisecurity.ui.AbstractProcessingFilter

Methods inherited from class java.lang.Object

Constructor Detail

KualiDistributedSessionFilter

Method Detail

attemptAuthentication

requiresAuthentication

setDistributedSession