Package org.apereo.cas.authentication.credential
Authentication validates the Credentials provided during a /login request. In this context, "Credentials" are an opaque object declared with the Credentials marker interface. The AuthenticationManager typically passes the Credentials to a sequence of plug-in elements to see if any of them can recognize and process the concrete implementing type.
Successful authentication generates a Principal object wrapped in an Authentication object. All these objects must be serializable, and the Authentication becomes part of the TGT in the ticket cache.
Unsuccessful authentication must throw an AuthenticationException. The AuthenticationManager may not return null to signal a failure.
- Since:
- 3.0
-
Class Summary Class Description AbstractCredential Base class for CAS credentials that are safe for long-term storage.BasicIdentifiableCredential This isBasicIdentifiableCredential
, a simple credential implementation that is only recognized by its id.HttpBasedServiceCredential A credential representing an HTTP endpoint given by a URL.OneTimePasswordCredential Describes a one-time-password credential that contains an optional unique identifier and required password.OneTimeTokenCredential This isOneTimeTokenCredential
.RememberMeUsernamePasswordCredential Handles both remember me services and username and password.UsernamePasswordCredential Credential for authenticating with a username and password.