Package org.springframework.ws.soap.security.x509

Interface X509AuthoritiesPopulator

All Known Implementing Classes:
DaoX509AuthoritiesPopulator
public interface X509AuthoritiesPopulator
Populates the UserDetails associated with the X.509 certificate presented by a client.

Although the certificate will already have been validated by the web container, implementations may choose to perform additional application-specific checks on the certificate content here. If an implementation chooses to reject the certificate, it should throw a BadCredentialsException.

Migrated from Spring Security 2 since it has been removed in Spring Security 3.

Author:
Luke Taylor

  • Method Summary

    Modifier and Type
    Method
    Description
    org.springframework.security.core.userdetails.UserDetails
    getUserDetails(X509Certificate userCertificate)
    Obtains the granted authorities for the specified user.

  • Method Details

    • getUserDetails

      org.springframework.security.core.userdetails.UserDetails getUserDetails(X509Certificate userCertificate) throws org.springframework.security.core.AuthenticationException
      Obtains the granted authorities for the specified user.

      May throw any AuthenticationException or return null if the authorities are unavailable.

      Parameters:
      userCertificate - the X.509 certificate supplied
      Returns:
      the details of the indicated user (at minimum the granted authorities and the username)
      Throws:
      org.springframework.security.core.AuthenticationException - if the user details are not available or the certificate isn't valid for the application's purpose.