Package org.opencastproject.kernel.security
package org.opencastproject.kernel.security
-
ClassDescriptionFilter used to avoid redirect for asynchronous request in case of session timeoutSends authenticated users to one of the configured welcome pages after login.Password encoder using bcrypt for password hashing while still supporting the verification of olf md5 based passwords.An
AuthenticationEntryPointthat delegates to a default implementation unless a "X-Requested-Auth" header with a value of "Digest".An MxBean that exposes the number of open http connections to a JXM agentSends user directory provider to invalidate user cache and logs out.Overrides the default behavior of the OAuth ProtectedResourceProcessingFilter to keep the authentication returned byLtiLaunchAuthenticationHandler#createAuthentication( javax.servlet.http.HttpServletRequest, org.springframework.security.oauth.provider.ConsumerAuthentication, org.springframework.security.oauth.provider.token.OAuthAccessProviderToken)}A OAuth consumer details service with multiple consumers.Implements the organizational directory.Provides access to the organizations served by this Opencast instance.Inspects request URLs and sets the organization for the request.AnAuthenticationEntryPointthat redirects to a configured login URL with a specified return query parameter.Security filter used to set the organization and user in remote implementations.A servlet filter that delegates to the appropriate spring filter chainA Spring Security implementation ofSecurityService.Registers a security filter, which delegates to the spring filter chain appropriate for the current request's organization.Authentication provider based on the remember-me cookie.This implements a zero-configuration version Spring Security's token based remember-me service.This is a special implementation of the anonymous filter that prevents the filter from going with the anonymous user if there is the potential for a real authentication coming later on.An http client that executes secure (though not necessarily encrypted) http requests.AnAuthenticationEntryPointthat delegates to either a specified redirecting AEP or to one replying with 403.