Start line:  
End line:  

Snippet Preview

Snippet HTML Code

Stack Overflow Questions
   * Licensed to the Apache Software Foundation (ASF) under one or more
   * contributor license agreements.  See the NOTICE file distributed with
   * this work for additional information regarding copyright ownership.
   * The ASF licenses this file to You under the Apache License, Version 2.0
   * (the "License"); you may not use this file except in compliance with
   * the License.  You may obtain a copy of the License at
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
 package org.apache.catalina.authenticator;
An Authenticator and Valve implementation that checks only security constraints not involving user authentication.

Craig R. McClanahan
$Revision: 1703 $ $Date: 2011-04-13 15:25:47 +0200 (Wed, 13 Apr 2011) $
 public final class NonLoginAuthenticator
     extends AuthenticatorBase {
     // ----------------------------------------------------- Instance Variables

Descriptive information about this implementation.
     private static final String info =
     // ------------------------------------------------------------- Properties

Return descriptive information about this Valve implementation.
     public String getInfo() {
         return ();
     // --------------------------------------------------------- Public Methods

Authenticate the user making this request, based on the specified login configuration. Return true if any specified constraint has been satisfied, or false if we have created a response challenge already.

request Request we are processing
response Response we are creating
config Login configuration describing how authentication should be performed
Throws: if an input/output error occurs
     public boolean authenticate(Request request,
                                 HttpServletResponse response,
                                 LoginConfig config)
         throws IOException {
         /*  Associating this request's session with an SSO would allow
             coordinated session invalidation, but should the session for
             a webapp that the user didn't log into be invalidated when
             another session is logged out?
         String ssoId = (String) request.getNote(Constants.REQ_SSOID_NOTE);
         if (ssoId != null)
             associate(ssoId, getSession(request, true));
         if (getContainer().getLogger().isDebugEnabled())
             getContainer().getLogger().debug("User authentication is not required");
         return (true);
New to GrepCode? Check out our FAQ X