You are viewing a plain text version of this content. The canonical link for it is here.

Posted to oak-commits@jackrabbit.apache.org by an...@apache.org on 2012/10/16 09:48:52 UTC

svn commit: r1398687 - /jackrabbit/oak/trunk/oak-core/src/main/java/org/apache/jackrabbit/oak/security/authentication/UserAuthentication.java

Author: angela
Date: Tue Oct 16 07:48:52 2012
New Revision: 1398687

URL: http://svn.apache.org/viewvc?rev=1398687&view=rev
Log:
 OAK-91 - Implement Authentication Support (WIP)

Modified:
    jackrabbit/oak/trunk/oak-core/src/main/java/org/apache/jackrabbit/oak/security/authentication/UserAuthentication.java

Modified: jackrabbit/oak/trunk/oak-core/src/main/java/org/apache/jackrabbit/oak/security/authentication/UserAuthentication.java
URL: http://svn.apache.org/viewvc/jackrabbit/oak/trunk/oak-core/src/main/java/org/apache/jackrabbit/oak/security/authentication/UserAuthentication.java?rev=1398687&r1=1398686&r2=1398687&view=diff
==============================================================================
--- jackrabbit/oak/trunk/oak-core/src/main/java/org/apache/jackrabbit/oak/security/authentication/UserAuthentication.java (original)
+++ jackrabbit/oak/trunk/oak-core/src/main/java/org/apache/jackrabbit/oak/security/authentication/UserAuthentication.java Tue Oct 16 07:48:52 2012
@@ -36,7 +36,25 @@ import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
 /**
- * AuthenticationImpl...
+ * Implementation of the Authentication interface that validates credentials
+ * against user information stored in the repository. If no user exists with
+ * the specified userID or if the user has been disabled authentication will
+ * will fail irrespective of the specified credentials. Otherwise the following
+ * validation is performed:
+ *
+ * <ul>
+ *     <li>{@link SimpleCredentials}: Authentication succeeds if userID and
+ *     password match the information exposed by the {@link UserProvider}.</li>
+ *     <li>{@link ImpersonationCredentials}: Authentication succeeds if the
+ *     subject to be authenticated is allowed to impersonate the user identified
+ *     by the userID.</li>
+ *     <li>{@link GuestCredentials}: The authentication succeeds if an 'anonymous'
+ *     user exists in the repository.</li>
+ * </ul>
+ *
+ * For any other credentials {@link #authenticate(javax.jcr.Credentials)}
+ * will return {@code false} indicating that this implementation is not able
+ * to verify their validity.
  */
 public class UserAuthentication implements Authentication {