planetj.dataengine.security.http
Class RefererSignOn
java.lang.Object
|
+--planetj.dataengine.security.http.GenericSignOn
|
+--planetj.dataengine.security.http.UnsecuredSignOn
|
+--planetj.dataengine.security.http.RefererSignOn
- All Implemented Interfaces:
- ISignOn, Serializable
- public class RefererSignOn
- extends UnsecuredSignOn
Super-secure signon which determines if a user can signon or not based on the http referer
- See Also:
- Serialized Form
|
Method Summary |
boolean |
signOn(String pUserId,
String pPassword,
ISecured pSecuredApplication,
javax.servlet.http.HttpServletRequest pReq)
Signs on to a Secured Application. |
RefererSignOn
public RefererSignOn()
signOn
public boolean signOn(String pUserId,
String pPassword,
ISecured pSecuredApplication,
javax.servlet.http.HttpServletRequest pReq)
throws CMException
- Signs on to a Secured Application. This method is only invoked if the user has not already signed on.
As part of a successful sign on, a
SignOnReceipt object should be created and
stored in the session using the
setSignOnReceipt()
method.
In addition, this method should initialize any connection pools that will be used by the secured application.
- Specified by:
signOn in interface ISignOn- Overrides:
signOn in class UnsecuredSignOn
- Parameters:
pUserId - The user id identifying the user signing on to the application. If the
isUserPromptRequired() method returned
false, then pUserId will be nullpPassword - The password for signing on to the application. If the
isUserPromptRequired() method returned
false, then pPassword will be nullpSecuredApplication - The Secured Application object representing the application which is being signed on to.pReq - The HttpServletRequest representing the http request of the user. Additional sign on
information can be stored as attributes in the request
- Returns:
- If the sign on was successful true should be returned. A return value of false or a thrown
CMException indicates that the sign on failed.
CMException