AuthenticationFilter (SSO for Atlassian Data Center 4.3.7 API)

java.lang.Object
- com.atlassian.plugins.authentication.sso.web.filter.AbstractJohnsonAwareFilter
- - com.atlassian.plugins.authentication.sso.web.filter.authentication.AuthenticationFilter

All Implemented Interfaces:

javax.servlet.Filter

Direct Known Subclasses:

BambooAuthenticationFilter, BitbucketAuthenticationFilter, SeraphAuthenticationFilter, ServiceManagementAuthenticationFilter
```
public abstract class AuthenticationFilter
extends AbstractJohnsonAwareFilter
```
Masks requests to normal log-in pages, by redirecting to external log-in

Field Summary

Fields
Modifier and Type	Field and Description
`static String`	`ATLASSIAN_RECOVERY_PASSWORD`
`static String`	`AUTH_FALLBACK_QUERY_PARAM` If this query parameter is specified in the login request, and `ImmutableSsoConfig.enableAuthenticationFallback()` is set the user will be allowed to log in using the traditional forms login, instead of being redirected to the configured SSO IDP.
`protected AuthenticationHandlerProvider`	`authenticationHandlerProvider`
`static String`	`DESTINATION_REQUEST_PARAM`
`protected IdpConfigService`	`idpConfigService`
`protected org.slf4j.Logger`	`log`
`protected LoginOptionsService`	`loginOptionsService`
`static String`	`NATIVE_LOGIN_PARAM` If this query parameter is specified when navigating to the native login page, and the native login form is configured to be displayed, then the user will NOT be redirected to our custom login gateway.

Constructor Summary

Constructors
Constructor and Description
`AuthenticationFilter(AuthenticationHandlerProvider authenticationHandlerProvider, IdpConfigService idpConfigService, LoginOptionsService loginOptionsService, JohnsonChecker johnsonChecker)`

Method Summary

All Methods Instance Methods Abstract Methods Concrete Methods
Modifier and Type	Method and Description
`protected void`	`doFilterInternal(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, javax.servlet.FilterChain chain)`
`protected abstract String`	`extractRequestedUrl(javax.servlet.http.HttpServletRequest req)`
`protected LoginGatewayType`	`getLoginGatewayType()`
`protected boolean`	`isProductSpecificSkip(List<LoginOption> loginOptions, javax.servlet.http.HttpServletRequest httpRequest)`
`protected boolean`	`isSupportedHttpMethod(javax.servlet.http.HttpServletRequest httpRequest)`

Methods inherited from class com.atlassian.plugins.authentication.sso.web.filter.AbstractJohnsonAwareFilter
destroy, doFilter, init

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail
- DESTINATION_REQUEST_PARAM
```
public static final String DESTINATION_REQUEST_PARAM
```
  See Also:
  
  Constant Field Values
- log
```
protected final org.slf4j.Logger log
```
- AUTH_FALLBACK_QUERY_PARAM
```
public static final String AUTH_FALLBACK_QUERY_PARAM
```
  If this query parameter is specified in the login request, and ImmutableSsoConfig.enableAuthenticationFallback() is set the user will be allowed to log in using the traditional forms login, instead of being redirected to the configured SSO IDP.
  
  See Also:
  
  Constant Field Values
- ATLASSIAN_RECOVERY_PASSWORD
```
public static final String ATLASSIAN_RECOVERY_PASSWORD
```
  See Also:
  
  Constant Field Values
- NATIVE_LOGIN_PARAM
```
public static final String NATIVE_LOGIN_PARAM
```
  If this query parameter is specified when navigating to the native login page, and the native login form is configured to be displayed, then the user will NOT be redirected to our custom login gateway.
  
  See Also:
  
  Constant Field Values
- authenticationHandlerProvider
```
protected final AuthenticationHandlerProvider authenticationHandlerProvider
```
- idpConfigService
```
protected final IdpConfigService idpConfigService
```
- loginOptionsService
```
protected final LoginOptionsService loginOptionsService
```

Constructor Detail

AuthenticationFilter

public AuthenticationFilter(AuthenticationHandlerProvider authenticationHandlerProvider,
                            IdpConfigService idpConfigService,
                            LoginOptionsService loginOptionsService,
                            JohnsonChecker johnsonChecker)

Method Detail

doFilterInternal

protected void doFilterInternal(javax.servlet.ServletRequest request,
                                javax.servlet.ServletResponse response,
                                javax.servlet.FilterChain chain)
                         throws IOException,
                                javax.servlet.ServletException

Specified by:: doFilterInternal in class AbstractJohnsonAwareFilter
Throws:: IOException; javax.servlet.ServletException

isProductSpecificSkip

protected boolean isProductSpecificSkip(List<LoginOption> loginOptions,
                                        javax.servlet.http.HttpServletRequest httpRequest)

isSupportedHttpMethod

protected boolean isSupportedHttpMethod(javax.servlet.http.HttpServletRequest httpRequest)

extractRequestedUrl
```
@Nullable
protected abstract String extractRequestedUrl(javax.servlet.http.HttpServletRequest req)
```
Returns:

the relative url (excluding context path), the user should be redirected to after login. null if none.

getLoginGatewayType

protected LoginGatewayType getLoginGatewayType()

Class AuthenticationFilter

Field Summary

Constructor Summary

Method Summary

Methods inherited from class com.atlassian.plugins.authentication.sso.web.filter.AbstractJohnsonAwareFilter

Methods inherited from class java.lang.Object

Field Detail

DESTINATION_REQUEST_PARAM

log

AUTH_FALLBACK_QUERY_PARAM

ATLASSIAN_RECOVERY_PASSWORD

NATIVE_LOGIN_PARAM

authenticationHandlerProvider

idpConfigService

loginOptionsService

Constructor Detail

AuthenticationFilter

Method Detail

doFilterInternal

isProductSpecificSkip

isSupportedHttpMethod

extractRequestedUrl

getLoginGatewayType