java source code of ClientAuthenticationHandler

Project: cas4.0.x-server-wechat (GitHub Link)

cas4.0.x-server-wechat-master
- cas-server-protocol
  - 2.0
    - cas_protocol_2_0.html
    - cas_protocol_2_0.md
  - README.md
  - 3.0
    - cas_protocol_3_0.html
    - cas_protocol_3_0.md
  - pandoc
    - html_template.pandoc
- src
  - site
    - resources
      - images
    - site.xml
  - licensing
    - header.txt
    - header-definitions.xml
- build.xml
- cas-server-support-trusted
  - src
    - main
      - java
        org
        jasig
        cas
        adaptors
        trusted
        web
        flow
        PrincipalFromRequestRemoteUserNonInteractiveCredentialsAction.java
        PrincipalFromRequestUserPrincipalNonInteractiveCredentialsAction.java
        authentication
        principal
        PrincipalBearingCredential.java
        PrincipalBearingPrincipalResolver.java
        handler
        support
        PrincipalBearingCredentialsAuthenticationHandler.java
    - site
      - site.xml
    - test
      - java
        org
        jasig
        cas
        adaptors
        trusted
        web
        flow
        PrincipalFromRequestRemoteUserNonInteractiveCredentialsActionTests.java
        PrincipalFromRequestUserPrincipalNonInteractiveCredentialsActionTests.java
        authentication
        principal
        PrincipalBearingCredentialsTests.java
        PrincipalBearingCredentialsToPrincipalResolverTests.java
        handler
        support
        PrincipalBearingCredentialsAuthenticationHandlerTests.java
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
- cas-server-compatibility
  - src
    - site
      - site.xml
    - test
      - resources
        configuration.properties
      - java
        org
        jasig
        cas
        login
        ServiceValidateCompatibilityTests.java
        AbstractCompatibilityTests.java
        LoginAsCredentialsRequestorCompatibilityTests.java
        LoginAsCredentialsAcceptorCompatibilityTests.java
        LoginHelper.java
        LogoutCompatibilityTests.java
        ValidateCompatibilityTests.java
        ProxyValidateCompatibilityTests.java
        AbstractCas2ValidateCompatibilityTests.java
        AllTests.java
        AbstractLoginCompatibilityTests.java
  - pom.xml
  - readme.txt
- cas-server-support-pac4j
  - src
    - main
      - java
        org
        jasig
        cas
        support
        pac4j
        web
        flow
        ClientAction.java
        authentication
        principal
        ClientCredential.java
        ClientAuthenticationMetaDataPopulator.java
        handler
        support
        ClientAuthenticationHandler.java
        plugin
        common
        OauthPersonDirectoryPrincipalResolver.java
        weixin
        WeiXinClientOauth.java
        WeiXinAttributesDefinition.java
        WeiXinJsonTokenExtractor.java
        WeiXinApi20.java
        WeiXinOAuth20ServiceImpl.java
        WeiXinProfile.java
        WeiXinClient.java
    - site
      - site.xml
    - test
      - resources
        log4j.properties
      - java
        org
        jasig
        cas
        support
        pac4j
        web
        flow
        MockFacebookClient.java
        ClientActionTests.java
  - pom.xml
  - NOTICE
- cas-server-support-jdbc
  - src
    - main
      - java
        org
        jasig
        cas
        adaptors
        jdbc
        AbstractJdbcUsernamePasswordAuthenticationHandler.java
        QueryDatabaseAuthenticationHandler.java
        SearchModeSearchDatabaseAuthenticationHandler.java
        BindModeSearchDatabaseAuthenticationHandler.java
    - site
      - site.xml
    - test
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
- checkstyle-rules.xml
- cas-server-support-generic
  - src
    - main
      - java
        org
        jasig
        cas
        adaptors
        generic
        RejectUsersAuthenticationHandler.java
        FileAuthenticationHandler.java
    - site
      - site.xml
    - test
      - resources
        org
        jasig
        cas
        adaptors
        generic
        authentication2.txt
        authentication.txt
      - java
        org
        jasig
        cas
        adaptors
        generic
        FileAuthenticationHandlerTests.java
        RejectUsersAuthenticationHandlerTests.java
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
- cas-server-support-radius
  - src
    - main
      - java
        org
        jasig
        cas
        adaptors
        radius
        authentication
        handler
        support
        RadiusAuthenticationHandler.java
        RadiusProtocol.java
        RadiusClientFactory.java
        JRadiusServerImpl.java
        RadiusServer.java
    - site
      - site.xml
    - test
      - resources
        test-context.xml
      - java
        org
        jasig
        cas
        adaptors
        radius
        JRadiusServerImplTest.java
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
- cas-server-integration-restlet
  - src
    - main
      - java
        org
        jasig
        cas
        integration
        restlet
        TicketResource.java
        TicketGrantingTicketResource.java
    - site
      - site.xml
  - pom.xml
  - NOTICE
- cas-server-uber-webapp
  - src
    - main
      - webapp
        web.xml
    - site
      - site.xml
  - pom.xml
  - NOTICE
- cas-server-support-x509
  - src
    - main
      - java
        org
        jasig
        cas
        adaptors
        x509
        web
        flow
        X509CertificateCredentialsNonInteractiveAction.java
        authentication
        principal
        X509CertificateCredential.java
        AbstractX509PrincipalResolver.java
        X509SubjectDNPrincipalResolver.java
        X509SerialNumberPrincipalResolver.java
        X509SubjectPrincipalResolver.java
        X509SerialNumberAndIssuerDNPrincipalResolver.java
        handler
        support
        RevocationChecker.java
        CRLDistributionPointRevocationChecker.java
        AllowRevocationPolicy.java
        ThresholdExpiredCRLRevocationPolicy.java
        X509CredentialsAuthenticationHandler.java
        RevocationPolicy.java
        RevokedCertificateException.java
        ResourceCRLRevocationChecker.java
        NoOpRevocationChecker.java
        DenyRevocationPolicy.java
        ExpiredCRLException.java
        AbstractCRLRevocationChecker.java
        util
        CertUtils.java
    - site
      - site.xml
    - test
      - resources
        x509-ctop-resolver-jacky.crt
        intermediateCA-expired.crl
        deployerConfigContext.xml
        x509-ctop-resolver-gazzo.crt
        intermediateCA-valid.crl
        user-revoked-distcrl.crt
        user-revoked-distcrl2.crt
        user-valid-distcrl.crt
        user-valid-chain.crt
        rootCA-valid.crl
        rootCA.crt
        user-invalid-keyUsage.crt
        userCA.crt
        userCA-expired.crl
        intermediateCA.crt
        user-expired.crt
        user-revoked.crt
        x509-ctop-resolver-hizzy.crt
        userCA-valid.crl
        user-valid-keyUsage.crt
        user-valid.crt
        snake-oil.crt
      - java
        org
        jasig
        cas
        adaptors
        x509
        web
        flow
        X509CertificateCredentialsNonInteractiveActionTests.java
        authentication
        principal
        X509SubjectPrincipalResolverTests.java
        X509SubjectDNPrincipalResolverTests.java
        X509SerialNumberAndIssuerDNPrincipalResolverTests.java
        AbstractX509CertificateTests.java
        X509SerialNumberPrincipalResolverTests.java
        handler
        support
        CRLDistributionPointRevocationCheckerTests.java
        AbstractCRLRevocationCheckerTests.java
        ThresholdExpiredCRLRevocationPolicyTests.java
        ResourceCRLRevocationCheckerTests.java
        WiringTests.java
        X509CredentialsAuthenticationHandlerTests.java
        util
        MockWebServer.java
        MockX509CRL.java
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
  - etc
    - testCA
      - intermediateCA
        index.txt.old
        index.txt
        index.txt.attr
        private
        cakey.pem
        crlnumber.old
        newcerts
        0CA5.pem
        serial
        serial.old
        crlnumber
        cacert.pem
      - rootCA
        index.txt.old
        index.txt
        index.txt.attr
        private
        cakey.pem
        crlnumber.old
        newcerts
        0CA5.pem
        serial
        serial.old
        crlnumber
        cacert.pem
      - openssl.cnf
      - readme.txt
      - userCA
        index.txt.old
        index.txt
        index.txt.attr
        crl
        crl-02.pem
        private
        cakey.pem
        cert.key
        crlnumber.old
        newcerts
        0CAB.pem
        0CAD.pem
        0CA7.pem
        0CA9.pem
        0CA5.pem
        0CA6.pem
        0CAA.pem
        0CAC.pem
        0CA8.pem
        serial
        serial.old
        index.txt.attr.old
        crlnumber
        cacert.pem
- pom.xml
- cas-server-support-saml
  - src
    - main
      - java
        org
        jasig
        cas
        support
        saml
        web
        support
        SamlArgumentExtractor.java
        GoogleAccountsArgumentExtractor.java
        view
        Saml10FailureResponseView.java
        Saml10SuccessResponseView.java
        AbstractSaml10ResponseView.java
        authentication
        SamlAuthenticationMetaDataPopulator.java
        principal
        GoogleAccountsService.java
        SamlService.java
        util
        SamlUtils.java
        SamlCompliantUniqueTicketIdGenerator.java
        CasHTTPSOAP11Encoder.java
    - site
      - site.xml
    - test
      - resources
        log4j.properties
      - java
        org
        jasig
        cas
        support
        saml
        web
        support
        GoogleAccountsArgumentExtractorTests.java
        SamlArgumentExtractorTests.java
        WebUtilTests.java
        view
        Saml10SuccessResponseViewTests.java
        Saml10FailureResponseViewTests.java
        authentication
        principal
        GoogleAccountsServiceTests.java
        SamlServiceTests.java
        SamlAuthenticationMetaDataPopulatorTests.java
        util
        SamlCompliantUniqueTicketIdGeneratorTests.java
  - pom.xml
  - NOTICE
- checkstyle-suppressions.xml
- LICENSE
- travis
  - init-travis-build.sh
  - test-commit-message.sh
  - push-javadoc-to-gh-pages.sh
- cas-server-integration-jboss
  - src
    - main
      - java
        org
        jasig
        cas
        ticket
        registry
        JBossCacheTicketRegistry.java
        util
        JBossCacheFactoryBean.java
    - site
      - site.xml
    - test
      - resources
        log4j.properties
        jbossTestCache.xml
        jbossTestContext.xml
      - java
        org
        jasig
        cas
        ticket
        registry
        JBossCacheTicketRegistryTests.java
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
- CONTRIBUTING.md
- cas-management-webapp
  - src
    - main
      - resources
        messages_zh_CN.properties
        messages_fa.properties
        messages_ru.properties
        messages_ur.properties
        messages_nl.properties
        messages_zh_TW.properties
        default_views.properties
        messages_pt_BR.properties
        messages_pl.properties
        messages_mk.properties
        messages_cs.properties
        messages_ja.properties
        messages_tr.properties
        messages_it.properties
        messages_hr.properties
        messages_sv.properties
        log4j.xml
        messages_sl.properties
        messages.properties
        messages_de.properties
        messages_ca.properties
        messages_pt_PT.properties
        messages_fr.properties
        user-details.properties
        messages_es.properties
        messages_ar.properties
      - java
        org
        jasig
        cas
        services
        web
        ManageRegisteredServicesMultiActionController.java
        RegisteredServiceSimpleFormController.java
        support
        RegisteredServiceValidator.java
        package.html
        web
        view
        AjaxAwareJsonExceptionResolver.java
      - webapp
        images
        add_service.gif
        edit_service.gif
        info_icon_small.gif
        alert2.gif
        delete_service.gif
        true.gif
        error.gif
        false.gif
        ja-sig-logo.gif
        success.gif
        info.gif
        favicon.ico
        index.jsp
        WEB-INF
        managementConfigContext.xml
        cas-management.properties
        cas-management-servlet.xml
        view
        views.xml
        jsp
        errors.jsp
        includes
        bottom.jsp
        top.jsp
        authorizationFailure.jsp
        logout.jsp
        manage.jsp
        add.jsp
        spring-configuration
        securityContext.xml
        README.txt
        log4jConfiguration.xml
        applicationContext.xml
        filters.xml
        propertyFileConfigurer.xml
        auditTrailContext.xml
        web.xml
        js
        management.js
        css
        management.css
    - site
      - site.xml
    - test
      - resources
        log4j.xml
      - java
        org
        jasig
        cas
        services
        MockRegisteredService.java
        web
        ManageRegisteredServicesMultiActionControllerTests.java
        support
        RegisteredServiceValidatorTests.java
        RegisteredServiceSimpleFormControllerTests.java
        WiringTests.java
  - pom.xml
  - NOTICE
- cas-server-support-oauth
  - src
    - main
      - java
        org
        jasig
        cas
        support
        oauth
        services
        OAuthRegisteredService.java
        OAuthRegisteredCallbackAuthorizeService.java
        OAuthCallbackAuthorizeService.java
        web
        OAuth20ProfileController.java
        OAuth20WrapperController.java
        OAuth20CallbackAuthorizeController.java
        OAuth20AccessTokenController.java
        BaseOAuthWrapperController.java
        OAuth20AuthorizeController.java
        OAuthConstants.java
        OAuthUtils.java
    - site
      - site.xml
    - test
      - resources
        log4j.properties
      - java
        org
        jasig
        cas
        support
        oauth
        web
        OAuth20CallbackAuthorizeControllerTests.java
        OAuth20WrapperControllerTests.java
        OAuth20AccessTokenControllerTests.java
        OAuth20ProfileControllerTests.java
        OAuth20AuthorizeControllerTests.java
        OAuthTestSuite.java
  - pom.xml
  - NOTICE
- INSTALL.txt
- cas-server-integration-ehcache
  - src
    - main
      - java
        org
        jasig
        cas
        ticket
        registry
        EhCacheTicketRegistry.java
        monitor
        EhCacheMonitor.java
        EhCacheStatistics.java
    - site
      - site.xml
    - test
      - resources
        ticketRegistry.xml
        log4j.properties
        ehcache-failsafe.xml
        ehcacheMonitor-test.xml
        ehcache-replicated.xml
      - java
        org
        jasig
        cas
        ticket
        registry
        EhCacheTicketRegistryTests.java
        monitor
        EhCacheMonitorTests.java
  - pom.xml
  - NOTICE
- tasks.xml
- cas-server-support-spnego
  - src
    - main
      - java
        org
        jasig
        cas
        support
        spnego
        web
        flow
        SpnegoNegociateCredentialsAction.java
        SpnegoCredentialsAction.java
        authentication
        principal
        SpnegoPrincipalResolver.java
        SpnegoCredential.java
        handler
        support
        NtlmAuthenticationHandler.java
        JCIFSConfig.java
        JCIFSSpnegoAuthenticationHandler.java
        util
        SpnegoConstants.java
    - site
      - site.xml
    - test
      - java
        org
        jasig
        cas
        support
        spnego
        MockJCSIFAuthentication.java
        authentication
        principal
        SpnegoCredentialsToPrincipalResolverTests.java
        SpnegoCredentialsTests.java
        handler
        support
        JCSIFSpnegoAuthenticationHandlerTests.java
        MockPrincipal.java
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
- cas-server-core
  - src
    - main
      - java
        org
        jasig
        cas
        services
        JpaServiceRegistryDaoImpl.java
        ServiceContext.java
        AbstractRegisteredService.java
        RegexRegisteredService.java
        RegisteredServiceAttributeFilter.java
        support
        RegisteredServiceRegexAttributeFilter.java
        RegisteredServiceDefaultAttributeFilter.java
        LogoutType.java
        RegisteredServiceImpl.java
        ServiceRegistryDao.java
        jmx
        AbstractServicesManagerMBean.java
        ReloadableServicesManagerMBean.java
        ServicesManagerMBean.java
        UnauthorizedServiceException.java
        ReloadableServicesManager.java
        RegisteredService.java
        package.html
        UnauthorizedProxyingException.java
        ServicesManager.java
        DefaultServicesManagerImpl.java
        UnauthorizedSsoServiceException.java
        InMemoryServiceRegistryDaoImpl.java
        web
        DelegateController.java
        init
        SafeContextLoaderListener.java
        CORSFilter.java
        SafeDispatcherServlet.java
        package.html
        support
        CasArgumentExtractor.java
        AbstractArgumentExtractor.java
        ArgumentExtractor.java
        WebUtils.java
        bind
        CredentialsBinder.java
        package.html
        view
        AbstractCasView.java
        flow
        AbstractNonInteractiveCredentialsAction.java
        AuthenticationViaFormAction.java
        AuthenticationExceptionHandler.java
        CasVersion.java
        CentralAuthenticationServiceImpl.java
        authentication
        MixedPrincipalException.java
        ImmutableAuthentication.java
        HandlerResult.java
        AcceptUsersAuthenticationHandler.java
        InvalidLoginTimeException.java
        UsernamePasswordCredential.java
        ContextualAuthenticationPolicyFactory.java
        PreventedException.java
        RequiredHandlerAuthenticationPolicyFactory.java
        AuthenticationMetaDataPopulator.java
        RememberMeUsernamePasswordCredential.java
        AccountPasswordMustChangeException.java
        ContextualAuthenticationPolicy.java
        principal
        BasicPrincipalResolver.java
        ShibbolethCompatiblePersistentIdGenerator.java
        Service.java
        PersistentIdGenerator.java
        WebApplicationService.java
        ChainingPrincipalResolver.java
        Principal.java
        RememberMeAuthenticationMetaDataPopulator.java
        Response.java
        AbstractWebApplicationService.java
        SimplePrincipal.java
        PrincipalResolver.java
        SimpleWebApplicationServiceImpl.java
        package.html
        SingleLogoutService.java
        PersonDirectoryPrincipalResolver.java
        AcceptAnyAuthenticationPolicyFactory.java
        AuthenticationPolicy.java
        support
        PasswordPolicyConfiguration.java
        PasswordExpiringWarningMessage.java
        UnresolvedPrincipalException.java
        NotPreventedAuthenticationPolicy.java
        InvalidLoginLocationException.java
        AuthenticationManager.java
        Credential.java
        Authentication.java
        AbstractCredential.java
        RootCasException.java
        HttpBasedServiceCredential.java
        BasicCredentialMetaData.java
        AllAuthenticationPolicy.java
        AuthenticationBuilder.java
        AuthenticationHandler.java
        AuthenticationException.java
        PrincipalException.java
        RequiredHandlerAuthenticationPolicy.java
        PolicyBasedAuthenticationManager.java
        SuccessfulHandlerMetaDataPopulator.java
        AccountDisabledException.java
        handler
        MyPasswordEncoder.java
        DefaultPasswordEncoder.java
        PrefixSuffixPrincipalNameTransformer.java
        BadCredentialsAuthenticationException.java
        PasswordEncoder.java
        support
        AbstractPreAndPostProcessingAuthenticationHandler.java
        AbstractUsernamePasswordAuthenticationHandler.java
        JaasAuthenticationHandler.java
        package.html
        HttpBasedServiceCredentialsAuthenticationHandler.java
        UnknownUsernameAuthenticationException.java
        PrincipalNameTransformer.java
        PlainTextPasswordEncoder.java
        NoOpPrincipalNameTransformer.java
        UncategorizedAuthenticationException.java
        AuthenticationException.java
        BadUsernameOrPasswordAuthenticationException.java
        UnsupportedCredentialsException.java
        BlockedCredentialsAuthenticationException.java
        BadPasswordAuthenticationException.java
        package.html
        AnyAuthenticationPolicy.java
        package.html
        AbstractAuthenticationHandler.java
        OneTimePasswordCredential.java
        RememberMeCredential.java
        CredentialMetaData.java
        audit
        spi
        TicketOrCredentialPrincipalResolver.java
        ServiceResourceResolver.java
        ServiceManagementResourceResolver.java
        CredentialsAsFirstParameterResourceResolver.java
        TicketAsFirstParameterResourceResolver.java
        CentralAuthenticationService.java
        logout
        LogoutRequest.java
        LogoutManagerImpl.java
        LogoutRequestStatus.java
        LogoutManager.java
        LogoutMessageCreator.java
        SamlCompliantLogoutMessageCreator.java
        ticket
        TicketCreationException.java
        TicketValidationException.java
        TicketGrantingTicketImpl.java
        ExpirationPolicy.java
        registry
        AbstractDistributedTicketRegistry.java
        JpaTicketRegistry.java
        DefaultTicketRegistry.java
        support
        JpaLockingStrategy.java
        LockingStrategy.java
        NoOpLockingStrategy.java
        DefaultTicketRegistryCleaner.java
        package.html
        TicketRegistry.java
        RegistryCleaner.java
        AbstractTicketRegistry.java
        package.html
        proxy
        ProxyHandler.java
        support
        Cas20ProxyHandler.java
        Cas10ProxyHandler.java
        package.html
        package.html
        ServiceTicketImpl.java
        support
        TicketGrantingTicketExpirationPolicy.java
        HardTimeoutExpirationPolicy.java
        MultiTimeUseOrTimeoutExpirationPolicy.java
        TimeoutExpirationPolicy.java
        RememberMeDelegatingExpirationPolicy.java
        ThrottledUseAndTimeoutExpirationPolicy.java
        package.html
        NeverExpiresExpirationPolicy.java
        TicketState.java
        TicketGrantingTicket.java
        TicketException.java
        AbstractTicket.java
        UnsatisfiedAuthenticationPolicyException.java
        InvalidTicketException.java
        Ticket.java
        ServiceTicket.java
        package.html
        util
        RandomStringGenerator.java
        HttpClient.java
        PublicKeyFactoryBean.java
        AopUtils.java
        DefaultLongNumericGenerator.java
        LongNumericGenerator.java
        UniqueTicketIdGenerator.java
        DefaultUniqueTicketIdGenerator.java
        ApplicationContextProvider.java
        CustomBeanValidationPostProcessor.java
        PrivateKeyFactoryBean.java
        DefaultRandomStringGenerator.java
        SpringAwareMessageMessageInterpolator.java
        CalendarUtils.java
        SimpleHttpClient.java
        Pair.java
        SamlDateUtils.java
        NumericGenerator.java
        package.html
        Message.java
        remoting
        server
        RemoteCentralAuthenticationService.java
        package.html
        monitor
        SessionMonitor.java
        AbstractCacheMonitor.java
        SessionStatus.java
        AbstractPoolMonitor.java
        AbstractNamedMonitor.java
        CacheStatus.java
        DataSourceMonitor.java
        Monitor.java
        CacheStatistics.java
        MemoryMonitor.java
        Status.java
        HealthStatus.java
        HealthCheckMonitor.java
        SimpleCacheStatistics.java
        StatusCode.java
        TicketRegistryState.java
        PoolStatus.java
        MemoryStatus.java
        validation
        AbstractCasProtocolValidationSpecification.java
        Cas20WithoutProxyingValidationSpecification.java
        ValidationSpecification.java
        Cas10ProtocolValidationSpecification.java
        Assertion.java
        Cas20ProtocolValidationSpecification.java
        package.html
        ImmutableAssertion.java
        aspect
        LogAspect.java
        package.html
    - site
      - site.xml
    - test
      - resources
        jpaTestApplicationContext.xml
        log4j.properties
        core-context.xml
        mfa-test-context.xml
        DSAPrivateKey01.key
        DSAPublicKey01.key
        WEB-INF
        cas-servlet.xml
        org
        jasig
        cas
        authentication
        handler
        support
        jaas.conf
      - java
        org
        jasig
        cas
        CentralAuthenticationServiceImplWithMokitoTests.java
        services
        RegexRegisteredServiceTests.java
        UnauthorizedProxyingExceptionTests.java
        support
        RegisteredServiceRegexAttributeFilterTests.java
        RegisteredServiceDefaultAttributeFilterTests.java
        JpaServiceRegistryDaoImplTests.java
        UnauthorizedServiceExceptionTests.java
        AbstractRegisteredServiceTests.java
        RegisteredServiceImplTests.java
        UnauthorizedSsoServiceExceptionTests.java
        DefaultServicesManagerImplTests.java
        TestOneTimePasswordAuthenticationHandler.java
        web
        init
        SafeContextLoaderListenerTests.java
        SafeDispatcherServletTests.java
        flow
        AuthenticationExceptionHandlerTests.java
        AuthenticationViaFormActionTests.java
        authentication
        ImmutableAuthenticationTests.java
        AcceptUsersAuthenticationHandlerTests.java
        PolicyBasedAuthenticationManagerTests.java
        principal
        RememberMeAuthenticationMetaDataPopulatorTests.java
        ChainingPrincipalResolverTest.java
        ResponseTests.java
        ShibbolethCompatiblePersistentIdGeneratorTests.java
        SimpleWebApplicationServiceImplTests.java
        SimplePrincipalTests.java
        PersonDirectoryPrincipalResolverTests.java
        HttpBasedServiceCredentialTests.java
        SimpleServiceTests.java
        handler
        UnsupportedCredentialsExceptionTests.java
        BlockedCredentialsAuthenticationExceptionTests.java
        BadPasswordAuthenticationExceptionTests.java
        DefaultPasswordEncoderTests.java
        PlainTextPasswordEncoderTests.java
        BadCredentialsAuthenticationExceptionTests.java
        support
        MockLoginModule.java
        SimpleTestUsernamePasswordHandlerTests.java
        SimpleTestUsernamePasswordAuthenticationHandler.java
        JaasAuthenticationHandlerTests.java
        HttpBasedServiceCredentialsAuthenticationHandlerTests.java
        BadUsernameOrPasswordAuthenticationExceptionTests.java
        UnknownUsernameAuthenticationExceptionTests.java
        RememberMePasswordCredentialTests.java
        UsernamePasswordCredentialTests.java
        MockOnlyOneTicketRegistry.java
        AbstractCentralAuthenticationServiceTest.java
        logout
        SamlCompliantLogoutMessageCreatorTests.java
        LogoutManagerImplTests.java
        ticket
        registry
        DistributedTicketRegistryTests.java
        DefaultTicketRegistryTests.java
        support
        DefaultTicketRegistryCleanerTests.java
        JpaLockingStrategyTests.java
        AbstractRegistryCleanerTests.java
        AbstractTicketRegistryTests.java
        JpaTicketRegistryTests.java
        TicketValidationExceptionTests.java
        proxy
        support
        Cas20ProxyHandlerTests.java
        Cas10ProxyHandlerTests.java
        support
        ThrottledUseAndTimeoutExpirationPolicyTests.java
        MultiTimeUseOrTimeoutExpirationPolicyTests.java
        TimeoutExpirationPolicyTests.java
        TicketGrantingTicketExpirationPolicyTests.java
        RememberMeDelegatingExpirationPolicyTests.java
        TicketGrantingTicketImplTests.java
        InvalidTicketExceptionTests.java
        ServiceTicketImplTests.java
        TicketCreationExceptionTests.java
        TestUtils.java
        util
        SimpleHttpClientTests.java
        DefaultLongNumericGeneratorTests.java
        DefaultRandomStringGeneratorTests.java
        DefaultUniqueTicketIdGeneratorTests.java
        MultifactorAuthenticationTests.java
        remoting
        server
        RemoteCentralAuthenticationServiceTests.java
        monitor
        HealthCheckMonitorTests.java
        SessionMonitorTests.java
        DataSourceMonitorTests.java
        AbstractPoolMonitorTests.java
        AbstractCacheMonitorTests.java
        MemoryMonitorTests.java
        MockExpireUpdateTicketLogoutManager.java
        mock
        MockAuthenticationMetaDataPopulator.java
        MockServiceTicket.java
        MockApplicationEvent.java
        MockValidationSpecification.java
        MockService.java
        MockTicketGrantingTicket.java
        validation
        Cas10ProtocolValidationSpecificationTests.java
        ImmutableAssertionTests.java
        Cas20ProtocolValidationSpecificationTests.java
        Cas20WithoutProxyingValidationSpecificationTests.java
        CentralAuthenticationServiceImplTests.java
      - clover
        clover.license
    - xsd
      - cas2_spec.dtd
      - cas2.xsd
  - pom.xml
  - NOTICE
- README.md
- cas-server-extension-clearpass
  - src
    - main
      - resources
        ehcacheClearPass.xml
      - java
        org
        jasig
        cas
        extension
        clearpass
        ClearPassController.java
        EncryptedMapDecorator.java
        CacheCredentialsMetaDataPopulator.java
        EhcacheBackedMap.java
        TicketRegistryDecorator.java
    - site
      - site.xml
    - test
      - resources
        ehcacheClearPass.xml
      - java
        log4j.xml
        org
        jasig
        cas
        extension
        clearpass
        EncryptedMapDecoratorTests.java
        TicketRegistryDecoratorTests.java
  - pom.xml
  - NOTICE
- cas-server-support-openid
  - src
    - main
      - java
        org
        jasig
        cas
        support
        openid
        web
        mvc
        SmartOpenIdController.java
        support
        DefaultOpenIdUserNameExtractor.java
        OpenIdPostUrlHandlerMapping.java
        OpenIdArgumentExtractor.java
        OpenIdUserNameExtractor.java
        OpenIdProviderController.java
        flow
        OpenIdSingleSignOnAction.java
        authentication
        principal
        OpenIdPrincipalResolver.java
        OpenIdService.java
        OpenIdCredential.java
        handler
        support
        OpenIdCredentialsAuthenticationHandler.java
    - site
      - site.xml
    - test
      - java
        org
        jasig
        cas
        support
        openid
        web
        mvc
        SmartOpenIdControllerTest.java
        support
        OpenIdArgumentExtractorTests.java
        DefaultOpenIdUserNameExtractorTests.java
        OpenIdPostUrlHandlerMappingTests.java
        flow
        OpenIdSingleSignOnActionTests.java
        authentication
        principal
        OpenIdServiceTests.java
        handler
        support
        OpenIdCredentialsAuthenticationHandlerTests.java
      - clover
        clover.license
  - pom.xml
  - NOTICE
- cas-server-support-ldap
  - src
    - main
      - resources
        cas.properties.example
      - java
        org
        jasig
        cas
        adaptors
        ldap
        services
        DefaultLdapServiceMapper.java
        LdapServiceRegistryDao.java
        LdapRegisteredServiceMapper.java
        remote
        RemoteAddressCredential.java
        RemoteAddressAuthenticationHandler.java
        RemoteAddressNonInteractiveCredentialsAction.java
        authentication
        support
        LdapPasswordPolicyConfiguration.java
        UpnSearchEntryResolver.java
        AccountStateHandler.java
        DefaultAccountStateHandler.java
        OptionalWarningAccountStateHandler.java
        LdapAuthenticationHandler.java
        util
        LdapUtils.java
        persondir
        LdapPersonAttributeDao.java
        userdetails
        LdapUserDetailsService.java
        monitor
        PooledConnectionFactoryMonitor.java
        ConnectionFactoryMonitor.java
    - site
      - site.xml
    - test
      - resources
        openldap-anonsearchbind-authn-test.xml
        ldap-provision-context.xml
        openldap.properties.example
        ad-authn-test.xml
        openldap-poolmonitor-test.xml
        log4j.properties
        openldap-regservice-test.xml
        ldif
        openldap-groups.ldif
        openldap-users.ldif
        ad-users.ldif
        openldap-directbind-authn-test.xml
        openldap-searchbind-authn-test.xml
        ad.properties.example
        openldap-userdetails-test.xml
        openldap-monitor-test.xml
        schema
        virginiaTechGroup.schema
        casRegisteredService.schema
        openldap-persondir-test.xml
      - java
        org
        jasig
        cas
        adaptors
        ldap
        services
        LdapServiceRegistryDaoTests.java
        authentication
        LdapAuthenticationHandlerTests.java
        AbstractLdapTests.java
        util
        LdapTestUtils.java
        persondir
        LdapPersonAttributeDaoTests.java
        userdetails
        LdapUserDetailsServiceTests.java
        monitor
        PooledConnectionFactoryMonitorTests.java
        ConnectionFactoryMonitorTests.java
      - clover
        clover.license
  - pom.xml
  - ldap.properties.sample
  - NOTICE
  - .gitignore
- cas-server-support-legacy
  - src
    - main
      - java
        org
        jasig
        cas
        authentication
        principal
        UsernamePasswordCredentials.java
        Credentials.java
        LegacyAuthenticationHandlerAdapter.java
        CredentialsAdapter.java
        UsernamePasswordCredentialsAdapter.java
        handler
        NamedAuthenticationHandler.java
        AuthenticationHandler.java
    - site
      - site.xml
    - test
      - resources
        test-context.xml
      - java
        org
        jasig
        cas
        authentication
        LegacyAuthenticationHandlerAdapterTest.java
        handler
        TestAlwaysFailAuthenticationHandler.java
        TestAlwaysPassAuthenticationHandler.java
      - clover
        clover.license
  - pom.xml
  - .cvsignore
  - NOTICE
- cas-server-webapp
  - src
    - main
      - resources
        messages_zh_CN.properties
        messages_fa.properties
        messages_ru.properties
        messages_ur.properties
        messages_nl.properties
        messages_zh_TW.properties
        default_views.properties
        messages_pt_BR.properties
        messages_pl.properties
        cas-theme-default.properties
        protocol_views.properties
        messages_mk.properties
        messages_cs.properties
        messages_ja.properties
        messages_tr.properties
        messages_it.properties
        messages_hr.properties
        messages_sv.properties
        log4j.xml
        messages_sl.properties
        messages.properties
        saml_views.properties
        messages_de.properties
        messages_ca.properties
        messages_pt_PT.properties
        messages_fr.properties
        messages_es.properties
        messages_ar.properties
      - webapp
        images
        key-point_tl.gif
        confirm.gif
        green.gif
        key-point_bl.gif
        error.gif
        ja-sig-logo.gif
        key-point_tr.gif
        red.gif
        key-point_br.gif
        info.gif
        public
        bootstrap
        fonts
        glyphicons-halflings-regular.woff
        glyphicons-halflings-regular.eot
        glyphicons-halflings-regular.woff2
        glyphicons-halflings-regular.ttf
        glyphicons-halflings-regular.svg
        js
        bootstrap.min.js
        bootstrap.js
        respond.min.js
        npm.js
        html5shiv.js
        bootstrap-treeview.js
        css
        bootstrap-theme.css.map
        bootstrap.min.css
        bootstrap.css
        bootstrap-theme.min.css
        bootstrap-theme.css
        assets
        img
        expo-lyft.jpg
        expo-vogue.jpg
        expo-riot.jpg
        expo-newsweek.jpg
        brand
        bootstrap-punchout.svg
        bootstrap-outline.svg
        bootstrap-solid.svg
        flash
        ZeroClipboard.swf
        js
        src
        application.js
        customizer.js
        ie-emulation-modes-warning.js
        ie8-responsive-file-warning.js
        docs.min.js
        vendor
        Blob.js
        jquery.min.js
        anchor.min.js
        ZeroClipboard.min.js
        uglify.min.js
        FileSaver.js
        holder.min.js
        jszip.min.js
        less.min.js
        ie10-viewport-bug-workaround.js
        css
        src
        pygments-manni.css
        docs.css
        docs.min.css.map
        ie10-viewport-bug-workaround.css
        docs.min.css
        img
        loading.gif
        loader.gif
        2.jpg
        1.jpg
        loader2.gif
        3.jpg
        loading1.gif
        clip.jpg
        libs
        jquery.min.js
        zepto.min.js
        extend
        layer.ext.js
        jquery.pagination.js
        jquery-1.10.2.min.js
        ajaxfileupload.js
        jquery1.7.2.min.js
        json.min.js
        layer.js
        skin
        default
        loading-0.gif
        loading-1.gif
        loading-2.gif
        layer.css
        layer.ext.css
        jquery
        jquery-1.11.2.min.js
        zepto.js
        jquery2.1.1.min.js
        js
        tuozhuai.js
        move.js
        idcard.js
        utils.js
        calendar.js
        layer.min.js
        jquery_ex.js
        json.js
        zepto_ex.js
        base.js
        btncss
        buttons.css
        base.css
        vicons-font.css
        normalize.css
        audit
        common.css
        laydate
        skins
        default
        laydate.css
        dahong
        laydate.css
        molv
        laydate.css
        laydate.js
        need
        laydate.css
        js
        list.js
        common1.js
        edit.js
        common2.js
        css
        pagination.css
        login.css
        common.css
        favicon.ico
        index.jsp
        WEB-INF
        unused-spring-configuration
        mbeans.xml
        clearpass-configuration.xml
        lppe-configuration.xml
        deployerConfigContext.xml
        cas-servlet.xml
        logout-webflow.xml
        login-webflow.xml
        cas.properties
        view
        jsp
        errors.jsp
        monitoring
        viewStatistics.jsp
        default
        ui
        casMustChangePassView.jsp
        casLogoutView.jsp
        casBadWorkstationView.jsp
        serviceErrorView.jsp
        index
        common.css
        casExpiredPassView.jsp
        wechatLogin.jsp
        casLoginMessageView.jsp
        includes
        bottom.jsp
        wechatTop.jsp
        top.jsp
        wechatBottom.jsp
        casConfirmView.jsp
        myLogin.jsp
        casBadHoursView.jsp
        casAccountDisabledView.jsp
        serviceErrorSsoView.jsp
        casGenericSuccess.jsp
        casAccountLockedView.jsp
        casLoginView.jsp
        common.css
        authorizationFailure.jsp
        protocol
        2.0
        casServiceValidationSuccess.jsp
        casProxySuccessView.jsp
        casServiceValidationFailure.jsp
        casProxyFailureView.jsp
        openid
        casOpenIdAssociationSuccessView.jsp
        casOpenIdServiceFailureView.jsp
        user.jsp
        casOpenIdAssociationFailureView.jsp
        casOpenIdServiceSuccessView.jsp
        casPostResponseView.jsp
        3.0
        casServiceValidationSuccess.jsp
        casServiceValidationFailure.jsp
        oauth
        confirm.jsp
        clearPass
        clearPassFailure.jsp
        clearPassSuccess.jsp
        restlet-servlet.xml
        spring-configuration
        securityContext.xml
        ticketRegistry.xml
        ticketGrantingTicketCookieGenerator.xml
        README.txt
        warnCookieGenerator.xml
        uniqueIdGenerators.xml
        log4jConfiguration.xml
        argumentExtractorsConfiguration.xml
        applicationContext.xml
        filters.xml
        propertyFileConfigurer.xml
        ticketExpirationPolicies.xml
        auditTrailContext.xml
        web.xml
        js
        cas.js
        css
        cas.css
    - site
      - site.xml
    - test
      - resources
        log4j.xml
      - webtest
        build.xml
        logintests.xml
        properties
        local.properties
        canoo.properties
        validationtests.xml
        includes
        definition.xml
        config.xml
        README.txt
        proxyCallBackTest
        index.jsp
        WEB-INF
        web.xml
        modules
        extractServiceTicket.xml
        verifyCookie.xml
        checkLoginSuccess.xml
        checkBadCredentials.xml
        verifyLoginForm.xml
        verifyRedirect.xml
        checkWarnPage.xml
        getLoginFormWithoutService.xml
        getLogout.xml
        getLoginFormWithService.xml
        processLogin.xml
      - java
        org
        jasig
        cas
        WiringTests.java
      - clover
        clover.license
  - pom.xml
  - NOTICE
  - .gitignore
- NOTICE
- etc
  - terracotta
    - sample-terracotta-config.xml
  - jmeter
    - tests
      - simpleCasLoginTest.jmx
  - jetty
    - jetty.xml
    - jetty-ssl.xml
    - jetty-https.xml
    - web.xml
- cas-server-integration-memcached
  - src
    - main
      - java
        org
        jasig
        cas
        ticket
        registry
        support
        kryo
        KryoTranscoder.java
        serial
        SamlServiceSerializer.java
        AbstractWebApplicationServiceSerializer.java
        GoogleAccountsServiceSerializer.java
        URLSerializer.java
        RegisteredServiceSerializer.java
        SimpleWebApplicationServiceSerializer.java
        FieldHelper.java
        MemCacheTicketRegistry.java
        monitor
        MemcachedMonitor.java
    - site
      - site.xml
    - test
      - resources
        ticketRegistry-test.xml
      - java
        org
        jasig
        cas
        ticket
        registry
        MemCacheTicketRegistryTests.java
        support
        kryo
        KryoTranscoderTests.java
  - pom.xml
  - NOTICE
- .gitignore
- cas-server-webapp-support
  - src
    - main
      - java
        org
        jasig
        cas
        services
        web
        ServiceThemeResolver.java
        web
        HealthCheckController.java
        ServiceValidateController.java
        StatisticsController.java
        ProxyController.java
        DelegatingController.java
        support
        AbstractThrottledSubmissionHandlerInterceptorAdapter.java
        AbstractInMemoryThrottledSubmissionHandlerInterceptorAdapter.java
        InMemoryThrottledSubmissionByIpAddressAndUsernameHandlerInterceptorAdapter.java
        InMemoryThrottledSubmissionByIpAddressHandlerInterceptorAdapter.java
        CookieRetrievingCookieGenerator.java
        package.html
        InspektrThrottledSubmissionByIpAddressAndUsernameHandlerInterceptorAdapter.java
        view
        package.html
        CasReloadableMessageBundle.java
        Cas10ResponseView.java
        FlowExecutionExceptionResolver.java
        package.html
        flow
        GenerateServiceTicketAction.java
        AbstractLogoutAction.java
        TerminateWebSessionListener.java
        InitialFlowSetupAction.java
        TicketGrantingTicketCheckAction.java
        CompositeFlowExecutionKeyConverter.java
        LogoutAction.java
        CasDefaultFlowUrlHandler.java
        TerminateSessionAction.java
        FrontChannelLogoutAction.java
        ServiceAuthorizationCheck.java
        LogoutConversionService.java
        SelectiveFlowHandlerAdapter.java
        package.html
        GatewayServicesManagementCheck.java
        GenerateLoginTicketAction.java
        SendTicketGrantingTicketAction.java
        util
        AutowiringSchedulerFactoryBean.java
    - site
      - site.xml
    - test
      - resources
        inMemoryThrottledSubmissionContext.xml
        jpaTestApplicationContext.xml
        inspektrThrottledSubmissionContext.xml
        log4j.xml
        messages.properties
        applicationContext.xml
        WEB-INF
        cas.properties
        messages_fr.properties
      - java
        org
        jasig
        cas
        services
        web
        ServiceThemeResolverTests.java
        web
        ServiceValidateControllerTests.java
        ProxyControllerTests.java
        FlowExecutionExceptionResolverTests.java
        support
        InMemoryThrottledSubmissionByIpAddressAndUsernameHandlerInterceptorAdapterTests.java
        AbstractThrottledSubmissionHandlerInterceptorAdapterTests.java
        InspektrThrottledSubmissionByIpAddressAndUsernameHandlerInterceptorAdapterTests.java
        AbstractInMemoryThrottledSubmissionHandlerInterceptorAdapterTests.java
        InMemoryThrottledSubmissionByIpAddressHandlerInterceptorAdapterTests.java
        CookieRetrievingCookieGeneratorTests.java
        view
        Cas10ResponseViewTests.java
        CasReloadableMessageBundleTests.java
        flow
        LogoutActionTests.java
        SendTicketGrantingTicketActionTests.java
        GenerateServiceTicketActionTests.java
        ServiceAuthorizationCheckTests.java
        FrontChannelLogoutActionTests.java
        InitialFlowSetupActionTests.java
        util
        AutowiringSchedulerFactoryBeanTests.java
  - pom.xml
  - NOTICE
  - .gitignore
- assembly.xml

/*
 * Licensed to Jasig under one or more contributor license
 * agreements. See the NOTICE file distributed with this work
 * for additional information regarding copyright ownership.
 * Jasig licenses this file to you under the Apache License,
 * Version 2.0 (the "License"); you may not use this file
 * except in compliance with the License.  You may obtain a
 * copy of the License at the following location:
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing,
 * software distributed under the License is distributed on an
 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 * KIND, either express or implied.  See the License for the
 * specific language governing permissions and limitations
 * under the License.
 */
package org.jasig.cas.support.pac4j.authentication.handler.support;

import java.security.GeneralSecurityException;
import javax.security.auth.login.FailedLoginException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.validation.constraints.NotNull;

import org.apache.commons.lang.StringUtils;
import org.jasig.cas.authentication.BasicCredentialMetaData;
import org.jasig.cas.authentication.HandlerResult;
import org.jasig.cas.authentication.PreventedException;
import org.jasig.cas.authentication.handler.support.AbstractPreAndPostProcessingAuthenticationHandler;
import org.jasig.cas.authentication.Credential;
import org.jasig.cas.authentication.principal.SimplePrincipal;
import org.jasig.cas.support.pac4j.authentication.principal.ClientCredential;
import org.pac4j.core.client.Client;
import org.pac4j.core.client.Clients;
import org.pac4j.core.context.J2EContext;
import org.pac4j.core.context.WebContext;
import org.pac4j.core.profile.UserProfile;
import org.springframework.webflow.context.ExternalContextHolder;
import org.springframework.webflow.context.servlet.ServletExternalContext;

/**
 * This handler authenticates the client credentials: it uses them to get the user profile returned by the provider
 * for an authenticated user.
 *
 * @author Jerome Leleu
 * @since 3.5.0
 */
@SuppressWarnings("unchecked")
public final class ClientAuthenticationHandler extends AbstractPreAndPostProcessingAuthenticationHandler {

    /**
     * The clients for authentication.
     */
    @NotNull
    private final Clients clients;

    /**
     * Define the clients.
     *
     * @param theClients The clients for authentication
     */
    public ClientAuthenticationHandler(final Clients theClients) {
        this.clients = theClients;
    }

    @Override
    public boolean supports(final Credential credential) {
        return credential != null && ClientCredential.class.isAssignableFrom(credential.getClass());
    }

    @Override
    protected HandlerResult doAuthentication(final Credential credential) throws GeneralSecurityException, PreventedException {
        final ClientCredential clientCredentials = (ClientCredential) credential;
        logger.debug("clientCredentials : {}", clientCredentials);

        final String clientName = clientCredentials.getCredentials().getClientName();
        logger.debug("clientName : {}", clientName);

        // get client
        final Client<org.pac4j.core.credentials.Credentials, UserProfile> client = this.clients.findClient(clientName);
        logger.debug("client : {}", client);

        // web context
        final ServletExternalContext servletExternalContext = (ServletExternalContext) ExternalContextHolder.getExternalContext();
        final HttpServletRequest request = (HttpServletRequest) servletExternalContext.getNativeRequest();
        final HttpServletResponse response = (HttpServletResponse) servletExternalContext.getNativeResponse();
        final WebContext webContext = new J2EContext(request, response);

        // get user profile
        final UserProfile userProfile = client.getUserProfile(clientCredentials.getCredentials(), webContext);
        logger.debug("userProfile : {}", userProfile);

        if (userProfile != null && StringUtils.isNotBlank(userProfile.getTypedId())) {
            clientCredentials.setUserProfile(userProfile);
            return new HandlerResult(
                    this,
                    new BasicCredentialMetaData(credential),
                    new SimplePrincipal(userProfile.getTypedId(), userProfile.getAttributes()));
        }

        throw new FailedLoginException("Provider did not produce profile for " + clientCredentials);
    }
}