public interface PortletCredentialPlugIn extends PortletPlugIn
Regardless of which authentication method the portlet chooses to use, the client library and WebSphere Commerce services should not be aware of the method when interacting with the portlet in the Portal environment. A callback handler is therefore used to generate an identity token for use in calling a WebSphere Commerce service client library.
The idea is to have the underlying service binding layer to process the single sign on request against the WebSphere Commerce server on behalf of the client without knowing the technical details.
A credential plug-in is one that helps generate the authentication callback handler mentioned above. It leverages the WebSphere Commerce Portlet MVC plug-in framework so that a customization version can be specified instead. The credential plug-in must implement this com.ibm.commerce.foundation.client.portal.services.PortletCredentialPlugIn interface which can be initialized and destroyed along with the WebSphere Commerce Portlet.
A default implementation has been provided - com.ibm.commerce.foundation.client.portal.services.MVCPortletCredentialService .
Modifier and Type | Field and Description |
---|---|
static java.lang.String | COPYRIGHT
IBM copyright notice field.
|
Modifier and Type | Method and Description |
---|---|
java.lang.String | getAuthenticationType(javax.portlet.PortletRequest portletRequest)
Retrieves the authentication type from the portlet preferences in the given request.
|
javax.security.auth.callback.CallbackHandler | getCallbackHandler(javax.portlet.PortletRequest portletRequest)
Creates a new authentication callback handler.
|
java.lang.String | getDN(javax.portlet.PortletRequest portletRequest)
Returns the user DN string from the Portal Subject.
|
IdentityTokenCallback | getIdentityTokenCallback(javax.portlet.PortletRequest portletRequest)
Returns the identity token callback object from either the PortletSession or from the BCS service.
|
java.lang.String | getLTPAToken(javax.portlet.PortletRequest portletRequest)
Returns the LTPA token from the Portal Subject.
|
void | getUsernamePassword(javax.portlet.PortletRequest portletRequest, java.lang.StringBuffer userId, java.lang.StringBuffer password)
Returns the userid and password from the Portal Subject.
|
boolean | isAuthenticated(javax.portlet.PortletRequest portletRequest)
Checks whether the current user has been authenticated.
|
static final java.lang.String COPYRIGHT
javax.security.auth.callback.CallbackHandler getCallbackHandler(javax.portlet.PortletRequest portletRequest)
java.lang.String getAuthenticationType(javax.portlet.PortletRequest portletRequest)
void getUsernamePassword(javax.portlet.PortletRequest portletRequest, java.lang.StringBuffer userId, java.lang.StringBuffer password) throws MVCPortletSystemException
java.lang.String getDN(javax.portlet.PortletRequest portletRequest) throws MVCPortletSystemException
java.lang.String getLTPAToken(javax.portlet.PortletRequest portletRequest) throws MVCPortletSystemException
IdentityTokenCallback getIdentityTokenCallback(javax.portlet.PortletRequest portletRequest) throws MVCPortletSystemException
boolean isAuthenticated(javax.portlet.PortletRequest portletRequest) throws MVCPortletSystemException