Examples of org.apache.jackrabbit.oak.spi.security.authentication.Authentication

• org.apache.jackrabbit.oak.spi.security.authentication.Authentication
  The {@code Authentication} interface defines methods to validate{@link javax.jcr.Credentials Credentials} during the{@link javax.security.auth.spi.LoginModule#login() login step} of theauthentication process. The validation depends on the authentication mechanism in place.

  A given implementation may only handle certain types of {@code Credentials}as the authentication process is tightly coupled to the semantics of the {@code Credentials}.

  For example a implementation may only be able to validate UserID/password pairs such as passed with {@link javax.jcr.SimpleCredentials}, while another might be responsible for validating login token issued by the repository or an external access token generation mechanism.

        userId = getTestUser().getID();
    }

    @Test
    public void testAuthenticateWithoutTokenProvider() throws Exception {
        Authentication authentication = new TokenAuthentication(null);

        assertFalse(authentication.authenticate(new TokenCredentials("token")));
    }

    }

    @Test
    public void testAuthenticateCannotResolveUser() throws Exception {
        SimpleCredentials sc = new SimpleCredentials("unknownUser", "pw".toCharArray());
        Authentication a = new UserAuthentication(sc.getUserID(), getUserManager(root));

        assertFalse(a.authenticate(sc));
    }

    @Test
    public void testAuthenticateResolvesToGroup() throws Exception {
        Group g = getUserManager(root).createGroup("g1");
        SimpleCredentials sc = new SimpleCredentials(g.getID(), "pw".toCharArray());
        Authentication a = new UserAuthentication(sc.getUserID(), getUserManager(root));

        try {
            a.authenticate(sc);
            fail("Authenticating Group should fail");
        } catch (LoginException e) {
            // success
        } finally {
            if (g != null) {

        if (credentials == null || userId == null) {
            log.debug("Could not extract userId/credentials");
            return false;
        }

        Authentication authentication = new UserAuthentication(userId, getUserManager());
        boolean success = authentication.authenticate(credentials);
        if (success) {
            principals = getPrincipals(userId);

            log.debug("Adding Credentials to shared state.");
            sharedState.put(SHARED_KEY_CREDENTIALS, credentials);

        if (credentials == null || userId == null) {
            log.debug("Could not extract userId/credentials");
            return false;
        }

        Authentication authentication = new UserAuthentication(userId, getUserManager());
        boolean success = authentication.authenticate(credentials);
        if (success) {
            principals = getPrincipals(userId);

            log.debug("Adding Credentials to shared state.");
            sharedState.put(SHARED_KEY_CREDENTIALS, credentials);

        super.before();
        authentication = new TokenAuthentication(tokenProvider);
    }
    @Test
    public void testAuthenticateWithoutTokenProvider() throws Exception {
        Authentication authentication = new TokenAuthentication(null);

        assertFalse(authentication.authenticate(new TokenCredentials("token")));
    }