DefaultAuthenticationService (hybris Commerce Suite 6.3.0.0-SNAPSHOT)

java.lang.Object
- de.hybris.platform.servicelayer.internal.service.AbstractService
- - de.hybris.platform.servicelayer.internal.service.AbstractBusinessService
  - - de.hybris.platform.servicelayer.security.auth.impl.DefaultAuthenticationService

All Implemented Interfaces:

AuthenticationService, Serializable
```
public class DefaultAuthenticationService
extends AbstractBusinessService
implements AuthenticationService
```
Implementation backed by a UserManager

See Also:

Serialized Form

Nested Class Summary
- Nested classes/interfaces inherited from class de.hybris.platform.servicelayer.internal.service.AbstractService
  AbstractService.SerializableDTO

Field Summary

Fields
Modifier and Type	Field and Description
`static String`	`LOGIN_ANONYMOUS_ALWAYS_DISABLED` Configuration constant for `login.anonymous.always.disabled/ which allows changing the (default) disabling of the anonymous account.`

Fields inherited from class de.hybris.platform.servicelayer.internal.service.AbstractBusinessService
modelService, sessionService, txManager

Fields inherited from class de.hybris.platform.servicelayer.internal.service.AbstractService
tenant

Constructor Summary

Constructors
Constructor and Description

DefaultAuthenticationService()

Constructors
Constructor and Description
`DefaultAuthenticationService()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`protected InvalidCredentialsException`	`buildInvalidCredentialsException()` for security reasons we should throw same exception for both cases: user not found password does not match You can overwrite this method and adapt the exception and/or test that should be thrown in this case
`protected InvalidCredentialsException`	`buildInvalidCredentialsException(String message)`
`UserModel`	`checkCredentials(String login, String password)` check credentials.
`UserModel`	`login(String login, String password)` login the user identified with login and password.
`void`	`logout()` log out the current user.
`void`	`setPasswordEncoderService(PasswordEncoderService passwordEncoderService)`
`void`	`setUserService(UserService userService)`

Methods inherited from class de.hybris.platform.servicelayer.internal.service.AbstractBusinessService
getModelService, getSessionService, getTxManager, setModelService, setSessionService, setTxManager

Methods inherited from class de.hybris.platform.servicelayer.internal.service.AbstractService
afterPropertiesSet, getCurrentTenant, setBeanName, setCurrentTenant, setTenantScope, writeReplace

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Field Detail
  - LOGIN_ANONYMOUS_ALWAYS_DISABLED
```
public static final String LOGIN_ANONYMOUS_ALWAYS_DISABLED
```
    Configuration constant for login.anonymous.always.disabled/ which allows changing the (default) disabling of the anonymous account.
    See Also: Constant Field Values
Constructor Detail DefaultAuthenticationService public DefaultAuthenticationService() Method Detail login public UserModel login(String login, String password) throws InvalidCredentialsException Description copied from interface: AuthenticationService login the user identified with login and password. login means the credentials are checked and the user is being set as current user on the session (see UserService.setCurrentUser(UserModel)) Implementation note: The default implementation checks against the Jalo user UID and the password. Specified by: login in interface AuthenticationService Parameters: login - the login password - the password Returns: the same usermodel that is also set as current user in the session Throws: InvalidCredentialsException - if username/login does not match checkCredentials public UserModel checkCredentials(String login, String password) throws InvalidCredentialsException Description copied from interface: AuthenticationService check credentials. this method does not set the user on the current session. Specified by: checkCredentials in interface AuthenticationService Parameters: login - the login password - the password Returns: the UserModel Throws: InvalidCredentialsException - if username/login does not match logout public void logout() Description copied from interface: AuthenticationService log out the current user. this closes the underlaying session Specified by: logout in interface AuthenticationService buildInvalidCredentialsException protected InvalidCredentialsException buildInvalidCredentialsException() for security reasons we should throw same exception for both cases: user not found password does not match You can overwrite this method and adapt the exception and/or test that should be thrown in this case



Returns:
InvalidCredentialsException








buildInvalidCredentialsException
protected InvalidCredentialsException buildInvalidCredentialsException(String message)







setUserService
public void setUserService(UserService userService)







setPasswordEncoderService
public void setPasswordEncoderService(PasswordEncoderService passwordEncoderService)

Class DefaultAuthenticationService

Nested Class Summary

Nested classes/interfaces inherited from class de.hybris.platform.servicelayer.internal.service.AbstractService

Field Summary

Fields inherited from class de.hybris.platform.servicelayer.internal.service.AbstractBusinessService

Fields inherited from class de.hybris.platform.servicelayer.internal.service.AbstractService

Constructor Summary

Method Summary

Methods inherited from class de.hybris.platform.servicelayer.internal.service.AbstractBusinessService

Methods inherited from class de.hybris.platform.servicelayer.internal.service.AbstractService

Methods inherited from class java.lang.Object

Field Detail

LOGIN_ANONYMOUS_ALWAYS_DISABLED

Constructor Detail

DefaultAuthenticationService

Method Detail

login

checkCredentials

logout

buildInvalidCredentialsException

buildInvalidCredentialsException

setUserService

setPasswordEncoderService