org.apache.shiro.spring.boot.jwt.authc

类 JwtAuthenticatingFilter

java.lang.Object

org.apache.shiro.web.servlet.ServletContextSupport

org.apache.shiro.web.servlet.AbstractFilter

org.apache.shiro.web.servlet.NameableFilter

org.apache.shiro.web.servlet.OncePerRequestFilter

org.apache.shiro.web.servlet.AdviceFilter

org.apache.shiro.web.filter.PathMatchingFilter

org.apache.shiro.web.filter.AccessControlFilter

org.apache.shiro.web.filter.authc.AuthenticationFilter

org.apache.shiro.web.filter.authc.AuthenticatingFilter

org.apache.shiro.web.filter.authc.FormAuthenticationFilter

org.apache.shiro.biz.web.filter.authc.AbstractAuthenticatingFilter

org.apache.shiro.biz.web.filter.authc.AbstractTrustableAuthenticatingFilter

org.apache.shiro.biz.web.filter.authc.TrustableRestAuthenticatingFilter

org.apache.shiro.spring.boot.jwt.authc.JwtAuthenticatingFilter

所有已实现的接口:

javax.servlet.Filter, org.apache.shiro.util.Nameable, org.apache.shiro.web.filter.PathConfigProcessor

public class JwtAuthenticatingFilter
extends org.apache.shiro.biz.web.filter.authc.TrustableRestAuthenticatingFilter

Jwt认证 (authentication)过滤器

作者:

： vindell

字段概要

字段

限定符和类型	字段和说明
protected static String	AUTHORIZATION_HEADER HTTP Authorization header, equal to Authorization
protected static String	AUTHORIZATION_PARAM

从类继承的字段 org.apache.shiro.biz.web.filter.authc.AbstractTrustableAuthenticatingFilter

DEFAULT_ACCESS_CONTROL_ALLOW_METHODS, DEFAULT_CAPTCHA_PARAM, DEFAULT_RETRY_TIMES_KEY_ATTRIBUTE_NAME

从类继承的字段 org.apache.shiro.web.filter.authc.FormAuthenticationFilter

DEFAULT_ERROR_KEY_ATTRIBUTE_NAME, DEFAULT_PASSWORD_PARAM, DEFAULT_REMEMBER_ME_PARAM, DEFAULT_USERNAME_PARAM

从类继承的字段 org.apache.shiro.web.filter.authc.AuthenticatingFilter

PERMISSIVE

从类继承的字段 org.apache.shiro.web.filter.authc.AuthenticationFilter

DEFAULT_SUCCESS_URL

从类继承的字段 org.apache.shiro.web.filter.AccessControlFilter

DEFAULT_LOGIN_URL, GET_METHOD, POST_METHOD

从类继承的字段 org.apache.shiro.web.filter.PathMatchingFilter

appliedPaths, pathMatcher

从类继承的字段 org.apache.shiro.web.servlet.OncePerRequestFilter

ALREADY_FILTERED_SUFFIX

从类继承的字段 org.apache.shiro.web.servlet.AbstractFilter

filterConfig

构造器概要

构造器

构造器和说明
JwtAuthenticatingFilter()

方法概要

限定符和类型	方法和说明
protected org.apache.shiro.authc.AuthenticationToken	createJwtToken(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
protected String	getAccessToken(javax.servlet.ServletRequest request)
String	getAuthorizationCookieName()
String	getAuthorizationHeaderName()
String	getAuthorizationParamName()
JwtPayloadRepository	getJwtPayloadRepository()
protected boolean	isAccessAllowed(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, Object mappedValue)
boolean	isCheckExpiry()
protected boolean	isJwtSubmission(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
protected boolean	onAccessDenied(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
protected boolean	onAccessFailure(org.apache.shiro.authc.AuthenticationToken token, Exception e, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
protected boolean	onLoginSuccess(org.apache.shiro.authc.AuthenticationToken token, org.apache.shiro.subject.Subject subject, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response)
void	setAuthorizationCookieName(String authorizationCookieName)
void	setAuthorizationHeaderName(String authorizationHeaderName)
void	setAuthorizationParamName(String authorizationParamName)
void	setCheckExpiry(boolean checkExpiry)
void	setJwtPayloadRepository(JwtPayloadRepository jwtPayloadRepository)

从类继承的方法 org.apache.shiro.biz.web.filter.authc.AbstractTrustableAuthenticatingFilter

createToken, executeLogin, getCaptcha, getCaptchaParam, getCaptchaResolver, getFailureCounter, getHost, getRetryTimesKeyAttribute, getRetryTimesWhenAccessDenied, isCaptchaEnabled, isOverRetryRemind, isOverRetryTimes, onAccessSuccess, onLoginFailure, setCaptchaEnabled, setCaptchaParam, setCaptchaResolver, setFailureCountAttribute, setFailureCounter, setRetryTimesKeyAttribute, setRetryTimesWhenAccessDenied

从类继承的方法 org.apache.shiro.biz.web.filter.authc.AbstractAuthenticatingFilter

getLoginListeners, getSessionDao, getSessionMaximumRestrict, getSessionRestrictedAttributeName, getSessionTerminalRestrict, getSubject, getUnauthorizedUrl, isSessionRestrictable, isSessionStateless, setLoginListeners, setSessionDao, setSessionMaximumRestrict, setSessionRestrictable, setSessionRestrictedAttributeName, setSessionStateless, setSessionTerminalRestrict, setUnauthorizedUrl

从类继承的方法 org.apache.shiro.web.filter.authc.FormAuthenticationFilter

createToken, getFailureKeyAttribute, getPassword, getPasswordParam, getRememberMeParam, getUsername, getUsernameParam, isLoginSubmission, isRememberMe, setFailureAttribute, setFailureKeyAttribute, setLoginUrl, setPasswordParam, setRememberMeParam, setUsernameParam

从类继承的方法 org.apache.shiro.web.filter.authc.AuthenticatingFilter

cleanup, createToken, isPermissive

从类继承的方法 org.apache.shiro.web.filter.authc.AuthenticationFilter

getSuccessUrl, issueSuccessRedirect, setSuccessUrl

从类继承的方法 org.apache.shiro.web.filter.AccessControlFilter

getLoginUrl, isLoginRequest, onAccessDenied, onPreHandle, redirectToLogin, saveRequest, saveRequestAndRedirectToLogin

从类继承的方法 org.apache.shiro.web.filter.PathMatchingFilter

getPathWithinApplication, isEnabled, pathsMatch, pathsMatch, preHandle, processPathConfig

从类继承的方法 org.apache.shiro.web.servlet.AdviceFilter

afterCompletion, doFilterInternal, executeChain, postHandle

从类继承的方法 org.apache.shiro.web.servlet.OncePerRequestFilter

doFilter, getAlreadyFilteredAttributeName, isEnabled, isEnabled, setEnabled, shouldNotFilter

从类继承的方法 org.apache.shiro.web.servlet.NameableFilter

getName, setName, toStringBuilder

从类继承的方法 org.apache.shiro.web.servlet.AbstractFilter

destroy, getFilterConfig, getInitParam, init, onFilterConfigSet, setFilterConfig

从类继承的方法 org.apache.shiro.web.servlet.ServletContextSupport

getContextAttribute, getContextInitParam, getServletContext, removeContextAttribute, setContextAttribute, setServletContext, toString

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

字段详细资料

AUTHORIZATION_PARAM

protected static final String AUTHORIZATION_PARAM

另请参阅:

常量字段值

AUTHORIZATION_HEADER

protected static final String AUTHORIZATION_HEADER

HTTP Authorization header, equal to Authorization

另请参阅:

常量字段值

构造器详细资料

JwtAuthenticatingFilter

public JwtAuthenticatingFilter()

方法详细资料

isAccessAllowed

protected boolean isAccessAllowed(javax.servlet.ServletRequest request,
                                  javax.servlet.ServletResponse response,
                                  Object mappedValue)

覆盖:

isAccessAllowed 在类中 org.apache.shiro.biz.web.filter.authc.AbstractAuthenticatingFilter

onAccessDenied

protected boolean onAccessDenied(javax.servlet.ServletRequest request,
                                 javax.servlet.ServletResponse response)
                          throws Exception

覆盖:

onAccessDenied 在类中 org.apache.shiro.biz.web.filter.authc.TrustableRestAuthenticatingFilter

抛出:

Exception

onLoginSuccess

protected boolean onLoginSuccess(org.apache.shiro.authc.AuthenticationToken token,
                                 org.apache.shiro.subject.Subject subject,
                                 javax.servlet.ServletRequest request,
                                 javax.servlet.ServletResponse response)
                          throws Exception

覆盖:

onLoginSuccess 在类中 org.apache.shiro.biz.web.filter.authc.TrustableRestAuthenticatingFilter

抛出:

Exception

onAccessFailure

protected boolean onAccessFailure(org.apache.shiro.authc.AuthenticationToken token,
                                  Exception e,
                                  javax.servlet.ServletRequest request,
                                  javax.servlet.ServletResponse response)

覆盖:

onAccessFailure 在类中 org.apache.shiro.biz.web.filter.authc.AbstractTrustableAuthenticatingFilter

createJwtToken

protected org.apache.shiro.authc.AuthenticationToken createJwtToken(javax.servlet.ServletRequest request,
                                                                    javax.servlet.ServletResponse response)

isJwtSubmission

protected boolean isJwtSubmission(javax.servlet.ServletRequest request,
                                  javax.servlet.ServletResponse response)

getAccessToken

protected String getAccessToken(javax.servlet.ServletRequest request)

getAuthorizationHeaderName

public String getAuthorizationHeaderName()

setAuthorizationHeaderName

public void setAuthorizationHeaderName(String authorizationHeaderName)

getAuthorizationParamName

public String getAuthorizationParamName()

setAuthorizationParamName

public void setAuthorizationParamName(String authorizationParamName)

getAuthorizationCookieName

public String getAuthorizationCookieName()

setAuthorizationCookieName

public void setAuthorizationCookieName(String authorizationCookieName)

getJwtPayloadRepository

public JwtPayloadRepository getJwtPayloadRepository()

setJwtPayloadRepository

public void setJwtPayloadRepository(JwtPayloadRepository jwtPayloadRepository)

isCheckExpiry

public boolean isCheckExpiry()

setCheckExpiry

public void setCheckExpiry(boolean checkExpiry)