nl.surfnet.spring.security.opensaml.AuthenticationFailureHandlerImpl.java Source code

Java tutorial

  1. HOME
  2. Java
  3. nl.surfnet.spring.security.opensaml.AuthenticationFailureHandlerImpl.java

Introduction

Here is the source code for nl.surfnet.spring.security.opensaml.AuthenticationFailureHandlerImpl.java

Source

/*
 * Copyright 2012 SURFnet bv, The Netherlands
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package nl.surfnet.spring.security.opensaml;

import java.io.IOException;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.security.core.AuthenticationException;
import org.springframework.security.web.authentication.AuthenticationFailureHandler;
import org.springframework.security.web.savedrequest.RequestCache;
import org.springframework.security.web.savedrequest.SavedRequest;

public class AuthenticationFailureHandlerImpl implements AuthenticationFailureHandler {

    private final static Logger logger = LoggerFactory.getLogger(AuthenticationFailureHandlerImpl.class);

    private final RequestCache requestCache;

    public AuthenticationFailureHandlerImpl(RequestCache requestCache) {
        super();
        this.requestCache = requestCache;
    }

    public void onAuthenticationFailure(HttpServletRequest request, HttpServletResponse response,
            AuthenticationException authenticationException) throws IOException, ServletException {

        SavedRequest savedRequest = requestCache.getRequest(request, response);

        logger.debug("saved Request: {}", savedRequest);

        if (authenticationException instanceof IdentityProviderAuthenticationException && savedRequest != null) {

            logger.warn("Authn Failure reported by the IDP.", authenticationException);
            logger.debug("Retry original request of {}", savedRequest.getRedirectUrl());
            response.sendRedirect(savedRequest.getRedirectUrl());
        } else {
            logger.warn("Unrecoverable authn failure. Sending to Forbidden", authenticationException);
            response.sendError(HttpServletResponse.SC_FORBIDDEN);
        }
    }
}