@Override public boolean isAuthenticationRequest() { return getWrapped().isAuthenticationRequest(); }
@Override public boolean isAuthenticationRequest() { return getWrapped().isAuthenticationRequest(); }
@Override public boolean isAuthenticationRequest() { return getWrapped().isAuthenticationRequest(); }
@Override public boolean isAuthenticationRequest() { return getWrapped().isAuthenticationRequest(); }
private boolean isOnProtectedURLWithStaleData(HttpMessageContext httpMessageContext) { return httpMessageContext.isProtected() && // When HttpServletRequest#authenticate is called, it counts as "mandated" authentication // which here means isProtected() is true. But we want to use HttpServletRequest#authenticate // to resume a dialog started by accessing a protected page, so therefore exclude it here. !httpMessageContext.isAuthenticationRequest() && getSavedRequest(httpMessageContext.getRequest()) != null && getSavedAuthentication(httpMessageContext.getRequest()) == null && // Some servers consider the Servlet special URL "/j_security_check" as // a protected URL !httpMessageContext.getRequest().getRequestURI().endsWith("j_security_check"); }
private boolean isOnProtectedURLWithStaleData(HttpMessageContext httpMessageContext) { return httpMessageContext.isProtected() && // When HttpServletRequest#authenticate is called, it counts as "mandated" authentication // which here means isProtected() is true. But we want to use HttpServletRequest#authenticate // to resume a dialog started by accessing a protected page, so therefore exclude it here. !httpMessageContext.isAuthenticationRequest() && getSavedRequest(httpMessageContext.getRequest()) != null && getSavedAuthentication(httpMessageContext.getRequest()) == null && // Some servers consider the Servlet special URL "/j_security_check" as // a protected URL !httpMessageContext.getRequest().getRequestURI().endsWith("j_security_check"); }
private boolean isOnInitialProtectedURL(HttpMessageContext httpMessageContext) { return httpMessageContext.isProtected() && // When HttpServletRequest#authenticate is called, it counts as "mandated" authentication // which here means isProtected() is true. But we want to use HttpServletRequest#authenticate // to resume a dialog started by accessing a protected page, so therefore exclude it here. !httpMessageContext.isAuthenticationRequest() && getSavedRequest(httpMessageContext.getRequest()) == null && getSavedAuthentication(httpMessageContext.getRequest()) == null && // Some servers consider the Servlet special URL "/j_security_check" as // a protected URL !httpMessageContext.getRequest().getRequestURI().endsWith("j_security_check"); }
private boolean isOnInitialProtectedURL(HttpMessageContext httpMessageContext) { return httpMessageContext.isProtected() && // When HttpServletRequest#authenticate is called, it counts as "mandated" authentication // which here means isProtected() is true. But we want to use HttpServletRequest#authenticate // to resume a dialog started by accessing a protected page, so therefore exclude it here. !httpMessageContext.isAuthenticationRequest() && getSavedRequest(httpMessageContext.getRequest()) == null && getSavedAuthentication(httpMessageContext.getRequest()) == null && // Some servers consider the Servlet special URL "/j_security_check" as // a protected URL !httpMessageContext.getRequest().getRequestURI().endsWith("j_security_check"); }