Spring Security框架原理--概览

SecurityFilterChain

• 表单认证
  

• Http Basic认证
  

AuthenticationManager

Authentication

• UsernamePasswordAuthenticationToken

  • JaasAuthenticationToken

• AnonymousAuthenticationToken

• RememberMeAuthenticationToken

• PreAuthenticatedAuthenticationToken

• BearerTokenAuthenticationToken

• OAuth2AuthenticationToken

• OAuth2LoginAuthenticationToken

• OAuth2AuthorizationCodeAuthenticationToken

• OpenIDAuthenticationToken

• CasAuthenticationToken

• CasAssertionAuthenticationToken

• RunAsUserToken

• TestingAuthenticationToken

• AbstractOAuth2TokenAuthenticationToken

  • JwtAuthenticationToken
  • OAuth2IntrospectionAuthenticationToken

AuthenticationProvider

UsernamePasswordAuthenticationToken:

• AbstractUserDetailsAuthenticationProvider

  • DaoAuthenticationProvider

• AbstractJaasAuthenticationProvider

  • JaasAuthenticationProvider
  • DefaultJaasAuthenticationProvider

• RemoteAuthenticationProvider

• AbstractLdapAuthenticationProvider

  • ActiveDirectoryLdapAuthenticationProvider
  • LdapAuthenticationProvider

• AnonymousAuthenticationProvider

• RememberMeAuthenticationProvider

PreAuthenticatedAuthenticationToken:

• PreAuthenticatedAuthenticationProvider
• GoogleAccountsAuthenticationProvider

BearerTokenAuthenticationToken:

• JwtAuthenticationProvider
• OAuth2IntrospectionAuthenticationProvider

OAuth2LoginAuthenticationToken:

• OAuth2LoginAuthenticationProvider

• OidcAuthorizationCodeAuthenticationProvider

• OAuth2AuthorizationCodeAuthenticationProvider

• OpenIDAuthenticationProvider

• CasAuthenticationProvider

• RunAsImplAuthenticationProvider

• TestingAuthenticationProvider

SecurityContext

UserDetails

UserDetailsService

AuthenticationEntryPoint

form login -> LoginUrlAuthenticationEntryPoint
basic login -> BasicAuthenticationEntryPoint
undefined -> Http403ForbiddenEntryPoint
resource server -> OAuth2AuthenticationEntryPoint