DefaultWebSubjectFactory是用于创建WebSubject的类,它继承DefaultSubjectFactory并重写createSubject方法。构造方法中初始化父类,createSubject方法根据WebSubjectContext创建WebSubject,包括解析SecurityManager、Session、Principal等信息,并通过newSubjectInstance方法实例化WebDelegatingSubject。
DefaultWebSubjectFactory类主要定义了创建webSubject的操作,它继承了DefaultSubjectFactory类,现对其解析如下:
1.DefaultSubjectFactory类
可以参考DefaultSubjectFactory类源码解析,里面主要定义了创建subject的操作。
2.DefaultWebSubjectFactory类
2.1.构造方法
public DefaultWebSubjectFactory() {
super();
}
2.2.创建subject(它覆盖了DefaultSubjectFactory类的方法)
public Subject createSubject(SubjectContext context) {
if (!(context instanceof WebSubjectContext)) {
return super.createSubject(context);
}
WebSubjectContext wsc = (WebSubjectContext) context;
SecurityManager securityManager = wsc.resolveSecurityManager();
Session session = wsc.resolveSession();
boolean sessionEnabled = wsc.isSessionCreationEnabled();
PrincipalCollection principals = wsc.resolvePrincipals();
boolean authenticated = wsc.resolveAuthenticated();
String host = wsc.resolveHost();
ServletRequest request = wsc.resolveServletRequest();
ServletResponse response = wsc.resolveServletResponse();
return new WebDelegatingSubject(principals, authenticated, host, session, sessionEnabled,
request, response, securityManager);
}
2.3.新建subject实例
protected Subject newSubjectInstance(PrincipalCollection principals, boolean authenticated,
String host, Session session,
ServletRequest request, ServletResponse response,
SecurityManager securityManager) {
return new WebDelegatingSubject(principals, authenticated, host, session, true,
request, response, securityManager);
}
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
