Changeset 1139

Timestamp:

2009-03-11 12:29:07 (4 years ago)

Author:

bruno

Message:

Further renaming of "Authentication Mechanism" to "Authentication Method".

Location:

trunk

Files:

• modules/kauri-security/kauri-security-api/src/main/java/org/kauriproject/security/AuthenticationMethod.java (moved) (moved from trunk/modules/kauri-security/kauri-security-api/src/main/java/org/kauriproject/security/AuthenticationMechanism.java) (3 diffs)
• modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/AbstractAuthenticationMethod.java (moved) (moved from trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/AbstractAuthenticationMechanism.java) (2 diffs)
• modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/BasicAuthenticationMethod.java (moved) (moved from trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/BasicAuthenticationMechanism.java) (1 diff)
• modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/BelgianEidAuthenticationMethod.java (moved) (moved from trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/BelgianEidAuthenticationMechanism.java) (4 diffs)
• modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/DigestAuthenticationMethod.java (moved) (moved from trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/DigestAuthenticationMechanism.java) (1 diff)
• modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/FormAuthenticationMethod.java (moved) (moved from trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/FormAuthenticationMechanism.java) (2 diffs)
• modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/LoginRestlet.java (modified) (1 diff)
• modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/LogoutRestlet.java (modified) (1 diff)
• modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/AuthenticationMethodEntry.java (moved) (moved from trunk/modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/AuthenticationMechanismEntry.java) (1 diff)
• modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/RealmImpl.java (modified) (6 diffs)
• modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/RealmsBuilder.java (modified) (3 diffs)
• modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/SecurityFilter.java (modified) (8 diffs)
• modules/kauri-security/kauri-security-impl/src/test/confs/securitytest/security/auth.xml (modified) (6 diffs)
• modules/kauri-security/kauri-security-impl/src/test/java/org/kauriproject/security/test/SecurityTest.java (modified) (1 diff)
• modules/kauri-security/kauri-security-impl/src/test/modulesrc/org/kauriproject/security/test/testmodules/security/KAURI-INF/spring/services.xml (modified) (2 diffs)
• samples/kauri-security-sample/conf/security/auth.xml (modified) (6 diffs)
• samples/kauri-security-sample/src/main/kauri/pages/index.html.xml (modified) (1 diff)
• samples/kauri-security-sample/src/main/kauri/spring/services.xml (modified) (4 diffs)

trunk/modules/kauri-security/kauri-security-api/src/main/java/org/kauriproject/security/AuthenticationMethod.java

@@ -24 +24 @@
  * This interface covers the protocol-specific part of authentication:
  * extracting the authentication details (e.g. username and password) from
- * the request.
+ * the request and sending a challenge.
  *
  * <p>It does not concern itself with validating that the the authentication
@@ -36 +36 @@
  * various *ProcessingFitlers and ProcessingFilterEntryPoints.
  */
-public interface AuthenticationMechanism {
+public interface AuthenticationMethod {
     
     /**
@@ -54 +54 @@
      * Creates a challenge (e.g. by setting a ChallengeResponse or redirecting or rendering a login form).
      *
-     * <p>If the authentication mechanism is incapable of sending a challenge, an
+     * <p>If the authentication method is incapable of sending a challenge, an
      * UnsupportedOperationException may be thrown
      *

trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/AbstractAuthenticationMethod.java

@@ -16 +16 @@
 package org.kauriproject.security.providers;
 
-import org.kauriproject.security.AuthenticationMechanism;
+import org.kauriproject.security.AuthenticationMethod;
 import org.kauriproject.security.Realm;
 import org.restlet.data.Request;
@@ -22 +22 @@
 import org.springframework.security.Authentication;
 
-public abstract class AbstractAuthenticationMechanism implements AuthenticationMechanism {
+public abstract class AbstractAuthenticationMethod implements AuthenticationMethod {
 
     abstract public Authentication getAuthentication(Request request, Response response, Realm realm);

trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/BasicAuthenticationMethod.java

@@ -27 +27 @@
 import org.springframework.security.providers.UsernamePasswordAuthenticationToken;
 
-public class BasicAuthenticationMechanism extends AbstractAuthenticationMechanism {
+public class BasicAuthenticationMethod extends AbstractAuthenticationMethod {
 
     public Authentication getAuthentication(Request request, Response response, Realm realm) throws AuthenticationException {

trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/BelgianEidAuthenticationMethod.java

@@ -1 +1 @@
 package org.kauriproject.security.providers;
 
-import org.kauriproject.security.AuthenticationMechanism;
+import org.kauriproject.security.AuthenticationMethod;
 import org.kauriproject.security.Realm;
 import org.kauriproject.util.restlet.ResponseUtil;
@@ -18 +18 @@
 import java.util.ArrayList;
 import java.util.Map;
-import java.util.HashMap;
 import java.io.ByteArrayOutputStream;
 import java.io.ByteArrayInputStream;
@@ -24 +23 @@
 
 /**
- * Belgian eID authentication mechanism.
+ * Belgian eID authentication method.
  *
  * <p>See http://eid.belgium.be/
@@ -34 +33 @@
  * name is subject to specific laws.
  */
-public class BelgianEidAuthenticationMechanism implements AuthenticationMechanism, InitializingBean {
+public class BelgianEidAuthenticationMethod implements AuthenticationMethod, InitializingBean {
     private BelgianEidPrincipalExtractor principalExtractor;
     private String challengePage;

trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/DigestAuthenticationMethod.java

@@ -54 +54 @@
  *  http://www.acegisecurity.org/acegi-security/xref/org/acegisecurity/ui/digestauth/DigestProcessingFilter.html
  */
-public class DigestAuthenticationMechanism extends AbstractAuthenticationMechanism {
-    
-    private static final Log logger = LogFactory.getLog(DigestAuthenticationMechanism.class);
+public class DigestAuthenticationMethod extends AbstractAuthenticationMethod {
+    
+    private static final Log logger = LogFactory.getLog(DigestAuthenticationMethod.class);
     
     private Random random = new Random();

trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/FormAuthenticationMethod.java

@@ -23 +23 @@
 import org.kauriproject.runtime.rapi.KauriModule;
 
-public class FormAuthenticationMechanism extends AbstractAuthenticationMechanism implements InitializingBean {
+public class FormAuthenticationMethod extends AbstractAuthenticationMethod implements InitializingBean {
     
     private KauriModule kauriModule;
@@ -29 +29 @@
     private PreAuthenticatedAuthenticationTokenStore preAuthTokenStore = null;
 
-    public FormAuthenticationMechanism(KauriModule kauriModule) {
+    public FormAuthenticationMethod(KauriModule kauriModule) {
         this.kauriModule = kauriModule;
     }

trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/LoginRestlet.java

@@ -30 +30 @@
 
 /**
- * The LoginRestlet implements the login-form for the {@link FormAuthenticationMechanism}.
+ * The LoginRestlet implements the login-form for the {@link FormAuthenticationMethod}.
  */
 public class LoginRestlet extends LoginLogoutBaseRestlet {

trunk/modules/kauri-security/kauri-security-auth-methods/src/main/java/org/kauriproject/security/providers/LogoutRestlet.java

@@ -24 +24 @@
 
 /**
- * The LogoutRestlet implements the logout-form for the {@link FormAuthenticationMechanism}.
+ * The LogoutRestlet implements the logout-form for the {@link FormAuthenticationMethod}.
  */
 public class LogoutRestlet extends LoginLogoutBaseRestlet {

trunk/modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/AuthenticationMethodEntry.java

@@ -1 +1 @@
 package org.kauriproject.security.infrastructure;
 
-import org.kauriproject.security.AuthenticationMechanism;
+import org.kauriproject.security.AuthenticationMethod;
 
-public class AuthenticationMechanismEntry {
-    private AuthenticationMechanism mechanism;
+public class AuthenticationMethodEntry {
+    private AuthenticationMethod method;
     private int strength;
 
-    public AuthenticationMechanismEntry(AuthenticationMechanism mechanism, int strength) {
-        this.mechanism = mechanism;
+    public AuthenticationMethodEntry(AuthenticationMethod method, int strength) {
+        this.method = method;
         this.strength = strength;
     }
 
-    public AuthenticationMechanism get() {
-        return mechanism;
+    public AuthenticationMethod get() {
+        return method;
     }
 

trunk/modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/RealmImpl.java

@@ -18 +18 @@
 import java.util.List;
 
-import org.kauriproject.security.AuthenticationMechanism;
+import org.kauriproject.security.AuthenticationMethod;
 import org.kauriproject.security.Realm;
 import org.springframework.security.AccessDecisionManager;
@@ -26 +26 @@
 public class RealmImpl implements Realm {
     private String name;
-    private List<AuthenticationMechanismEntry> authenticationMechanisms;
+    private List<AuthenticationMethodEntry> authenticationMethods;
     private AuthenticationManager authenticationManager;
     private AccessDecisionManager accessDecisionManager;
@@ -32 +32 @@
 
     public RealmImpl(String name, ObjectDefinitionSource objectDefinitionSource,
-            List<AuthenticationMechanismEntry> authenticationMechanisms, AuthenticationManager authenticationManager,
+            List<AuthenticationMethodEntry> authenticationMethods, AuthenticationManager authenticationManager,
             AccessDecisionManager accessDecisionManager) {
         this.name = name;
         this.objectDefinitionSource = objectDefinitionSource;
-        this.authenticationMechanisms = authenticationMechanisms;
+        this.authenticationMethods = authenticationMethods;
         this.authenticationManager = authenticationManager;
         this.accessDecisionManager = accessDecisionManager;
@@ -45 +45 @@
     }
 
-    public List<AuthenticationMechanismEntry> getAuthenticationMechanisms() {
-        return authenticationMechanisms;
+    public List<AuthenticationMethodEntry> getAuthenticationMethods() {
+        return authenticationMethods;
     }
 
@@ -62 +62 @@
 
     /**
-     * Returns the weakest AuthenticationMechanism for which the the strength is
+     * Returns the weakest AuthenticationMethod for which the the strength is
      * >= the requested strength, or null if there is no such entry.
      */
-    public AuthenticationMechanism getAuthenticationMechanismForStrength(int strength) {
-        AuthenticationMechanismEntry strongEnoughEntry = null;
+    public AuthenticationMethod getAuthenticationMethodForStrength(int strength) {
+        AuthenticationMethodEntry strongEnoughEntry = null;
 
-        for (AuthenticationMechanismEntry entry : authenticationMechanisms) {
+        for (AuthenticationMethodEntry entry : authenticationMethods) {
             if (entry.getStrength() >= strength) {
                 if (strongEnoughEntry == null)
@@ -80 +80 @@
     }
     
-    public AuthenticationMechanism getDefaultAuthenticationMechanism() {
-        return authenticationMechanisms.get(authenticationMechanisms.size() - 1).get();
+    public AuthenticationMethod getDefaultAuthenticationMethod() {
+        return authenticationMethods.get(authenticationMethods.size() - 1).get();
     }
 

trunk/modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/RealmsBuilder.java

@@ -20 +20 @@
 import org.kauriproject.conf.Conf;
 import org.kauriproject.conf.ConfException;
-import org.kauriproject.security.AuthenticationMechanism;
+import org.kauriproject.security.AuthenticationMethod;
 import org.kauriproject.runtime.rapi.KauriModule;
 import org.springframework.security.*;
@@ -60 +60 @@
             }
 
-            List<Conf> authMechConfs = realmConf.getRequiredChild("authenticationMechanisms").getChildren("authenticationMechanism");
-            List<AuthenticationMechanismEntry> authMechs = new ArrayList<AuthenticationMechanismEntry>();
+            List<Conf> authMechConfs = realmConf.getRequiredChild("authenticationMethods").getChildren("authenticationMethod");
+            List<AuthenticationMethodEntry> authMethods = new ArrayList<AuthenticationMethodEntry>();
             for (Conf authMechConf : authMechConfs) {
                 int strength = authMechConf.getAttributeAsInteger("strength", 0);
-                AuthenticationMechanism mechanism = getBean(authMechConf, AuthenticationMechanism.class, module);
-                authMechs.add(new AuthenticationMechanismEntry(mechanism, strength));
+                AuthenticationMethod method = getBean(authMechConf, AuthenticationMethod.class, module);
+                authMethods.add(new AuthenticationMethodEntry(method, strength));
             }
 
@@ -74 +74 @@
                     AccessDecisionManager.class, module);
 
-            RealmImpl realm = new RealmImpl(name, objectDefinitionSource, authMechs, authenticationManager, accessDecisionManager);
+            RealmImpl realm = new RealmImpl(name, objectDefinitionSource, authMethods, authenticationManager, accessDecisionManager);
 
             realms.add(realm);

trunk/modules/kauri-security/kauri-security-impl/src/main/java/org/kauriproject/security/infrastructure/SecurityFilter.java

@@ -24 +24 @@
 
 import org.kauriproject.runtime.rapi.KauriModule;
-import org.kauriproject.security.AuthenticationMechanism;
+import org.kauriproject.security.AuthenticationMethod;
 import org.kauriproject.security.RestserviceInvocation;
 import org.kauriproject.security.MalformedAuthenticationRequestException;
@@ -85 +85 @@
         Authentication existingAuthToken = SecurityContextHolder.getContext().getAuthentication();
         Authentication authToken = null;
-        AuthenticationMechanismEntry selectedAuthMechanism = null;
+        AuthenticationMethodEntry selectedAuthMethod = null;
 
         if (existingAuthToken == null) {
             //
-            // Look for authentication information on the request by querying all authentication mechanisms
+            // Look for authentication information on the request by querying all authentication methods
             //
 
-            for (AuthenticationMechanismEntry authenticationMechanism : filterContext.realm.getAuthenticationMechanisms()) {
+            for (AuthenticationMethodEntry authenticationMethod : filterContext.realm.getAuthenticationMethods()) {
                 try {
-                    authToken = authenticationMechanism.get().getAuthentication(request, response, filterContext.realm);
+                    authToken = authenticationMethod.get().getAuthentication(request, response, filterContext.realm);
                 } catch (AuthenticationException ae) {
-                    return handleException(request, response, authToken, authenticationMechanism.get(), ae, filterContext);
+                    return handleException(request, response, authToken, authenticationMethod.get(), ae, filterContext);
                 }
 
                 if (authToken != null) {
-                    selectedAuthMechanism = authenticationMechanism;
+                    selectedAuthMethod = authenticationMethod;
                     break;
                 }
@@ -110 +110 @@
             }
 
-            // If strength is not great enough, send a challenge for an appropriate auth mechanism
-            if (selectedAuthMechanism.getStrength() < filterContext.requiredStrength) {
+            // If strength is not great enough, send a challenge for an appropriate auth method
+            if (selectedAuthMethod.getStrength() < filterContext.requiredStrength) {
                 return sendChallenge(request, response, filterContext, "stronger-authentication-required");
             }
@@ -124 +124 @@
                 }
             } catch (AuthenticationException ae) {
-                return handleException(request, response, authToken, selectedAuthMechanism.get(), ae, filterContext);
+                return handleException(request, response, authToken, selectedAuthMethod.get(), ae, filterContext);
             }
         } else {
@@ -146 +146 @@
                 filterContext.realm.getAccessDecisionManager().decide(authToken, filterContext.invocation, filterContext.configAttrDef);
             } catch (AccessDeniedException ade) {
-                return handleException(request, response, authToken, selectedAuthMechanism.get(), ade, filterContext);
+                return handleException(request, response, authToken, selectedAuthMethod.get(), ade, filterContext);
             } catch (AuthenticationException ae) {
-                return handleException(request, response, authToken, selectedAuthMechanism.get(), ae, filterContext);
+                return handleException(request, response, authToken, selectedAuthMethod.get(), ae, filterContext);
             }
 
@@ -215 +215 @@
 
     private int sendChallenge(Request request, Response response, SecurityFilterContext filterContext, String reason) {
-        AuthenticationMechanism mechanism = filterContext.realm.getAuthenticationMechanismForStrength(
+        AuthenticationMethod method = filterContext.realm.getAuthenticationMethodForStrength(
                 filterContext.requiredStrength);
 
-        if (mechanism == null) {
-            String message = String.format("No authentication mechanism available with sufficient strength (%s) in realm %s.",
+        if (method == null) {
+            String message = String.format("No authentication method available with sufficient strength (%s) in realm %s.",
                             filterContext.requiredStrength, filterContext.realm.getName());
             throw new RuntimeException(message);
         }
 
-        mechanism.challenge(request, response, filterContext.realm, reason);
+        method.challenge(request, response, filterContext.realm, reason);
 
         return Filter.STOP;
@@ -230 +230 @@
     
     private int handleException(Request request, Response response, Authentication authToken,
-            AuthenticationMechanism authMechanism, Exception exception, SecurityFilterContext filterContext) {
+            AuthenticationMethod authMethod, Exception exception, SecurityFilterContext filterContext) {
         if (exception instanceof MalformedAuthenticationRequestException) {
             response.setStatus(Status.CLIENT_ERROR_BAD_REQUEST, exception, exception.getMessage());
         } else if (exception instanceof AuthenticationException) {
-            if (authMechanism.isRechallengeEnabled()) {
-                authMechanism.challenge(request, response, filterContext.realm, null); // 401
+            if (authMethod.isRechallengeEnabled()) {
+                authMethod.challenge(request, response, filterContext.realm, null); // 401
             } else {
                 response.setStatus(Status.CLIENT_ERROR_FORBIDDEN, exception);
@@ -241 +241 @@
         } else if (exception instanceof AccessDeniedException) {
             if (authToken != null && authenticationTrustResolver.isAnonymous(authToken)) {
-                authMechanism.challenge(request, response, filterContext.realm, null);
+                authMethod.challenge(request, response, filterContext.realm, null);
             } else {
                 response.setStatus(Status.CLIENT_ERROR_FORBIDDEN, exception);

trunk/modules/kauri-security/kauri-security-impl/src/test/confs/securitytest/security/auth.xml

@@ -4 +4 @@
 
     <realm name="basic">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="securitytest" beanId="basicAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="securitytest" beanId="basicAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="securitytest" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="securitytest" beanId="accessDecisionManager"/>
@@ -16 +16 @@
 
     <realm name="digest">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="securitytest" beanId="digestAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="securitytest" beanId="digestAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="securitytest" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="securitytest" beanId="accessDecisionManager"/>
@@ -28 +28 @@
 
     <realm name="cookie-based">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="securitytest" beanId="formAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="securitytest" beanId="formAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="securitytest" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="securitytest" beanId="accessDecisionManager"/>
@@ -40 +40 @@
 
     <realm name="customdefsource">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="securitytest" beanId="basicAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="securitytest" beanId="basicAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="securitytest" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="securitytest" beanId="customDecisionManager"/>
@@ -49 +49 @@
 
     <realm name="patterns">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="securitytest" beanId="basicAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="securitytest" beanId="basicAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="securitytest" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="securitytest" beanId="accessDecisionManager"/>
@@ -62 +62 @@
 
     <realm name="strengths">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="securitytest" beanId="basicAuthMechanism" strength="1"/>
-        <authenticationMechanism moduleId="securitytest" beanId="digestAuthMechanism" strength="2"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="securitytest" beanId="basicAuthMethod" strength="1"/>
+        <authenticationMethod moduleId="securitytest" beanId="digestAuthMethod" strength="2"/>
+      </authenticationMethods>
       <authenticationManager moduleId="securitytest" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="securitytest" beanId="accessDecisionManager"/>

trunk/modules/kauri-security/kauri-security-impl/src/test/java/org/kauriproject/security/test/SecurityTest.java

@@ -163 +163 @@
         doTestBasic(externalPrefix, "/strengths/strength2", externalSuffix, USER, USERPW, 401);
         doTestDigest(externalPrefix, "/strengths/strength2", externalSuffix, USER, USERPW, 200);
-        // there's no mechanism with strength 3
+        // there's no method with strength 3
         doTestBasic(externalPrefix, "/strengths/strength3", externalSuffix, USER, USERPW, 500);
     }

trunk/modules/kauri-security/kauri-security-impl/src/test/modulesrc/org/kauriproject/security/test/testmodules/security/KAURI-INF/spring/services.xml

@@ -81 +81 @@
   </bean>
   
-  <bean id="basicAuthMechanism" class="org.kauriproject.security.providers.BasicAuthenticationMechanism"/>
+  <bean id="basicAuthMethod" class="org.kauriproject.security.providers.BasicAuthenticationMethod"/>
 
-  <bean id="digestAuthMechanism" class="org.kauriproject.security.providers.DigestAuthenticationMechanism">
+  <bean id="digestAuthMethod" class="org.kauriproject.security.providers.DigestAuthenticationMethod">
     <property name="userDetailsService" ref="userDetailsService"/>
   </bean>
@@ -90 +90 @@
   </bean>
   
-  <bean id="formAuthMechanism" class="org.kauriproject.security.providers.FormAuthenticationMechanism">
+  <bean id="formAuthMethod" class="org.kauriproject.security.providers.FormAuthenticationMethod">
     <constructor-arg ref="module"/>
     <property name="preAuthTokenStore" ref="preAuthTokenStore"/>

trunk/samples/kauri-security-sample/conf/security/auth.xml

@@ -5 +5 @@
     <!-- Simple basic authentication sample -->
     <realm name="realm1">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="samples.security" beanId="basicAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="samples.security" beanId="basicAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="samples.security" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="samples.security" beanId="accessDecisionManager"/>
@@ -18 +18 @@
     <!-- Simple digest authentication sample -->
     <realm name="realm2">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="samples.security" beanId="digestAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="samples.security" beanId="digestAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="samples.security" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="samples.security" beanId="accessDecisionManager"/>
@@ -31 +31 @@
     <!-- Form authentication sample -->
     <realm name="realm3">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="samples.security" beanId="formAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="samples.security" beanId="formAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="samples.security" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="samples.security" beanId="accessDecisionManager"/>
@@ -46 +46 @@
     </realm>
 
-    <!-- Auth mechanism strength sample -->
+    <!-- Auth method strength sample -->
     <realm name="realm4">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="samples.security" beanId="basicAuthMechanism" strength="1"/>
-        <authenticationMechanism moduleId="samples.security" beanId="digestAuthMechanism" strength="2"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="samples.security" beanId="basicAuthMethod" strength="1"/>
+        <authenticationMethod moduleId="samples.security" beanId="digestAuthMethod" strength="2"/>
+      </authenticationMethods>
       <authenticationManager moduleId="samples.security" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="samples.security" beanId="accessDecisionManager"/>
@@ -62 +62 @@
     <!-- Second form authentication sample -->
     <realm name="realm5">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="samples.security" beanId="formAuthMechanism2"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="samples.security" beanId="formAuthMethod2"/>
+      </authenticationMethods>
       <authenticationManager moduleId="samples.security" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="samples.security" beanId="accessDecisionManager"/>
@@ -75 +75 @@
     <!-- Belgian eID sample -->
     <realm name="realm6">
-      <authenticationMechanisms>
-        <authenticationMechanism moduleId="samples.security" beanId="beidAuthMechanism"/>
-      </authenticationMechanisms>
+      <authenticationMethods>
+        <authenticationMethod moduleId="samples.security" beanId="beidAuthMethod"/>
+      </authenticationMethods>
       <authenticationManager moduleId="samples.security" beanId="authenticationManager"/>
       <accessDecisionManager moduleId="samples.security" beanId="accessDecisionManager"/>

trunk/samples/kauri-security-sample/src/main/kauri/pages/index.html.xml

@@ -59 +59 @@
     <h3>Realm 4 : authentication strengths</h3>
 
-    <p>A realm can be associated with multiple authentication mechanisms. Each authentication
-    mechanism can be assigned a strength, and resource can require a certain strength to
+    <p>A realm can be associated with multiple authentication methods. Each authentication
+    method can be assigned a strength, and resource can require a certain strength to
     access them. For example, more sensitive resources could require login using client
     certificates (such as Belgian eID).</p>

trunk/samples/kauri-security-sample/src/main/kauri/spring/services.xml

@@ -114 +114 @@
   </bean>
 
-  <bean id="basicAuthMechanism" class="org.kauriproject.security.providers.BasicAuthenticationMechanism"/>
+  <bean id="basicAuthMethod" class="org.kauriproject.security.providers.BasicAuthenticationMethod"/>
 
-  <bean id="digestAuthMechanism" class="org.kauriproject.security.providers.DigestAuthenticationMechanism">
+  <bean id="digestAuthMethod" class="org.kauriproject.security.providers.DigestAuthenticationMethod">
     <property name="userDetailsService" ref="userDetailsService"/>
   </bean>
@@ -126 +126 @@
   </bean>
 
-  <bean id="formAuthMechanism" class="org.kauriproject.security.providers.FormAuthenticationMechanism">
+  <bean id="formAuthMethod" class="org.kauriproject.security.providers.FormAuthenticationMethod">
     <constructor-arg ref="module"/>
     <property name="preAuthTokenStore" ref="preAuthTokenStore"/>
@@ -132 +132 @@
   </bean>
 
-  <bean id="formAuthMechanism2" class="org.kauriproject.security.providers.FormAuthenticationMechanism">
+  <bean id="formAuthMethod" class="org.kauriproject.security.providers.FormAuthenticationMethod">
     <constructor-arg ref="module"/>
     <property name="preAuthTokenStore" ref="preAuthTokenStore2"/>
@@ -138 +138 @@
   </bean>
 
-  <bean id="beidAuthMechanism" class="org.kauriproject.security.providers.BelgianEidAuthenticationMechanism">
+  <bean id="beidAuthMethod" class="org.kauriproject.security.providers.BelgianEidAuthenticationMethod">
     <property name="principalExtractor" ref="beidPrincipalExtractor"/>
     <property name="httpsPort" value="8443"/> <!-- See also the port number in connectors.xml -->