Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Difference in AuthenticationManager and AuthenticationProvider Authenticate method in Spring Security

Tags:

spring-boot

spring-security

Is there any difference in 

Authentication auth= authenticationManager.authenticate(authentication);

and 

 Authentication auth= authenticationProvider.authenticate(authentication);
like image 829
Cork Kochi Avatar asked Jul 22 '17 22:07

Cork Kochi

1 Answers

AuthenticationManager holds list of AuthenticationProvider instances.

When you execute authenticationManager.authenticate()

What this actually does is iterate over all instances of AuthenticationProvider and tries to authenticate user with each one.

Default spring implementation of AuthenticationManager is org.springframework.security.authentication.ProviderManager

The actual authentication is performed inside AuthenticationProvider. Each AuthenticationProvider contains instance of UserDetailsService which is responsible for fetching user information (including hashed password) out of database for example, or LDAP. Once instance of UserDetails is successfully retrieved from database AuthenticationProvider will then use instance of PasswordEncoder to check whether password user provided matches hashed password you retrieved from database.

more info here http://docs.spring.io/spring-security/site/docs/2.0.8.RELEASE/apidocs/org/springframework/security/providers/ProviderManager.html

and here https://docs.spring.io/spring-security/site/docs/current/apidocs/org/springframework/security/authentication/dao/DaoAuthenticationProvider.html

like image 195
SeaBiscuit Avatar answered Sep 22 '22 23:09

SeaBiscuit
Sign in to Comment

Related questions

How to clean database tables after each integration test when using Spring Boot and Liquibase?
How to log stack trace using kotlin.logging?
Spring Boot 2.5.0 and InvalidDefinitionException: Java 8 date/time type `java.time.Instant` not supported by default
Spring boot: How to configure pagination on a @RepositoryRestResource?
Spring Data Rest user repository BCCrypt password
Configuring Spring Boot Security to use BCrypt password encoding in Grails 3.0
FlatFileParseException Parsing error - Spring Batch
Origin header value not allowed. Even though URL is allowed
"Address already in use: bind" when running Spring Boot application
Override @PropertySource with @TestPropertySource in Spring Boot
Spring Security LDAP authentication user must be a member of an AD group
How to set 'headless' property in a Spring Boot test?
How to integrate OmniFaces with Spring Boot
Spring Data Envers org.springframework.data.mapping.PropertyReferenceException: No property findRevisions found for type
package structure in Spring,Entity vs Model vs Controller
@Autowired objects are null only when testing
spring jpa - At least one JPA metamodel must be present*
H2 Embedded database not picking up properties during test on spring boot
Single role multiple IP addresses in Spring Security configuration
Intellij Run Configuration Spring Boot vs Maven Issues

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!