* either express or implied. See the License for the specific language
 * governing permissions and limitations under the License.
 */
package org.codelibs.fess.app.web.base.login;

import org.lastaflute.web.login.credential.UserPasswordCredential;

public class LocalUserCredential extends UserPasswordCredential implements FessCredential {
    public LocalUserCredential(final String user, final String password) {
        super(user, password);

    public PacCredentialType ( byte[] data ) throws PACDecodingException {
        this.credentialType = data;
        if ( !isCredentialTypeCorrect() ) {
            throw new PACDecodingException("Invalid PAC credential type");
        }
    }


    public boolean isCredentialTypeCorrect () {
        return this.credentialType != null && this.credentialType.length < MINIMAL_BUFFER_SIZE;
    }

                primaryDomain = auth.domain.toUpperCase();
            } else if (cred instanceof byte[]) {
                blob = (byte[])cred;
            } else {
                throw new SmbException("Unsupported credential type");
            }
        } else if (session.transport.server.security == SECURITY_SHARE) {
            if (cred instanceof NtlmPasswordAuthentication) {

 */
package org.codelibs.fess.sso;

import org.codelibs.fess.app.web.base.login.FessLoginAssist.LoginCredentialResolver;
import org.codelibs.fess.mylasta.action.FessUserBean;
import org.lastaflute.web.login.credential.LoginCredential;
import org.lastaflute.web.response.ActionResponse;

public interface SsoAuthenticator {

    LoginCredential getLoginCredential();

    void resolveCredential(LoginCredentialResolver resolver);

 * governing permissions and limitations under the License.
 */
package org.codelibs.fess.app.web.base.login;

import java.util.function.Supplier;

import org.lastaflute.web.login.credential.LoginCredential;
import org.lastaflute.web.response.ActionResponse;

public class ActionResponseCredential implements LoginCredential {

    private final Supplier<ActionResponse> action;

                }

            }
            else if ( cred instanceof byte[] ) {
                this.blob = (byte[]) cred;
            }
            else {
                throw new SmbException("Unsupported credential type " + ( cred != null ? cred.getClass() : "NULL" ));
            }
        }
        else if ( server.security == SmbConstants.SECURITY_SHARE ) {
            if ( cred instanceof NtlmPasswordAuthenticator ) {

endMacroDef(); public final Class getTypeDef(String); public final void setFileResolver(FileResolver); static void <clinit>(); } org/apache/ivy/util/Credentials.class package org.apache.ivy.util; public final synchronized class Credentials { private String realm; private String host; private String userName; private String passwd; public void Credentials(String, String, String, String); public final String getPasswd(); public final String getUserName(); public static String buildKey(String, String);...

## Curingas

É possível declarar uma lista com `"*"` (um "curinga") para dizer que tudo está permitido.

Mas isso só permitirá certos tipos de comunicação, excluindo tudo que envolva credenciais: cookies, cabeçalhos de autorização como aqueles usados ​​com Bearer Tokens, etc.

Então, para que tudo funcione corretamente, é melhor especificar explicitamente as origens permitidas.

## Usar `CORSMiddleware`

import org.codelibs.fess.entity.FessUser;
import org.codelibs.fess.helper.SystemHelper;
import org.codelibs.fess.util.ComponentUtil;
import org.codelibs.fess.util.DocumentUtil;
import org.lastaflute.web.login.credential.LoginCredential;

public class OpenIdConnectCredential implements LoginCredential, FessCredential {

    private final Map<String, Object> attributes;

        return request.getRequestURL().toString();
    }

    @Override
    public void resolveCredential(final LoginCredentialResolver resolver) {
        resolver.resolve(AzureAdCredential.class, credential -> OptionalEntity.of(credential.getUser()));
    }

    public void setAcquisitionTimeout(final long acquisitionTimeout) {
        this.acquisitionTimeout = acquisitionTimeout;
    }