```
public interface AuthenticationProcessor
```
Utility methods processing results of authenticators.

Author:

K. Benedyczak

Method Summary

All Methods Static Methods Instance Methods Abstract Methods
Modifier and Type	Method	Description
`boolean`	`checkIfUserHasCredential(AuthenticatorInstanceMetadata authn, long entityId)`
`static List<SessionParticipant>`	`extractParticipants(AuthenticationResult... results)`	Extracts and returns all remote `SessionParticipant`s from the `AuthenticationResult`s.
`AuthenticatedEntity`	`finalizeAfterPrimaryAuthentication(PartialAuthnState state, boolean skipSecondFactor)`	Should be used if the second step authentication is not required: retrieve a final `AuthenticatedEntity`.
`AuthenticatedEntity`	`finalizeAfterSecondaryAuthentication(PartialAuthnState state, AuthenticationResult result2)`	Should be used if the second step authentication is required to process second authenticator results and retrieve a final `AuthenticatedEntity`.
`AuthenticatorInstance`	`getValidAuthenticatorForEntity(Collection<AuthenticatorInstance> pool, long entityId)`
`PartialAuthnState`	`processPrimaryAuthnResult(AuthenticationResult result, AuthenticationFlow authenticationFlow, AuthenticationOptionKey authnOptionId)`	Starting point: the result of the primary authenticator is verified.

Method Detail

getValidAuthenticatorForEntity

AuthenticatorInstance getValidAuthenticatorForEntity(Collection<AuthenticatorInstance> pool,
                                                     long entityId)

Returns:: authenticator which is valid for the given entity from the given pool

checkIfUserHasCredential
```
boolean checkIfUserHasCredential(AuthenticatorInstanceMetadata authn,
                                 long entityId)
```
Returns:

true only if user can use the given authenticator. Works well (currently) only for local authenticators

processPrimaryAuthnResult

PartialAuthnState processPrimaryAuthnResult(AuthenticationResult result,
                                            AuthenticationFlow authenticationFlow,
                                            AuthenticationOptionKey authnOptionId)
                                     throws AuthenticationException

Starting point: the result of the primary authenticator is verified. If the authentication failed then an exception is thrown. Otherwise it is checked whether, according to the AuthenticationFlow selected, second authentication should be performed, what is returned.

Throws:: AuthenticationException

finalizeAfterPrimaryAuthentication

AuthenticatedEntity finalizeAfterPrimaryAuthentication(PartialAuthnState state,
                                                       boolean skipSecondFactor)

Should be used if the second step authentication is not required: retrieve a final AuthenticatedEntity.

finalizeAfterSecondaryAuthentication

AuthenticatedEntity finalizeAfterSecondaryAuthentication(PartialAuthnState state,
                                                         AuthenticationResult result2)
                                                  throws AuthenticationException

Should be used if the second step authentication is required to process second authenticator results and retrieve a final AuthenticatedEntity.

Parameters:: primaryResult -
Returns:
Throws:: AuthenticationException

extractParticipants
```
static List<SessionParticipant> extractParticipants(AuthenticationResult... results)
```
Extracts and returns all remote SessionParticipants from the AuthenticationResults.

Interface AuthenticationProcessor