public class KerberosAuthenticationManager extends AbstractAuthenticationManager<KerberosAuthenticationManager> implements PreferencesSupportingAuthenticationProvider
AbstractConfiguredObject.CallableWithArgument<V,A>, AbstractConfiguredObject.ChainedListenableFuture<V>, AbstractConfiguredObject.ChainedSettableFuture<V>, AbstractConfiguredObject.DuplicateIdException, AbstractConfiguredObject.DuplicateNameException
Modifier and Type | Field and Description |
---|---|
static String |
PROVIDER_TYPE |
SECURED_STRING_VALUE
CONTEXT, CREATED_BY, CREATED_TIME, DESCRIPTION, DESIRED_STATE, DURABLE, ID, LAST_UPDATED_BY, LAST_UPDATED_TIME, LIFETIME_POLICY, NAME, OVER_SIZED_ATTRIBUTE_ALTERNATIVE_TEXT, STATE, TYPE
Modifier | Constructor and Description |
---|---|
protected |
KerberosAuthenticationManager(Map<String,Object> attributes,
Broker broker) |
Modifier and Type | Method and Description |
---|---|
AuthenticationResult |
authenticate(SaslServer server,
byte[] response)
Authenticates a user using SASL negotiation.
|
SaslServer |
createSaslServer(String mechanism,
String localFQDN,
Principal externalPrincipal)
Creates a SASL server for the specified mechanism name for the given
fully qualified domain name.
|
List<String> |
getMechanisms()
Gets the SASL mechanisms known to this manager.
|
activate, addChildAsync, doDelete, getBroker, getDisabledMechanisms, getPreferencesProvider, getSecureOnlyMechanisms, getSubjectCreator, getVirtualHostPortBindings, onOpen, onValidate, recoverUser, setPreferencesProvider, startQuiesced
addChangeListener, applyToChildren, asObjectRecord, attainState, attributeSet, authoriseCreate, authoriseCreateChild, authoriseDelete, authoriseSetAttributes, beforeClose, changeAttribute, changeAttributes, childAdded, childRemoved, close, closeAsync, closeChildren, create, createAsync, createChild, createChildAsync, decryptSecrets, delete, deleteAsync, deleted, doAfter, doAfter, doAfter, doAfter, doAfter, doAfter, doAfterAlways, doAfterAlways, doCreation, doOnConfigThread, doOpening, doResolution, doSync, doSync, doValidation, findConfiguredObject, forceUpdateAllSecureAttributes, getActualAttributes, getAttainedChildById, getAttainedChildByName, getAttribute, getAttributeNames, getCategoryClass, getChildById, getChildByName, getChildExecutor, getChildren, getContext, getContextKeys, getContextValue, getContextValue, getCreatedBy, getCreatedTime, getDescription, getDesiredState, getId, getLastOpenedTime, getLastUpdatedBy, getLastUpdatedTime, getLifetimePolicy, getModel, getName, getObjectFactory, getParent, getSecurityManager, getState, getStatistics, getTaskExecutor, getType, getTypeClass, handleExceptionOnOpen, isDurable, managesChildStorage, notifyStateChanged, onClose, onCreate, onExceptionInOpen, onResolve, open, openAsync, parentsMap, postResolve, postResolveChildren, registerWithParents, removeChangeListener, rethrowRuntimeExceptionsOnOpen, runTask, setAttribute, setAttributes, setAttributesAsync, setEncrypter, setState, start, startAsync, stop, toString, validateChange, validateOnCreate
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
getPreferencesProvider, setPreferencesProvider
addChangeListener, asObjectRecord, close, closeAsync, createChild, createChildAsync, decryptSecrets, delete, deleteAsync, findConfiguredObject, getActualAttributes, getAttainedChildById, getAttainedChildByName, getAttribute, getAttributeNames, getCategoryClass, getChildById, getChildByName, getChildExecutor, getChildren, getContext, getContextKeys, getContextValue, getContextValue, getCreatedBy, getCreatedTime, getDescription, getDesiredState, getId, getLastOpenedTime, getLastUpdatedBy, getLastUpdatedTime, getLifetimePolicy, getModel, getName, getObjectFactory, getParent, getState, getStatistics, getTaskExecutor, getType, getTypeClass, isDurable, managesChildStorage, open, openAsync, removeChangeListener, setAttribute, setAttributes, setAttributesAsync
public static final String PROVIDER_TYPE
public List<String> getMechanisms()
AuthenticationProvider
getMechanisms
in interface AuthenticationProvider<KerberosAuthenticationManager>
public SaslServer createSaslServer(String mechanism, String localFQDN, Principal externalPrincipal) throws SaslException
AuthenticationProvider
createSaslServer
in interface AuthenticationProvider<KerberosAuthenticationManager>
mechanism
- mechanism namelocalFQDN
- domain nameexternalPrincipal
- externally authenticated PrincipalSaslException
public AuthenticationResult authenticate(SaslServer server, byte[] response)
AuthenticationProvider
authenticate
in interface AuthenticationProvider<KerberosAuthenticationManager>
server
- SASL serverresponse
- SASL response to processCopyright © 2006–2016 The Apache Software Foundation. All rights reserved.