public class CombinedRealm extends RealmBase
RealmBase.AllRolesMode
Lifecycle.SingleUse
Modifier and Type | Field and Description |
---|---|
protected static java.lang.String |
name
Descriptive information about this Realm implementation.
|
protected java.util.List<Realm> |
realms
The list of Realms contained by this Realm.
|
allRolesMode, container, containerLog, digest, digestEncoding, md, md5Helper, realmPath, sm, stripRealmForGss, support, validate, x509UsernameRetriever, x509UsernameRetrieverClassName
mserver
AFTER_DESTROY_EVENT, AFTER_INIT_EVENT, AFTER_START_EVENT, AFTER_STOP_EVENT, BEFORE_DESTROY_EVENT, BEFORE_INIT_EVENT, BEFORE_START_EVENT, BEFORE_STOP_EVENT, CONFIGURE_START_EVENT, CONFIGURE_STOP_EVENT, PERIODIC_EVENT, START_EVENT, STOP_EVENT
Constructor and Description |
---|
CombinedRealm() |
Modifier and Type | Method and Description |
---|---|
void |
addRealm(Realm theRealm)
Add a realm to the list of realms that will be used to authenticate
users.
|
java.security.Principal |
authenticate(org.ietf.jgss.GSSContext gssContext,
boolean storeCreds)
Try to authenticate using a
GSSContext |
java.security.Principal |
authenticate(java.lang.String username)
Return the Principal associated with the specified user name otherwise
return
null . |
java.security.Principal |
authenticate(java.lang.String username,
java.lang.String credentials)
Return the Principal associated with the specified username and
credentials, if there is one; otherwise return
null . |
java.security.Principal |
authenticate(java.lang.String username,
java.lang.String clientDigest,
java.lang.String nonce,
java.lang.String nc,
java.lang.String cnonce,
java.lang.String qop,
java.lang.String realmName,
java.lang.String md5a2)
Return the Principal associated with the specified username, which
matches the digest calculated using the given parameters using the
method described in RFC 2069; otherwise return
null . |
java.security.Principal |
authenticate(java.security.cert.X509Certificate[] certs)
Return the Principal associated with the specified chain of X509
client certificates.
|
void |
backgroundProcess()
Delegate the backgroundProcess call to all sub-realms.
|
protected void |
destroyInternal()
Ensure child Realms are destroyed when this Realm is destroyed.
|
protected java.lang.String |
getName() |
Realm[] |
getNestedRealms() |
protected java.lang.String |
getPassword(java.lang.String username)
Get the password for the specified user.
|
protected java.security.Principal |
getPrincipal(java.lang.String username)
Get the principal associated with the specified user.
|
javax.management.ObjectName[] |
getRealms() |
void |
setContainer(Container container)
Set the Container with which this Realm has been associated.
|
protected void |
startInternal()
Prepare for the beginning of active use of the public methods of this
component and implement the requirements of
LifecycleBase.startInternal() . |
protected void |
stopInternal()
Gracefully terminate the active use of the public methods of this
component and implement the requirements of
LifecycleBase.stopInternal() . |
addPropertyChangeListener, compareCredentials, digest, Digest, findSecurityConstraints, getAllRolesMode, getContainer, getCredentialHandler, getDigest, getDigest, getDigestCharset, getDigestEncoding, getDomainInternal, getObjectNameKeyProperties, getPrincipal, getPrincipal, getRealmPath, getRealmSuffix, getServer, getTransportGuaranteeRedirectStatus, getValidate, getX509UsernameRetrieverClassName, hasMessageDigest, hasResourcePermission, hasRole, hasUserDataPermission, initInternal, isStripRealmForGss, main, removePropertyChangeListener, setAllRolesMode, setCredentialHandler, setDigest, setDigestEncoding, setRealmPath, setStripRealmForGss, setTransportGuaranteeRedirectStatus, setValidate, setX509UsernameRetrieverClassName, toString
getDomain, getObjectName, postDeregister, postRegister, preDeregister, preRegister, register, setDomain, unregister
addLifecycleListener, destroy, findLifecycleListeners, fireLifecycleEvent, getState, getStateName, init, removeLifecycleListener, setState, setState, start, stop
protected final java.util.List<Realm> realms
protected static final java.lang.String name
public void addRealm(Realm theRealm)
theRealm
- realm which should be wrapped by the combined realmpublic javax.management.ObjectName[] getRealms()
public Realm[] getNestedRealms()
public java.security.Principal authenticate(java.lang.String username, java.lang.String clientDigest, java.lang.String nonce, java.lang.String nc, java.lang.String cnonce, java.lang.String qop, java.lang.String realmName, java.lang.String md5a2)
null
.authenticate
in interface Realm
authenticate
in class RealmBase
username
- Username of the Principal to look upclientDigest
- Digest which has been submitted by the clientnonce
- Unique (or supposedly unique) token which has been used
for this requestrealmName
- Realm namemd5a2
- Second MD5 digest used to calculate the digest :
MD5(Method + ":" + uri)nc
- the nonce countercnonce
- the client chosen nonceqop
- the "quality of protection" (nc
and cnonce
will only be used, if qop
is not null
).null
if there is none.public java.security.Principal authenticate(java.lang.String username)
null
.authenticate
in interface Realm
authenticate
in class RealmBase
username
- User name of the Principal to look upnull
if none is
associated.public java.security.Principal authenticate(java.lang.String username, java.lang.String credentials)
null
.authenticate
in interface Realm
authenticate
in class RealmBase
username
- Username of the Principal to look upcredentials
- Password or other credentials to use in
authenticating this usernamenull
if there is none.public void setContainer(Container container)
setContainer
in interface Realm
setContainer
in class RealmBase
container
- The associated Containerprotected void startInternal() throws LifecycleException
LifecycleBase.startInternal()
.startInternal
in class RealmBase
LifecycleException
- if this component detects a fatal error
that prevents this component from being usedprotected void stopInternal() throws LifecycleException
LifecycleBase.stopInternal()
.stopInternal
in class RealmBase
LifecycleException
- if this component detects a fatal error
that needs to be reportedprotected void destroyInternal() throws LifecycleException
destroyInternal
in class LifecycleMBeanBase
LifecycleException
public void backgroundProcess()
backgroundProcess
in interface Realm
backgroundProcess
in class RealmBase
public java.security.Principal authenticate(java.security.cert.X509Certificate[] certs)
null
.authenticate
in interface Realm
authenticate
in class RealmBase
certs
- Array of client certificates, with the first one in
the array being the certificate of the client itself.null
if there is nonepublic java.security.Principal authenticate(org.ietf.jgss.GSSContext gssContext, boolean storeCreds)
GSSContext
authenticate
in interface Realm
authenticate
in class RealmBase
gssContext
- The gssContext processed by the Authenticator
.storeCreds
- Should the realm attempt to store the delegated
credentials in the returned Principal?null
if there is noneprotected java.lang.String getName()
protected java.lang.String getPassword(java.lang.String username)
RealmBase
getPassword
in class RealmBase
username
- The user nameprotected java.security.Principal getPrincipal(java.lang.String username)
RealmBase
getPrincipal
in class RealmBase
username
- The user nameCopyright © 2000-2018 Apache Software Foundation. All Rights Reserved.