Class SpnegoAuthenticator

  • All Implemented Interfaces:
    MBeanRegistration, RegistrationListener, Authenticator, Contained, JmxEnabled, Lifecycle, Valve

    public class SpnegoAuthenticator
    extends AuthenticatorBase
    A SPNEGO authenticator that uses the SPNEGO/Kerberos support built in to Java 6. Successful Kerberos authentication depends on the correct configuration of multiple components. If the configuration is invalid, the error messages are often cryptic although a Google search will usually point you in the right direction.
    • Constructor Detail

      • SpnegoAuthenticator

        public SpnegoAuthenticator()
    • Method Detail

      • getLoginConfigName

        public String getLoginConfigName()
      • setLoginConfigName

        public void setLoginConfigName​(String loginConfigName)
      • isStoreDelegatedCredential

        public boolean isStoreDelegatedCredential()
      • setStoreDelegatedCredential

        public void setStoreDelegatedCredential​(boolean storeDelegatedCredential)
      • getNoKeepAliveUserAgents

        public String getNoKeepAliveUserAgents()
      • setNoKeepAliveUserAgents

        public void setNoKeepAliveUserAgents​(String noKeepAliveUserAgents)
      • getApplyJava8u40Fix

        public boolean getApplyJava8u40Fix()
      • setApplyJava8u40Fix

        public void setApplyJava8u40Fix​(boolean applyJava8u40Fix)
      • initInternal

        protected void initInternal()
                             throws LifecycleException
        Description copied from class: LifecycleMBeanBase
        Sub-classes wishing to perform additional initialization should override this method, ensuring that super.initInternal() is the first call in the overriding method.
        Overrides:
        initInternal in class ValveBase
        Throws:
        LifecycleException - If the initialisation fails
      • doAuthenticate

        protected boolean doAuthenticate​(Request request,
                                         HttpServletResponse response)
                                  throws IOException
        Description copied from class: AuthenticatorBase
        Provided for sub-classes to implement their specific authentication mechanism.
        Specified by:
        doAuthenticate in class AuthenticatorBase
        Parameters:
        request - The request that triggered the authentication
        response - The response associated with the request
        Returns:
        true if the the user was authenticated, otherwise false, in which case an authentication challenge will have been written to the response
        Throws:
        IOException - If an I/O problem occurred during the authentication process
      • isPreemptiveAuthPossible

        protected boolean isPreemptiveAuthPossible​(Request request)
        Description copied from class: AuthenticatorBase
        Can the authenticator perform preemptive authentication for the given request?
        Overrides:
        isPreemptiveAuthPossible in class AuthenticatorBase
        Parameters:
        request - The request to check for credentials
        Returns:
        true if preemptive authentication is possible, otherwise false