Platform SDK Java 8.5 API Reference

com.genesyslab.platform.commons.protocol.auth
Class KerberosTicketAcceptor

java.lang.Object
  extended by com.genesyslab.platform.commons.protocol.auth.KerberosTicketAcceptor

public class KerberosTicketAcceptor
extends java.lang.Object

Implements acceptor for Kerberos authentication tickets. Can be used on server side to process tickets sent by clients.


Constructor Summary
KerberosTicketAcceptor(javax.security.auth.Subject subject, java.lang.String servicePrincipalName, java.lang.String keyTableFilePath)
          Creatre KerberosTicketAcceptor object that can be used to process tickets sent by clients on server side.
 
Method Summary
 AuthTicket acceptTicket(AuthTicket ticket)
           
 java.util.Map<java.lang.String,java.lang.String> getKerberosOptions()
          Gets Copy of KerberosLoginModule kerberosOptions used.
 java.lang.String getKeyTablePath()
          Gets path to a file that contains key table corresponding to SPN.
 java.lang.String getServicePrincipalName()
          Gets Service Principal Name that would be used by KerberosTicketAcceptor to accept client ticket on behalf of.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

KerberosTicketAcceptor

public KerberosTicketAcceptor(javax.security.auth.Subject subject,
                              java.lang.String servicePrincipalName,
                              java.lang.String keyTableFilePath)
                       throws javax.security.auth.login.LoginException
Creatre KerberosTicketAcceptor object that can be used to process tickets sent by clients on server side.

Parameters:
subject - Subject instance to use. Can be null, a new Subject would be created in this case.
servicePrincipalName - Service Principal Name that would be used by KerberosTicketAcceptor to accept client ticket on behalf of.
keyTableFilePath - Path to a file that contains key table corresponding to SPN.
Throws:
javax.security.auth.login.LoginException
Method Detail

getServicePrincipalName

public java.lang.String getServicePrincipalName()
Gets Service Principal Name that would be used by KerberosTicketAcceptor to accept client ticket on behalf of.

Returns:
Service Principal Name that would be used by KerberosTicketAcceptor to accept client ticket on behalf of, never returns null.

getKeyTablePath

public java.lang.String getKeyTablePath()
Gets path to a file that contains key table corresponding to SPN.

Returns:
path to a file that contains key table corresponding to SPN, never returns null.

getKerberosOptions

public java.util.Map<java.lang.String,java.lang.String> getKerberosOptions()
Gets Copy of KerberosLoginModule kerberosOptions used.

Returns:
Copy of KerberosLoginModule kerberosOptions used, never returns null.

acceptTicket

public AuthTicket acceptTicket(AuthTicket ticket)
                        throws java.security.GeneralSecurityException
Parameters:
ticket - Service ticket data. Restrictions:
  • Ticket must not be null.
  • If ticket has non-null servicePrincipalName, it must match acceptor's one.
  • Tickets must have non-empyt ticketBytes.
Returns:
Ticket with filled User Principal Name of authenticated entity or null if ticket was not accepted.
Throws:
java.security.GeneralSecurityException

Platform SDK Java 8.5 API Reference

Send comments on this topicTechpubs.webadmin@genesys.com.
Document version: 8.5.302.00
Copyright © 2006–2017 Genesys Telecommunications Laboratories, Inc. All rights reserved.