org.apache.directory.server.kerberos.sam
Class SamSubsystem

java.lang.Object
  extended by org.apache.directory.server.kerberos.sam.SamSubsystem

public final class SamSubsystem
extends java.lang.Object

The Subsystem that enables the Kerberos server to use plugable Single-use Authentication mechanisms.

Version:
$Rev: 434436 $
Author:
Apache Directory Project

Field Summary
static SamSubsystem instance
           
static java.lang.String PROPKEY_BASE
          the property key base used for SAM algorithm verifiers
 
Constructor Summary
SamSubsystem()
           
 
Method Summary
static SamSubsystem getInstance()
          Gets the singleton instance of the SamSubsystem.
 void setIntegrityChecker(KeyIntegrityChecker keyChecker)
          Sets the KeyIntegrityChecker used by the entire SamSubsystem.
 void setUserContext(javax.naming.directory.DirContext userContext, java.lang.String userBaseRdn)
          Sets the context under which user entries can be found.
 javax.security.auth.kerberos.KerberosKey verify(PrincipalStoreEntry entry, byte[] sad)
          Uses the principal entry information to load the approapriate SamVerifier and verify the Single-use password.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

PROPKEY_BASE

public static final java.lang.String PROPKEY_BASE
the property key base used for SAM algorithm verifiers

See Also:
Constant Field Values

instance

public static SamSubsystem instance
Constructor Detail

SamSubsystem

public SamSubsystem()
Method Detail

getInstance

public static SamSubsystem getInstance()
Gets the singleton instance of the SamSubsystem.

Returns:
the singleton for the SamSubsystem

setIntegrityChecker

public void setIntegrityChecker(KeyIntegrityChecker keyChecker)
Sets the KeyIntegrityChecker used by the entire SamSubsystem.

Parameters:
keyChecker - the KeyIntegrityChecker used by the entire SamSubsystem

verify

public javax.security.auth.kerberos.KerberosKey verify(PrincipalStoreEntry entry,
                                                       byte[] sad)
                                                throws SamException
Uses the principal entry information to load the approapriate SamVerifier and verify the Single-use password.

Parameters:
entry - the store entry for the Kerberos principal
sad - the single-use authentication data encrypted timestamp payload
Returns:
true if verification passed, false otherwise
Throws:
SamException - thrown when there is a failure within the verifier or a verifier cannot be found.

setUserContext

public void setUserContext(javax.naming.directory.DirContext userContext,
                           java.lang.String userBaseRdn)
Sets the context under which user entries can be found.

Parameters:
userContext - the jndi context under which users can be found.
userBaseRdn - the container with users


Copyright © 2003-2010 Apache Software Foundation. All Rights Reserved.