|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.opends.server.api.CertificateMapper<SubjectAttributeToUserAttributeCertificateMapperCfg>
org.opends.server.extensions.SubjectAttributeToUserAttributeCertificateMapper
public class SubjectAttributeToUserAttributeCertificateMapper
This class implements a very simple Directory Server certificate mapper that will map a certificate to a user based on attributes contained in both the certificate subject and the user's entry. The configuration may include mappings from certificate attributes to attributes in user entries, and all of those certificate attributes that are present in the subject will be used to search for matching user entries.
Constructor Summary | |
---|---|
SubjectAttributeToUserAttributeCertificateMapper()
Creates a new instance of this certificate mapper. |
Method Summary | |
---|---|
ConfigChangeResult |
applyConfigurationChange(SubjectAttributeToUserAttributeCertificateMapperCfg configuration)
Applies the configuration changes to this change listener. |
void |
finalizeCertificateMapper()
Performs any finalization that may be necessary for this certificate mapper. |
void |
initializeCertificateMapper(SubjectAttributeToUserAttributeCertificateMapperCfg configuration)
Initializes this certificate mapper based on the information in the provided configuration entry. |
boolean |
isConfigurationAcceptable(CertificateMapperCfg configuration,
java.util.List<Message> unacceptableReasons)
Indicates whether the provided configuration is acceptable for this certificate mapper. |
boolean |
isConfigurationChangeAcceptable(SubjectAttributeToUserAttributeCertificateMapperCfg configuration,
java.util.List<Message> unacceptableReasons)
Indicates whether the proposed change to the configuration is acceptable to this change listener. |
Entry |
mapCertificateToUser(java.security.cert.Certificate[] certificateChain)
Establishes a mapping between the information in the provided certificate chain and a single user entry in the Directory Server. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public SubjectAttributeToUserAttributeCertificateMapper()
initializeCertificateMapper
method.
Method Detail |
---|
public void initializeCertificateMapper(SubjectAttributeToUserAttributeCertificateMapperCfg configuration) throws ConfigException, InitializationException
initializeCertificateMapper
in class CertificateMapper<SubjectAttributeToUserAttributeCertificateMapperCfg>
configuration
- The configuration that should be used to
intialize this certificate mapper.
ConfigException
- If the provided entry does not contain
a valid certificate mapper
configuration.
InitializationException
- If a problem occurs during
initialization that is not
related to the server
configuration.public void finalizeCertificateMapper()
finalizeCertificateMapper
in class CertificateMapper<SubjectAttributeToUserAttributeCertificateMapperCfg>
public Entry mapCertificateToUser(java.security.cert.Certificate[] certificateChain) throws DirectoryException
mapCertificateToUser
in class CertificateMapper<SubjectAttributeToUserAttributeCertificateMapperCfg>
certificateChain
- The certificate chain presented by the
client during SSL negotiation. The
peer certificate will be listed first,
followed by the ordered issuer chain
as appropriate.
null
if no mapping was
established and no special message is required to send
back to the client.
DirectoryException
- If a problem occurred while
attempting to establish the mapping.
This may include internal failures,
a mapping which matches multiple
users, or any other case in which an
error message should be returned to
the client.public boolean isConfigurationAcceptable(CertificateMapperCfg configuration, java.util.List<Message> unacceptableReasons)
isConfigurationAcceptable
in class CertificateMapper<SubjectAttributeToUserAttributeCertificateMapperCfg>
configuration
- The certificate mapper configuration
for which to make the determination.unacceptableReasons
- A list that may be used to hold the
reasons that the provided
configuration is not acceptable.
true
if the provided configuration is acceptable
for this certificate mapper, or false
if not.public boolean isConfigurationChangeAcceptable(SubjectAttributeToUserAttributeCertificateMapperCfg configuration, java.util.List<Message> unacceptableReasons)
isConfigurationChangeAcceptable
in interface ConfigurationChangeListener<SubjectAttributeToUserAttributeCertificateMapperCfg>
configuration
- The new configuration containing the changes.unacceptableReasons
- A list that can be used to hold messages about why the
provided configuration is not acceptable.
true
if the proposed change is
acceptable, or false
if it is not.public ConfigChangeResult applyConfigurationChange(SubjectAttributeToUserAttributeCertificateMapperCfg configuration)
applyConfigurationChange
in interface ConfigurationChangeListener<SubjectAttributeToUserAttributeCertificateMapperCfg>
configuration
- The new configuration containing the changes.
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |