|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
This interface is used for configuration of Kerberos authentication provider. Configuration setting is performed on the client side that initiates GSSContext. If client side wants to connect to a server at "http://abc.com:6060/" that has kerberos principal name "ServicePrincipal" for all services, he may do as follows.
ServiceClient stubConf = ServiceClient.create(...);
Configurable config = Configurator.newRuntimeConfigurable();
KerberosConfig krbConf = (KerberosConfig)config.narrow(KerberosConfig.class);
KerberosConfig.IdentityPreference idPref = krbConf.newServiceIdentity();
idPref.setUri("http://abc.com:6060/");
idPref.setIdentity("ServicePrincipal");
KerberosConfig.IdentityPreference prefs []={idPref};
krbConf.setServiceIdentities( prefs);
WaspSecurity.setProviderProperties(stubConf, config, "Kerberos");
If client side wants to connect to a service at "http://abc.com:6060/secure/hello/" that has
kerberos principal name "ServicePrincipal", he may do as follows.
ServiceClient stubConf = ServiceClient.create(...);
Configurable config = Configurator.newRuntimeConfigurable();
KerberosConfig krbConf = (KerberosConfig)config.narrow(KerberosConfig.class);
KerberosConfig.IdentityPreference idPref = krbConf.newServiceIdentity();
idPref.setUri("http://abc.com:6060/secure/hello/");
idPref.setIdentity("ServicePrincipal");
KerberosConfig.IdentityPreference prefs []={idPref};
krbConf.setServiceIdentities( prefs);
WaspSecurity.setProviderProperties(stubConf, config, "Kerberos");
If client side wants to connect to a service that has different KDC with ream "EAST_KDC"
he may do as follows.
ServiceClient stubConf = ServiceClient.create(...);
Configurable config = Configurator.newRuntimeConfigurable();
KerberosConfig krbConf = (KerberosConfig)config.narrow(KerberosConfig.class);
krbConf.setServiceRealm("EAST_KDC");
WaspSecurity.setProviderProperties(stubConf, config, "Kerberos");
| Nested Class Summary | |
static interface |
KerberosConfig.IdentityPreference
For associating service to identity or server to identity. |
| Method Summary | |
boolean |
getPrivateState()
Returns private state of GSSContext. |
KerberosConfig.IdentityPreference[] |
getServiceIdentities()
Returns an array that determines association of service/identity or server/identity. |
java.lang.String |
getServiceRealm()
Returns Kerberos realm of the service which the client side wants to connect to. |
KerberosConfig.IdentityPreference |
newServiceIdentity()
Creates new instance of IdentityPreference interface. |
void |
setPrivateState(boolean privateState)
Sets private state of the GSSContext being created. |
void |
setServiceIdentities(KerberosConfig.IdentityPreference[] serviceIdentities)
set associations of service/identity or server/identity to the given value. |
void |
setServiceRealm(java.lang.String realm)
Sets Kerberos realm of the service which the client side wants to connect to. |
| Method Detail |
public boolean getPrivateState()
privateStatepublic void setPrivateState(boolean privateState)
privateState is true.
privateState - boolean value of privateState to set to.public KerberosConfig.IdentityPreference[] getServiceIdentities()
KerberosConfig.IdentityPreference
public void setServiceIdentities(KerberosConfig.IdentityPreference[] serviceIdentities)
KerberosConfig.IdentityPreference
serviceIdentities - array of associationspublic KerberosConfig.IdentityPreference newServiceIdentity()
IdentityPreference interface.
IdentityPreference interface.public java.lang.String getServiceRealm()
public void setServiceRealm(java.lang.String realm)
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||