|
|||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | ||||||||
java.lang.Objectorg.jboss.soa.esb.services.security.auth.login.CertificateLoginModule
public class CertificateLoginModule
A JAAS Login module that performs authentication by verifying that the certificate that is passed to the ESB by the calling client can be verified against a certificate in a local keystore.
Usage:
CertLogin {
org.jboss.soa.esb.services.security.auth.login.CertificateLoginModule required keyStoreURL="file://keystore" keyStorePassword="jbossesb" rolesPropertiesFile="file://roles.properties";
};
Option description:
| Field Summary | |
|---|---|
static java.lang.String |
KEYSTORE_PASSWORD
|
static java.lang.String |
KEYSTORE_TYPE
|
static java.lang.String |
KEYSTORE_URL
|
static java.lang.String |
ROLE_PROPERTIES
|
| Constructor Summary | |
|---|---|
CertificateLoginModule()
|
|
| Method Summary | |
|---|---|
boolean |
abort()
|
protected void |
addRoles(javax.security.auth.Subject subject,
java.security.Principal principal,
java.security.cert.X509Certificate cert,
java.util.Map<java.lang.String,?> options)
The addRoles method add roles to the authenticated subject. |
boolean |
commit()
If the login was successful this method adds principals and roles to the subject. |
void |
initialize(javax.security.auth.Subject subject,
javax.security.auth.callback.CallbackHandler callbackHandler,
java.util.Map<java.lang.String,?> sharedState,
java.util.Map<java.lang.String,?> options)
Initialized this login module. |
boolean |
login()
Login performs the verification of the callers certificate against the alias that that is provided by the callback handler. |
boolean |
logout()
|
| Methods inherited from class java.lang.Object |
|---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Field Detail |
|---|
public static final java.lang.String KEYSTORE_URL
public static final java.lang.String KEYSTORE_PASSWORD
public static final java.lang.String KEYSTORE_TYPE
public static final java.lang.String ROLE_PROPERTIES
| Constructor Detail |
|---|
public CertificateLoginModule()
| Method Detail |
|---|
public void initialize(javax.security.auth.Subject subject,
javax.security.auth.callback.CallbackHandler callbackHandler,
java.util.Map<java.lang.String,?> sharedState,
java.util.Map<java.lang.String,?> options)
initialize in interface javax.security.auth.spi.LoginModulesubject - The subject to authenticate/populate.callbackHandler - The callbackhandler that will gather information required by this login module.sharedState - State that is shared with other login modules. Used when modules are chained/stacked.options - The options that were specified for this login module. See "Usage" section of this types javadoc.
public boolean login()
throws javax.security.auth.login.LoginException
login in interface javax.security.auth.spi.LoginModulejavax.security.auth.login.LoginException - If an error occurs while trying to perform the authentication.
public boolean commit()
throws javax.security.auth.login.LoginException
commit in interface javax.security.auth.spi.LoginModulejavax.security.auth.login.LoginException
public boolean abort()
throws javax.security.auth.login.LoginException
abort in interface javax.security.auth.spi.LoginModulejavax.security.auth.login.LoginException
public boolean logout()
throws javax.security.auth.login.LoginException
logout in interface javax.security.auth.spi.LoginModulejavax.security.auth.login.LoginException
protected void addRoles(javax.security.auth.Subject subject,
java.security.Principal principal,
java.security.cert.X509Certificate cert,
java.util.Map<java.lang.String,?> options)
throws javax.security.auth.login.LoginException
subject - The subjectprincipal - The authenticated principalcert - The certificate that of the authenticated principaloptions - The options that were specified to this login module.
javax.security.auth.login.LoginException
|
|||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | ||||||||