Overview  Package   Class  Tree  Deprecated  Index  Help 
 PREV CLASS (src)    NEXT CLASS (src) FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.jboss.security.auth.spi
Class DatabaseCertLoginModule

java.lang.Object
  extended byorg.jboss.security.auth.spi.AbstractServerLoginModule (src) 
      extended byorg.jboss.security.auth.spi.BaseCertLoginModule (src) 
          extended byorg.jboss.security.auth.spi.DatabaseCertLoginModule
All Implemented Interfaces:
javax.security.auth.spi.LoginModule
public class DatabaseCertLoginModule
extends BaseCertLoginModule (src)

A Certificate Login Module that gets its role information from a database. This module is the functional equivelant of the DatabaseServerLoginModule (src) minus the usersQuery.

See Also:
DatabaseServerLoginModule (src)

Field Summary
 
Fields inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule (src)
callbackHandler, log, loginOk, options, principalClassName, sharedState, subject, unauthenticatedIdentity, useFirstPass
 
Constructor Summary
DatabaseCertLoginModule()
           
 
Method Summary
protected  java.security.acl.Group[] getRoleSets()
          Subclasses need to override this to provide the roles for authorization
 void initialize(javax.security.auth.Subject subject, javax.security.auth.callback.CallbackHandler callbackHandler, java.util.Map sharedState, java.util.Map options)
          Override the super version to pickup the following options after first calling the super method.
 
Methods inherited from class org.jboss.security.auth.spi.BaseCertLoginModule (src)
commit, getAliasAndCert, getCredentials, getIdentity, getUsername, login, validateCredential
 
Methods inherited from class org.jboss.security.auth.spi.AbstractServerLoginModule (src)
abort, createGroup, createIdentity, getUnauthenticatedIdentity, getUseFirstPass, logout
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

DatabaseCertLoginModule

public DatabaseCertLoginModule()
Method Detail

initialize

public void initialize(javax.security.auth.Subject subject,
                       javax.security.auth.callback.CallbackHandler callbackHandler,
                       java.util.Map sharedState,
                       java.util.Map options)
Description copied from class: BaseCertLoginModule (src)
Override the super version to pickup the following options after first calling the super method. option: securityDomain - the name of the SecurityDomain to obtain the trust and keystore from. option: verifier - the class name of the X509CertificateVerifier to use for verification of the login certificate

Specified by:
initialize in interface javax.security.auth.spi.LoginModule
Overrides:
initialize in class BaseCertLoginModule (src)
Parameters:
options - - dsJndiName: The name of the DataSource of the database containing the Principals, Roles tables rolesQuery: The prepared statement query, equivalent to: "select Role, RoleGroup from Roles where PrincipalID=?"
subject - the Subject to update after a successful login.
callbackHandler - the CallbackHandler that will be used to obtain the the user identity and credentials.
sharedState - a Map shared between all configured login module instances
See Also:
SecurityDomain (src) , X509CertificateVerifier (src)

getRoleSets

protected java.security.acl.Group[] getRoleSets()
                                         throws javax.security.auth.login.LoginException
Description copied from class: BaseCertLoginModule (src)
Subclasses need to override this to provide the roles for authorization

Overrides:
getRoleSets in class BaseCertLoginModule (src)
Returns:
Throws:
javax.security.auth.login.LoginException
See Also:
DatabaseServerLoginModule.getRoleSets()
Overview  Package   Class  Tree  Deprecated  Index  Help 
 PREV CLASS (src)    NEXT CLASS (src) FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD