org.jboss.security.srp
Interface SRPVerifierStore
- All Known Implementing Classes:
- SerialObjectStore
public interface SRPVerifierStore
An interface describing the requirements of a password verifier store.
This is an abstraction that allows the information
needed by the server to be plugged in from various sources. E.g., LDAP
servers, databases, files, etc.
- Version:
- $Revision: 57210 $
- Author:
- Scott.Stark@jboss.org
getUserVerifier
SRPVerifierStore.VerifierInfo getUserVerifier(String username)
throws KeyException,
IOException
- Get the indicated user's password verifier information.
- Throws:
KeyException
IOException
setUserVerifier
void setUserVerifier(String username,
SRPVerifierStore.VerifierInfo info)
throws IOException
- Set the indicated users' password verifier information. This is equivalent
to changing a user's password and should generally invalidate any existing
SRP sessions and caches.
- Throws:
IOException
verifyUserChallenge
void verifyUserChallenge(String username,
Object auxChallenge)
throws SecurityException
- Verify an optional auxillary challenge sent from the client to the server. The
auxChallenge object will have been decrypted if it was sent encrypted from the
client. An example of a auxillary challenge would be the validation of a hardware
token (SafeWord, SecureID, iButton) that the server validates to further strengthen
the SRP password exchange.
- Throws:
SecurityException
Copyright © 2002 JBoss Group, LLC. All Rights Reserved.