public class GSSAPIAuthenticationMechanism extends Object implements AuthenticationMechanism
AuthenticationMechanismfor GSSAPI / SPNEGO based authentication.
GSSAPI authentication is associated with the HTTP connection, as long as a connection is being re-used allow the authentication state to be re-used.
TODO - May consider an option to allow it to also be associated with the underlying session but that has it's own risks so would need to come with a warning.
|Modifier and Type||Field and Description|
| || |
|Constructor and Description|
|Modifier and Type||Method and Description|
| || |
Perform authentication of the request.
| || |
| || |
Send an authentication challenge to the remote client.
public static final ExclusivityChecker EXCLUSIVITY_CHECKER
public GSSAPIAuthenticationMechanism(GSSAPIServerSubjectFactory subjectFactory, IdentityManager identityManager, Oid... supportedMechanisms)
public GSSAPIAuthenticationMechanism(GSSAPIServerSubjectFactory subjectFactory, Oid... supportedMechanisms)
public GSSAPIAuthenticationMechanism(GSSAPIServerSubjectFactory subjectFactory)
public AuthenticationMechanism.AuthenticationMechanismOutcome authenticate(HttpServerExchange exchange, SecurityContext securityContext)
public AuthenticationMechanism.ChallengeResult sendChallenge(HttpServerExchange exchange, SecurityContext securityContext)
The individual mechanisms should update the response headers and body of the message as appropriate however they should not set the response code, instead that should be indicated in the
AuthenticationMechanism.ChallengeResult and the most appropriate overall response code will be selected.
public AuthenticationMechanism.AuthenticationMechanismOutcome runGSSAPI(HttpServerExchange exchange, ByteBuffer challenge, SecurityContext securityContext)
Copyright © 2015 JBoss by Red Hat. All rights reserved.