Package | Description |
---|---|
org.apache.directory.server.changepw.service |
Provides the Change Password Service.
|
org.apache.directory.server.kerberos.kdc.authentication |
Provides the KDC's Authentication Service (AS).
|
org.apache.directory.server.kerberos.kdc.ticketgrant |
Provides the KDC's Ticket-Granting Service (TGS).
|
org.apache.directory.server.kerberos.shared | |
org.apache.directory.server.kerberos.shared.replay |
Provides the interface and in-memory implementation of
a Kerberos replay cache.
|
Modifier and Type | Method and Description |
---|---|
ReplayCache |
ChangePasswordContext.getReplayCache() |
Modifier and Type | Method and Description |
---|---|
void |
ChangePasswordContext.setReplayCache(ReplayCache replayCache) |
Modifier and Type | Method and Description |
---|---|
ReplayCache |
AuthenticationContext.getReplayCache() |
Modifier and Type | Method and Description |
---|---|
void |
AuthenticationContext.setReplayCache(ReplayCache replayCache) |
Modifier and Type | Method and Description |
---|---|
ReplayCache |
TicketGrantingContext.getReplayCache() |
Modifier and Type | Method and Description |
---|---|
void |
TicketGrantingContext.setReplayCache(ReplayCache replayCache) |
Modifier and Type | Method and Description |
---|---|
static Authenticator |
KerberosUtils.verifyAuthHeader(ApplicationRequest authHeader,
Ticket ticket,
EncryptionKey serverKey,
long clockSkew,
ReplayCache replayCache,
boolean emptyAddressesAllowed,
InetAddress clientAddress,
CipherTextHandler lockBox,
KeyUsage authenticatorKeyUsage,
boolean isValidate)
Verifies an AuthHeader using guidelines from RFC 1510 section A.10., "KRB_AP_REQ verification."
|
Modifier and Type | Class and Description |
---|---|
class |
InMemoryReplayCache
"The replay cache will store at least the server name, along with the client name,
time, and microsecond fields from the recently-seen authenticators, and if a
matching tuple is found, the KRB_AP_ERR_REPEAT error is returned."
We will store the entries using an HashMap which key will be the client
principal, and we will store a list of entries for each client principal.
|
Copyright © 2003–2015 The Apache Software Foundation. All rights reserved.