|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
public interface ExtendedGSSContext
Defines Java API for setting and getting context options and delegation extensions as defined in the
GSS-API Extensions document.
Some of the functions might not specify all the parameters as in the document.
Notes:
ExtendedGSSContext client = .... ExtendedGSSContext server = .... byte [] input = new byte[0]; byte [] output = null; do { output = client.initDelegation(null, null, 0, input, 0, input.length); input = server.acceptDelegation(0, output, 0, output.length); } while (!client.isDelegationFinished()); GSSCredential cred = server.getDelegatedCredential(); ...Because delegation can be performed multiple times on the same contexts, the
do { ... } while ();
block should be used to properly reset the delegation state (The state of isDelegationFinished
is reset on the initial call to initDelegation
or acceptDelegation
.
Field Summary |
---|
Fields inherited from interface org.ietf.jgss.GSSContext |
---|
DEFAULT_LIFETIME, INDEFINITE_LIFETIME |
Method Summary | |
---|---|
byte[] |
acceptDelegation(int lifetime,
byte[] but,
int off,
int len)
Accept a delegated credential. |
org.ietf.jgss.GSSCredential |
getDelegatedCredential()
Returns the delegated credential that was delegated using the initDelegation and acceptDelegation
functions. |
java.lang.Object |
getOption(org.ietf.jgss.Oid option)
Gets a context option. |
byte[] |
initDelegation(org.ietf.jgss.GSSCredential cred,
org.ietf.jgss.Oid mechanism,
int lifetime,
byte[] buf,
int off,
int len)
Initiate the delegation of a credential. |
java.lang.Object |
inquireByOid(org.ietf.jgss.Oid oid)
Retrieves arbitrary data about this context. |
boolean |
isDelegationFinished()
Used during delegation to determine the state of the delegation. |
void |
setOption(org.ietf.jgss.Oid option,
java.lang.Object value)
Sets a context option. |
Methods inherited from interface org.ietf.jgss.GSSContext |
---|
acceptSecContext, acceptSecContext, dispose, export, getAnonymityState, getConfState, getCredDelegState, getDelegCred, getIntegState, getLifetime, getMech, getMIC, getMIC, getMutualAuthState, getReplayDetState, getSequenceDetState, getSrcName, getTargName, getWrapSizeLimit, initSecContext, initSecContext, isEstablished, isInitiator, isProtReady, isTransferable, requestAnonymity, requestConf, requestCredDeleg, requestInteg, requestLifetime, requestMutualAuth, requestReplayDet, requestSequenceDet, setChannelBinding, unwrap, unwrap, verifyMIC, verifyMIC, wrap, wrap |
Method Detail |
---|
void setOption(org.ietf.jgss.Oid option, java.lang.Object value) throws org.ietf.jgss.GSSException
option
- option type.value
- option value.
org.ietf.jgss.GSSException
- containing the following major error codes:
GSSException.FAILURE
java.lang.Object getOption(org.ietf.jgss.Oid option) throws org.ietf.jgss.GSSException
option
- option type.
org.ietf.jgss.GSSException
- containing the following major error codes:
GSSException.FAILURE
byte[] initDelegation(org.ietf.jgss.GSSCredential cred, org.ietf.jgss.Oid mechanism, int lifetime, byte[] buf, int off, int len) throws org.ietf.jgss.GSSException
acceptDelegation
function.
cred
- The credential to be delegated. May be null
in which case the credential associated with the security
context is used.mechanism
- The desired security mechanism. May be null.lifetime
- The requested period of validity (seconds) of the delegated
credential.
acceptDelegation
if
isDelegationFinished
returns false. May be null.
org.ietf.jgss.GSSException
- containing the following major error codes:
GSSException.FAILURE
byte[] acceptDelegation(int lifetime, byte[] but, int off, int len) throws org.ietf.jgss.GSSException
initDelegation
function.
lifetime
- The requested period of validity (seconds) of the delegated
credential.
initDelegation
if
isDelegationFinished
returns false. May be null.
org.ietf.jgss.GSSException
- containing the following major error codes:
GSSException.FAILURE
org.ietf.jgss.GSSCredential getDelegatedCredential()
initDelegation
and acceptDelegation
functions. This is to be called on the delegation accepting
side once once isDelegationFinished
returns true.
boolean isDelegationFinished()
java.lang.Object inquireByOid(org.ietf.jgss.Oid oid) throws org.ietf.jgss.GSSException
oid
- the oid of the information desired.
org.ietf.jgss.GSSException
- containing the following major error codes:
GSSException.FAILURE
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |