public class CombinedRealm extends RealmBase
RealmBase.AllRolesModeLifecycle.SingleUse| Modifier and Type | Field and Description |
|---|---|
protected static java.lang.String |
name
Deprecated.
This will be removed in Tomcat 9 onwards.
|
protected java.util.List<Realm> |
realms
The list of Realms contained by this Realm.
|
allRolesMode, container, containerLog, realmPath, sm, stripRealmForGss, support, validate, x509UsernameRetriever, x509UsernameRetrieverClassNamemserverAFTER_DESTROY_EVENT, AFTER_INIT_EVENT, AFTER_START_EVENT, AFTER_STOP_EVENT, BEFORE_DESTROY_EVENT, BEFORE_INIT_EVENT, BEFORE_START_EVENT, BEFORE_STOP_EVENT, CONFIGURE_START_EVENT, CONFIGURE_STOP_EVENT, PERIODIC_EVENT, START_EVENT, STOP_EVENT| Constructor and Description |
|---|
CombinedRealm() |
| Modifier and Type | Method and Description |
|---|---|
void |
addRealm(Realm theRealm)
Add a realm to the list of realms that will be used to authenticate
users.
|
java.security.Principal |
authenticate(org.ietf.jgss.GSSContext gssContext,
boolean storeCreds)
Try to authenticate using a
GSSContext |
java.security.Principal |
authenticate(java.lang.String username)
Return the Principal associated with the specified user name otherwise
return
null. |
java.security.Principal |
authenticate(java.lang.String username,
java.lang.String credentials)
Return the Principal associated with the specified username and
credentials, if there is one; otherwise return
null. |
java.security.Principal |
authenticate(java.lang.String username,
java.lang.String clientDigest,
java.lang.String nonce,
java.lang.String nc,
java.lang.String cnonce,
java.lang.String qop,
java.lang.String realmName,
java.lang.String md5a2)
Return the Principal associated with the specified username, which
matches the digest calculated using the given parameters using the
method described in RFC 2069; otherwise return
null. |
java.security.Principal |
authenticate(java.security.cert.X509Certificate[] certs)
Return the Principal associated with the specified chain of X509
client certificates.
|
void |
backgroundProcess()
Delegate the backgroundProcess call to all sub-realms.
|
protected void |
destroyInternal()
Ensure child Realms are destroyed when this Realm is destroyed.
|
protected java.lang.String |
getName()
Deprecated.
|
Realm[] |
getNestedRealms() |
protected java.lang.String |
getPassword(java.lang.String username)
Get the password for the specified user.
|
protected java.security.Principal |
getPrincipal(java.lang.String username)
Get the principal associated with the specified user.
|
javax.management.ObjectName[] |
getRealms() |
boolean |
isAvailable()
Return the availability of the realm for authentication.
|
void |
setContainer(Container container)
Set the Container with which this Realm has been associated.
|
protected void |
startInternal()
Prepare for the beginning of active use of the public methods of this
component and implement the requirements of
LifecycleBase.startInternal(). |
protected void |
stopInternal()
Gracefully terminate the active use of the public methods of this
component and implement the requirements of
LifecycleBase.stopInternal(). |
addPropertyChangeListener, Digest, findSecurityConstraints, getAllRolesMode, getContainer, getCredentialHandler, getDigest, getDomainInternal, getObjectNameKeyProperties, getPrincipal, getPrincipal, getRealmPath, getRealmSuffix, getRoles, getServer, getTransportGuaranteeRedirectStatus, getValidate, getX509UsernameRetrieverClassName, hasMessageDigest, hasResourcePermission, hasRole, hasRoleInternal, hasUserDataPermission, initInternal, isStripRealmForGss, main, removePropertyChangeListener, setAllRolesMode, setCredentialHandler, setRealmPath, setStripRealmForGss, setTransportGuaranteeRedirectStatus, setValidate, setX509UsernameRetrieverClassName, toStringgetDomain, getObjectName, postDeregister, postRegister, preDeregister, preRegister, register, setDomain, unregisteraddLifecycleListener, destroy, findLifecycleListeners, fireLifecycleEvent, getState, getStateName, init, removeLifecycleListener, setState, setState, start, stopprotected final java.util.List<Realm> realms
@Deprecated protected static final java.lang.String name
public void addRealm(Realm theRealm)
theRealm - realm which should be wrapped by the combined realmpublic javax.management.ObjectName[] getRealms()
public Realm[] getNestedRealms()
public java.security.Principal authenticate(java.lang.String username,
java.lang.String clientDigest,
java.lang.String nonce,
java.lang.String nc,
java.lang.String cnonce,
java.lang.String qop,
java.lang.String realmName,
java.lang.String md5a2)
null.authenticate in interface Realmauthenticate in class RealmBaseusername - Username of the Principal to look upclientDigest - Digest which has been submitted by the clientnonce - Unique (or supposedly unique) token which has been used
for this requestrealmName - Realm namemd5a2 - Second MD5 digest used to calculate the digest :
MD5(Method + ":" + uri)nc - the nonce countercnonce - the client chosen nonceqop - the "quality of protection" (nc and cnonce
will only be used, if qop is not null).null if there is none.public java.security.Principal authenticate(java.lang.String username)
null.authenticate in interface Realmauthenticate in class RealmBaseusername - User name of the Principal to look upnull if none is
associated.public java.security.Principal authenticate(java.lang.String username,
java.lang.String credentials)
null.authenticate in interface Realmauthenticate in class RealmBaseusername - Username of the Principal to look upcredentials - Password or other credentials to use in
authenticating this usernamenull if there is none.public void setContainer(Container container)
setContainer in interface RealmsetContainer in class RealmBasecontainer - The associated Containerprotected void startInternal()
throws LifecycleException
LifecycleBase.startInternal().startInternal in class RealmBaseLifecycleException - if this component detects a fatal error
that prevents this component from being usedprotected void stopInternal()
throws LifecycleException
LifecycleBase.stopInternal().stopInternal in class RealmBaseLifecycleException - if this component detects a fatal error
that needs to be reportedprotected void destroyInternal()
throws LifecycleException
destroyInternal in class LifecycleMBeanBaseLifecycleExceptionpublic void backgroundProcess()
backgroundProcess in interface RealmbackgroundProcess in class RealmBasepublic java.security.Principal authenticate(java.security.cert.X509Certificate[] certs)
null.authenticate in interface Realmauthenticate in class RealmBasecerts - Array of client certificates, with the first one in
the array being the certificate of the client itself.null if there is nonepublic java.security.Principal authenticate(org.ietf.jgss.GSSContext gssContext,
boolean storeCreds)
GSSContextauthenticate in interface Realmauthenticate in class RealmBasegssContext - The gssContext processed by the Authenticator.storeCreds - Should the realm attempt to store the delegated
credentials in the returned Principal?null if there is none@Deprecated protected java.lang.String getName()
protected java.lang.String getPassword(java.lang.String username)
RealmBasegetPassword in class RealmBaseusername - The user nameprotected java.security.Principal getPrincipal(java.lang.String username)
RealmBasegetPrincipal in class RealmBaseusername - The user namepublic boolean isAvailable()
RealmisAvailable in interface RealmisAvailable in class RealmBasetrue if the realm is able to perform authenticationCopyright © 2000-2019 Apache Software Foundation. All Rights Reserved.