Class SpnegoAuthenticator
- java.lang.Object
- 
- org.apache.catalina.util.LifecycleBase
- 
- org.apache.catalina.util.LifecycleMBeanBase
- 
- org.apache.catalina.valves.ValveBase
- 
- org.apache.catalina.authenticator.AuthenticatorBase
- 
- org.apache.catalina.authenticator.SpnegoAuthenticator
 
 
 
 
 
- 
- All Implemented Interfaces:
- javax.management.MBeanRegistration,- RegistrationListener,- Authenticator,- Contained,- JmxEnabled,- Lifecycle,- Valve
 
 public class SpnegoAuthenticator extends AuthenticatorBase A SPNEGO authenticator that uses the SPNEGO/Kerberos support built in to Java 6. Successful Kerberos authentication depends on the correct configuration of multiple components. If the configuration is invalid, the error messages are often cryptic although a Google search will usually point you in the right direction.
- 
- 
Nested Class SummaryNested Classes Modifier and Type Class Description static classSpnegoAuthenticator.AcceptActionThis class gets a gss credential via a privileged action.static classSpnegoAuthenticator.AuthenticateActionstatic classSpnegoAuthenticator.SpnegoTokenFixerThis class implements a hack around an incompatibility between the SPNEGO implementation in Windows and the SPNEGO implementation in Java 8 update 40 onwards.- 
Nested classes/interfaces inherited from class org.apache.catalina.authenticator.AuthenticatorBaseAuthenticatorBase.AllowCorsPreflight
 - 
Nested classes/interfaces inherited from interface org.apache.catalina.LifecycleLifecycle.SingleUse
 
- 
 - 
Field Summary- 
Fields inherited from class org.apache.catalina.authenticator.AuthenticatorBasealwaysUseSession, AUTH_HEADER_NAME, cache, changeSessionIdOnAuthentication, context, disableProxyCaching, jaspicCallbackHandlerClass, REALM_NAME, securePagesWithPragma, secureRandomAlgorithm, secureRandomClass, secureRandomProvider, sendAuthInfoResponseHeaders, sessionIdGenerator, sm, sso
 - 
Fields inherited from class org.apache.catalina.valves.ValveBaseasyncSupported, container, containerLog, next
 - 
Fields inherited from class org.apache.catalina.util.LifecycleMBeanBasemserver
 - 
Fields inherited from interface org.apache.catalina.LifecycleAFTER_DESTROY_EVENT, AFTER_INIT_EVENT, AFTER_START_EVENT, AFTER_STOP_EVENT, BEFORE_DESTROY_EVENT, BEFORE_INIT_EVENT, BEFORE_START_EVENT, BEFORE_STOP_EVENT, CONFIGURE_START_EVENT, CONFIGURE_STOP_EVENT, PERIODIC_EVENT, START_EVENT, STOP_EVENT
 
- 
 - 
Constructor SummaryConstructors Constructor Description SpnegoAuthenticator()
 - 
Method SummaryAll Methods Instance Methods Concrete Methods Modifier and Type Method Description protected booleandoAuthenticate(Request request, HttpServletResponse response)Provided for sub-classes to implement their specific authentication mechanism.booleangetApplyJava8u40Fix()protected java.lang.StringgetAuthMethod()java.lang.StringgetLoginConfigName()java.lang.StringgetNoKeepAliveUserAgents()protected voidinitInternal()Sub-classes wishing to perform additional initialization should override this method, ensuring that super.initInternal() is the first call in the overriding method.protected booleanisPreemptiveAuthPossible(Request request)Can the authenticator perform preemptive authentication for the given request?booleanisStoreDelegatedCredential()voidsetApplyJava8u40Fix(boolean applyJava8u40Fix)voidsetLoginConfigName(java.lang.String loginConfigName)voidsetNoKeepAliveUserAgents(java.lang.String noKeepAliveUserAgents)voidsetStoreDelegatedCredential(boolean storeDelegatedCredential)- 
Methods inherited from class org.apache.catalina.authenticator.AuthenticatorBaseallowCorsPreflightBypass, associate, authenticate, changeSessionID, checkForCachedAuthentication, doLogin, getAllowCorsPreflight, getAlwaysUseSession, getCache, getChangeSessionIdOnAuthentication, getContainer, getDisableProxyCaching, getJaspicCallbackHandlerClass, getRealmName, getSecurePagesWithPragma, getSecureRandomAlgorithm, getSecureRandomClass, getSecureRandomProvider, invoke, isContinuationRequired, isSendAuthInfoResponseHeaders, login, logout, notify, reauthenticateFromSSO, register, register, setAllowCorsPreflight, setAlwaysUseSession, setCache, setChangeSessionIdOnAuthentication, setContainer, setDisableProxyCaching, setJaspicCallbackHandlerClass, setSecurePagesWithPragma, setSecureRandomAlgorithm, setSecureRandomClass, setSecureRandomProvider, setSendAuthInfoResponseHeaders, startInternal, stopInternal
 - 
Methods inherited from class org.apache.catalina.valves.ValveBasebackgroundProcess, getDomainInternal, getNext, getObjectNameKeyProperties, isAsyncSupported, setAsyncSupported, setNext, toString
 - 
Methods inherited from class org.apache.catalina.util.LifecycleMBeanBasedestroyInternal, getDomain, getObjectName, postDeregister, postRegister, preDeregister, preRegister, register, setDomain, unregister
 - 
Methods inherited from class org.apache.catalina.util.LifecycleBaseaddLifecycleListener, destroy, findLifecycleListeners, fireLifecycleEvent, getState, getStateName, getThrowOnFailure, init, removeLifecycleListener, setState, setState, setThrowOnFailure, start, stop
 
- 
 
- 
- 
- 
Method Detail- 
getLoginConfigNamepublic java.lang.String getLoginConfigName() 
 - 
setLoginConfigNamepublic void setLoginConfigName(java.lang.String loginConfigName) 
 - 
isStoreDelegatedCredentialpublic boolean isStoreDelegatedCredential() 
 - 
setStoreDelegatedCredentialpublic void setStoreDelegatedCredential(boolean storeDelegatedCredential) 
 - 
getNoKeepAliveUserAgentspublic java.lang.String getNoKeepAliveUserAgents() 
 - 
setNoKeepAliveUserAgentspublic void setNoKeepAliveUserAgents(java.lang.String noKeepAliveUserAgents) 
 - 
getApplyJava8u40Fixpublic boolean getApplyJava8u40Fix() 
 - 
setApplyJava8u40Fixpublic void setApplyJava8u40Fix(boolean applyJava8u40Fix) 
 - 
getAuthMethodprotected java.lang.String getAuthMethod() - Specified by:
- getAuthMethodin class- AuthenticatorBase
 
 - 
initInternalprotected void initInternal() throws LifecycleExceptionDescription copied from class:LifecycleMBeanBaseSub-classes wishing to perform additional initialization should override this method, ensuring that super.initInternal() is the first call in the overriding method.- Overrides:
- initInternalin class- ValveBase
- Throws:
- LifecycleException- If the initialisation fails
 
 - 
doAuthenticateprotected boolean doAuthenticate(Request request, HttpServletResponse response) throws java.io.IOException Description copied from class:AuthenticatorBaseProvided for sub-classes to implement their specific authentication mechanism.- Specified by:
- doAuthenticatein class- AuthenticatorBase
- Parameters:
- request- The request that triggered the authentication
- response- The response associated with the request
- Returns:
- trueif the the user was authenticated, otherwise- false, in which case an authentication challenge will have been written to the response
- Throws:
- java.io.IOException- If an I/O problem occurred during the authentication process
 
 - 
isPreemptiveAuthPossibleprotected boolean isPreemptiveAuthPossible(Request request) Description copied from class:AuthenticatorBaseCan the authenticator perform preemptive authentication for the given request?- Overrides:
- isPreemptiveAuthPossiblein class- AuthenticatorBase
- Parameters:
- request- The request to check for credentials
- Returns:
- trueif preemptive authentication is possible, otherwise- false
 
 
- 
 
-