Package | Description |
---|---|
org.apache.directory.kerberos.client | |
org.apache.directory.server.kerberos.changepwd.exceptions |
Provides the root of the exception hierarchy, as well as the
enumerator for mapping Change Password errors to error codes.
|
org.apache.directory.server.kerberos.kdc.ticketgrant |
Provides the KDC's Ticket-Granting Service (TGS).
|
org.apache.directory.server.kerberos.protocol |
Provides the
IoHandler and associated ProtocolCodecFactory
required to implement the KDC's Authentication Service (AS) and
Ticket-Granting Service (TGS) with the MINA NIO framework. |
org.apache.directory.server.kerberos.shared.crypto.checksum |
Provides support for checksum calculations.
|
org.apache.directory.server.kerberos.shared.crypto.encryption |
Provides support for Kerberos CipherText operations.
|
org.apache.directory.server.kerberos.shared.store |
Provides the implementation for storing Kerberos principals
and symmetric keys backed by JNDI.
|
org.apache.directory.shared.kerberos | |
org.apache.directory.shared.kerberos.codec | |
org.apache.directory.shared.kerberos.exceptions |
Modifier and Type | Method and Description |
---|---|
ServiceTicket |
KdcConnection.getServiceTicket(String clientPrincipal,
String password,
String serverPrincipal)
Authenticates to the Kerberos server and gets a service ticket for the given server principal
|
TgTicket |
KdcConnection.getTgt(String principal,
String password)
Authenticates to the Kerberos server and gets the initial Ticket Granting Ticket
|
TgTicket |
KdcConnection.getTgt(TgtRequest clientTgtReq) |
Modifier and Type | Class and Description |
---|---|
class |
ChangePasswordException
The root of the Change Password exception hierarchy.
|
Modifier and Type | Method and Description |
---|---|
static PrincipalStoreEntry |
TicketGrantingService.getEntry(KerberosPrincipal principal,
PrincipalStore store,
ErrorType errorType)
Get a PrincipalStoreEntry given a principal.
|
static void |
TicketGrantingService.getRequestPrincipalEntry(TicketGrantingContext tgsContext) |
static void |
TicketGrantingService.verifyTgt(TicketGrantingContext tgsContext) |
Modifier and Type | Method and Description |
---|---|
protected KrbError |
KerberosProtocolHandler.getErrorMessage(KerberosPrincipal principal,
KerberosException exception)
Construct an error message given some conditions
|
Modifier and Type | Method and Description |
---|---|
Checksum |
ChecksumHandler.calculateChecksum(ChecksumType checksumType,
byte[] bytes,
byte[] key,
KeyUsage usage)
Calculate a checksum based on raw bytes and an (optional) key for keyed checksums.
|
void |
ChecksumHandler.verifyChecksum(Checksum checksum,
byte[] bytes,
byte[] key,
KeyUsage usage)
Verify a checksum by providing the raw bytes and an (optional) key for keyed checksums.
|
Modifier and Type | Method and Description |
---|---|
byte[] |
CipherTextHandler.decrypt(EncryptionKey key,
EncryptedData data,
KeyUsage usage)
Decrypt a block of data.
|
EncryptedData |
CipherTextHandler.encrypt(EncryptionKey key,
byte[] plainText,
KeyUsage usage) |
protected abstract byte[] |
EncryptionEngine.getDecryptedData(EncryptionKey key,
EncryptedData data,
KeyUsage usage) |
byte[] |
Des3CbcSha1KdEncryption.getDecryptedData(EncryptionKey key,
EncryptedData data,
KeyUsage usage) |
byte[] |
DesCbcCrcEncryption.getDecryptedData(EncryptionKey key,
EncryptedData data,
KeyUsage usage) |
static EncryptionKey |
RandomKeyFactory.getRandomKey(EncryptionType encryptionType)
Get a new random key for a given
EncryptionType . |
static Map<EncryptionType,EncryptionKey> |
RandomKeyFactory.getRandomKeys()
Get a map of random keys.
|
static Map<EncryptionType,EncryptionKey> |
RandomKeyFactory.getRandomKeys(Set<EncryptionType> ciphers)
Get a map of random keys for a list of cipher types to derive keys for.
|
EncryptedData |
CipherTextHandler.seal(EncryptionKey key,
org.apache.directory.api.asn1.Asn1Object message,
KeyUsage usage)
Performs an encode and an encrypt.
|
Modifier and Type | Method and Description |
---|---|
Ticket |
TicketFactory.getTicket(KerberosPrincipal clientPrincipal,
KerberosPrincipal serverPrincipal,
EncryptionKey serverKey)
Build the service ticket.
|
Map<EncryptionType,EncryptionKey> |
PrincipalStoreEntryModifier.reconstituteKeyMap(org.apache.directory.api.ldap.model.entry.Attribute krb5key)
Converts the ASN.1 encoded key set to a map of encryption types to encryption keys.
|
Modifier and Type | Method and Description |
---|---|
static PrincipalStoreEntry |
KerberosUtils.getEntry(KerberosPrincipal principal,
PrincipalStore store,
ErrorType errorType)
Get a PrincipalStoreEntry given a principal.
|
static Authenticator |
KerberosUtils.verifyAuthHeader(ApReq authHeader,
Ticket ticket,
EncryptionKey serverKey,
long clockSkew,
ReplayCache replayCache,
boolean emptyAddressesAllowed,
InetAddress clientAddress,
CipherTextHandler lockBox,
KeyUsage authenticatorKeyUsage,
boolean isValidate)
Verifies an AuthHeader using guidelines from RFC 1510 section A.10., "KRB_AP_REQ verification."
|
Modifier and Type | Method and Description |
---|---|
static ApRep |
KerberosDecoder.decodeApRep(byte[] data)
Decode a AP-REP structure
|
static ApReq |
KerberosDecoder.decodeApReq(byte[] data)
Decode a AP-REQ structure
|
static Authenticator |
KerberosDecoder.decodeAuthenticator(byte[] data)
Decode a Authenticator structure
|
static AuthorizationData |
KerberosDecoder.decodeAuthorizationData(byte[] data)
Decode a AuthorizationData structure
|
static EncApRepPart |
KerberosDecoder.decodeEncApRepPart(byte[] data)
Decode an EncApRepPart structure
|
static EncAsRepPart |
KerberosDecoder.decodeEncAsRepPart(byte[] data)
Decode an EncAsRepPart structure
|
static EncKdcRepPart |
KerberosDecoder.decodeEncKdcRepPart(byte[] data)
Decode an EncKdcRepPart structure
|
static EncKrbPrivPart |
KerberosDecoder.decodeEncKrbPrivPart(byte[] data)
Decode an EncKrbPrivPart structure
|
static EncryptedData |
KerberosDecoder.decodeEncryptedData(byte[] data)
Decode an EncrytedData structure
|
static EncryptionKey |
KerberosDecoder.decodeEncryptionKey(byte[] data)
Decode an EncryptionKey structure
|
static EncTicketPart |
KerberosDecoder.decodeEncTicketPart(byte[] data)
Decode an EncTicketPart structure
|
static KrbPriv |
KerberosDecoder.decodeKrbPriv(byte[] data)
Decode a KRB-PRIV structure
|
static PaEncTsEnc |
KerberosDecoder.decodePaEncTsEnc(byte[] data)
Decode an PaEncTsEnc structure
|
static PrincipalName |
KerberosDecoder.decodePrincipalName(byte[] data)
Decode an PrincipalName structure
|
static Ticket |
KerberosDecoder.decodeTicket(byte[] data)
Decode a Ticket structure
|
Modifier and Type | Class and Description |
---|---|
class |
InvalidTicketException
A exception used when there was an error while creating a Ticket
|
Copyright © 2003–2020 The Apache Software Foundation. All rights reserved.