Class SpnegoAuthenticator

All Implemented Interfaces:
MBeanRegistration, RegistrationListener, Authenticator, Contained, JmxEnabled, Lifecycle, Valve

public class SpnegoAuthenticator extends AuthenticatorBase
A SPNEGO authenticator that uses the SPNEGO/Kerberos support built in to Java 6. Successful Kerberos authentication depends on the correct configuration of multiple components. If the configuration is invalid, the error messages are often cryptic although a Google search will usually point you in the right direction.
  • Constructor Details

    • SpnegoAuthenticator

      public SpnegoAuthenticator()
  • Method Details

    • getLoginConfigName

      public String getLoginConfigName()
    • setLoginConfigName

      public void setLoginConfigName(String loginConfigName)
    • isStoreDelegatedCredential

      public boolean isStoreDelegatedCredential()
    • setStoreDelegatedCredential

      public void setStoreDelegatedCredential(boolean storeDelegatedCredential)
    • getNoKeepAliveUserAgents

      public String getNoKeepAliveUserAgents()
    • setNoKeepAliveUserAgents

      public void setNoKeepAliveUserAgents(String noKeepAliveUserAgents)
    • getApplyJava8u40Fix

      public boolean getApplyJava8u40Fix()
    • setApplyJava8u40Fix

      public void setApplyJava8u40Fix(boolean applyJava8u40Fix)
    • getAuthMethod

      protected String getAuthMethod()
      Description copied from class: AuthenticatorBase
      Return the authentication method, which is vendor-specific and not defined by HttpServletRequest.
      Specified by:
      getAuthMethod in class AuthenticatorBase
      Returns:
      the authentication method, which is vendor-specific and not defined by HttpServletRequest.
    • initInternal

      protected void initInternal() throws LifecycleException
      Description copied from class: LifecycleBase
      Sub-classes implement this method to perform any instance initialisation required.
      Overrides:
      initInternal in class ValveBase
      Throws:
      LifecycleException - If the initialisation fails
    • doAuthenticate

      protected boolean doAuthenticate(Request request, HttpServletResponse response) throws IOException
      Description copied from class: AuthenticatorBase
      Provided for sub-classes to implement their specific authentication mechanism.
      Specified by:
      doAuthenticate in class AuthenticatorBase
      Parameters:
      request - The request that triggered the authentication
      response - The response associated with the request
      Returns:
      true if the the user was authenticated, otherwise false, in which case an authentication challenge will have been written to the response
      Throws:
      IOException - If an I/O problem occurred during the authentication process
    • isPreemptiveAuthPossible

      protected boolean isPreemptiveAuthPossible(Request request)
      Description copied from class: AuthenticatorBase
      Can the authenticator perform preemptive authentication for the given request?
      Overrides:
      isPreemptiveAuthPossible in class AuthenticatorBase
      Parameters:
      request - The request to check for credentials
      Returns:
      true if preemptive authentication is possible, otherwise false