|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.apache.activemq.jaas.CertificateLoginModule
public abstract class CertificateLoginModule
A LoginModule that allows for authentication based on SSL certificates. Allows for subclasses to define methods used to verify user certificates and find user groups. Uses CertificateCallbacks to retrieve certificates.
Constructor Summary | |
---|---|
CertificateLoginModule()
|
Method Summary | |
---|---|
boolean |
abort()
Standard JAAS override. |
boolean |
commit()
Overriding to complete login process. |
protected String |
getDistinguishedName(X509Certificate[] certs)
|
protected abstract Set |
getUserGroups(String username)
Should return a set of the groups this user belongs to. |
protected abstract String |
getUserNameForCertificates(X509Certificate[] certs)
Should return a unique name corresponding to the certificates given. |
void |
initialize(Subject subject,
CallbackHandler callbackHandler,
Map sharedState,
Map options)
Overriding to allow for proper initialization. |
boolean |
login()
Overriding to allow for certificate-based login. |
boolean |
logout()
Standard JAAS override. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public CertificateLoginModule()
Method Detail |
---|
public void initialize(Subject subject, CallbackHandler callbackHandler, Map sharedState, Map options)
initialize
in interface LoginModule
public boolean login() throws LoginException
login
in interface LoginModule
LoginException
public boolean commit() throws LoginException
commit
in interface LoginModule
LoginException
public boolean abort() throws LoginException
abort
in interface LoginModule
LoginException
public boolean logout()
logout
in interface LoginModule
protected abstract String getUserNameForCertificates(X509Certificate[] certs) throws LoginException
dn
- The distinguished name.
LoginException
protected abstract Set getUserGroups(String username) throws LoginException
username
- The username of the client. This is the same name that
getUserNameForDn returned for the user's DN.
LoginException
protected String getDistinguishedName(X509Certificate[] certs)
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |