public static void install(SecurityConfiguration config, Map<String, ClientSecurityConfiguration> clientSecurityConfigurationMap) throws Exception { SecurityUtils.install(config); // install dynamic JAAS entries for (SecurityModuleFactory factory : config.getSecurityModuleFactories()) { if (factory instanceof JaasModuleFactory) { DynamicConfiguration jaasConf = (DynamicConfiguration) javax.security.auth.login.Configuration.getConfiguration(); for (Map.Entry<String, ClientSecurityConfiguration> e : clientSecurityConfigurationMap.entrySet()) { AppConfigurationEntry entry = KerberosUtils.keytabEntry( e.getValue().getKeytab(), e.getValue().getPrincipal()); jaasConf.addAppConfigurationEntry(e.getKey(), entry); } break; } } }
private static AppConfigurationEntry[] getAppConfigurationEntries(SecurityConfiguration securityConfig) { AppConfigurationEntry userKerberosAce = null; if (securityConfig.useTicketCache()) { userKerberosAce = KerberosUtils.ticketCacheEntry(); } AppConfigurationEntry keytabKerberosAce = null; if (securityConfig.getKeytab() != null) { keytabKerberosAce = KerberosUtils.keytabEntry(securityConfig.getKeytab(), securityConfig.getPrincipal()); } AppConfigurationEntry[] appConfigurationEntry; if (userKerberosAce != null && keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce, userKerberosAce}; } else if (keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce}; } else if (userKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{userKerberosAce}; } else { return null; } return appConfigurationEntry; }
public static AppConfigurationEntry keytabEntry(String keytab, String principal) { checkNotNull(keytab, "keytab"); checkNotNull(principal, "principal"); Map<String, String> keytabKerberosOptions = new HashMap<>(); if (IBM_JAVA) { keytabKerberosOptions.put("useKeytab", prependFileUri(keytab)); keytabKerberosOptions.put("credsType", "both"); } else { keytabKerberosOptions.put("keyTab", keytab); keytabKerberosOptions.put("doNotPrompt", "true"); keytabKerberosOptions.put("useKeyTab", "true"); keytabKerberosOptions.put("storeKey", "true"); } keytabKerberosOptions.put("principal", principal); keytabKerberosOptions.put("refreshKrb5Config", "true"); keytabKerberosOptions.putAll(debugOptions); AppConfigurationEntry keytabKerberosAce = new AppConfigurationEntry( getKrb5LoginModuleName(), AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, keytabKerberosOptions); return keytabKerberosAce; }
public static AppConfigurationEntry keytabEntry(String keytab, String principal) { checkNotNull(keytab, "keytab"); checkNotNull(principal, "principal"); Map<String, String> keytabKerberosOptions = new HashMap<>(); if(IBM_JAVA) { keytabKerberosOptions.put("useKeytab", prependFileUri(keytab)); keytabKerberosOptions.put("credsType", "both"); } else { keytabKerberosOptions.put("keyTab", keytab); keytabKerberosOptions.put("doNotPrompt", "true"); keytabKerberosOptions.put("useKeyTab", "true"); keytabKerberosOptions.put("storeKey", "true"); } keytabKerberosOptions.put("principal", principal); keytabKerberosOptions.put("refreshKrb5Config", "true"); keytabKerberosOptions.putAll(debugOptions); AppConfigurationEntry keytabKerberosAce = new AppConfigurationEntry( KerberosUtil.getKrb5LoginModuleName(), AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, keytabKerberosOptions); return keytabKerberosAce; }
private static AppConfigurationEntry[] getAppConfigurationEntries(SecurityUtils.SecurityConfiguration securityConfig) { AppConfigurationEntry userKerberosAce = null; if (securityConfig.useTicketCache()) { userKerberosAce = KerberosUtils.ticketCacheEntry(); } AppConfigurationEntry keytabKerberosAce = null; if (securityConfig.getKeytab() != null) { keytabKerberosAce = KerberosUtils.keytabEntry(securityConfig.getKeytab(), securityConfig.getPrincipal()); } AppConfigurationEntry[] appConfigurationEntry; if (userKerberosAce != null && keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce, userKerberosAce}; } else if (keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce}; } else if (userKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{userKerberosAce}; } else { return null; } return appConfigurationEntry; }
public static AppConfigurationEntry keytabEntry(String keytab, String principal) { checkNotNull(keytab, "keytab"); checkNotNull(principal, "principal"); Map<String, String> keytabKerberosOptions = new HashMap<>(); if (IBM_JAVA) { keytabKerberosOptions.put("useKeytab", prependFileUri(keytab)); keytabKerberosOptions.put("credsType", "both"); } else { keytabKerberosOptions.put("keyTab", keytab); keytabKerberosOptions.put("doNotPrompt", "true"); keytabKerberosOptions.put("useKeyTab", "true"); keytabKerberosOptions.put("storeKey", "true"); } keytabKerberosOptions.put("principal", principal); keytabKerberosOptions.put("refreshKrb5Config", "true"); keytabKerberosOptions.putAll(debugOptions); AppConfigurationEntry keytabKerberosAce = new AppConfigurationEntry( getKrb5LoginModuleName(), AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, keytabKerberosOptions); return keytabKerberosAce; }
private static AppConfigurationEntry[] getAppConfigurationEntries(SecurityConfiguration securityConfig) { AppConfigurationEntry userKerberosAce = null; if (securityConfig.useTicketCache()) { userKerberosAce = KerberosUtils.ticketCacheEntry(); } AppConfigurationEntry keytabKerberosAce = null; if (securityConfig.getKeytab() != null) { keytabKerberosAce = KerberosUtils.keytabEntry(securityConfig.getKeytab(), securityConfig.getPrincipal()); } AppConfigurationEntry[] appConfigurationEntry; if (userKerberosAce != null && keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce, userKerberosAce}; } else if (keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce}; } else if (userKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{userKerberosAce}; } else { return null; } return appConfigurationEntry; }
public static void install(SecurityUtils.SecurityConfiguration config, Map<String, ClientSecurityConfiguration> clientSecurityConfigurationMap) throws Exception { SecurityUtils.install(config); // install dynamic JAAS entries checkArgument(config.getSecurityModules().contains(JaasModule.class)); DynamicConfiguration jaasConf = (DynamicConfiguration) javax.security.auth.login.Configuration.getConfiguration(); for(Map.Entry<String,ClientSecurityConfiguration> e : clientSecurityConfigurationMap.entrySet()) { AppConfigurationEntry entry = KerberosUtils.keytabEntry(e.getValue().getKeytab(), e.getValue().getPrincipal()); jaasConf.addAppConfigurationEntry(e.getKey(), entry); } }
public static AppConfigurationEntry keytabEntry(String keytab, String principal) { checkNotNull(keytab, "keytab"); checkNotNull(principal, "principal"); Map<String, String> keytabKerberosOptions = new HashMap<>(); if (IBM_JAVA) { keytabKerberosOptions.put("useKeytab", prependFileUri(keytab)); keytabKerberosOptions.put("credsType", "both"); } else { keytabKerberosOptions.put("keyTab", keytab); keytabKerberosOptions.put("doNotPrompt", "true"); keytabKerberosOptions.put("useKeyTab", "true"); keytabKerberosOptions.put("storeKey", "true"); } keytabKerberosOptions.put("principal", principal); keytabKerberosOptions.put("refreshKrb5Config", "true"); keytabKerberosOptions.putAll(debugOptions); AppConfigurationEntry keytabKerberosAce = new AppConfigurationEntry( getKrb5LoginModuleName(), AppConfigurationEntry.LoginModuleControlFlag.REQUIRED, keytabKerberosOptions); return keytabKerberosAce; }
private static AppConfigurationEntry[] getAppConfigurationEntries(SecurityConfiguration securityConfig) { AppConfigurationEntry userKerberosAce = null; if (securityConfig.useTicketCache()) { userKerberosAce = KerberosUtils.ticketCacheEntry(); } AppConfigurationEntry keytabKerberosAce = null; if (securityConfig.getKeytab() != null) { keytabKerberosAce = KerberosUtils.keytabEntry(securityConfig.getKeytab(), securityConfig.getPrincipal()); } AppConfigurationEntry[] appConfigurationEntry; if (userKerberosAce != null && keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce, userKerberosAce}; } else if (keytabKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{keytabKerberosAce}; } else if (userKerberosAce != null) { appConfigurationEntry = new AppConfigurationEntry[]{userKerberosAce}; } else { return null; } return appConfigurationEntry; }
public static void install(SecurityConfiguration config, Map<String, ClientSecurityConfiguration> clientSecurityConfigurationMap) throws Exception { SecurityUtils.install(config); // install dynamic JAAS entries for (SecurityModuleFactory factory : config.getSecurityModuleFactories()) { if (factory instanceof JaasModuleFactory) { DynamicConfiguration jaasConf = (DynamicConfiguration) javax.security.auth.login.Configuration.getConfiguration(); for (Map.Entry<String, ClientSecurityConfiguration> e : clientSecurityConfigurationMap.entrySet()) { AppConfigurationEntry entry = KerberosUtils.keytabEntry( e.getValue().getKeytab(), e.getValue().getPrincipal()); jaasConf.addAppConfigurationEntry(e.getKey(), entry); } break; } } }
public static void install(SecurityConfiguration config, Map<String, ClientSecurityConfiguration> clientSecurityConfigurationMap) throws Exception { SecurityUtils.install(config); // install dynamic JAAS entries for (SecurityModuleFactory factory : config.getSecurityModuleFactories()) { if (factory instanceof JaasModuleFactory) { DynamicConfiguration jaasConf = (DynamicConfiguration) javax.security.auth.login.Configuration.getConfiguration(); for (Map.Entry<String, ClientSecurityConfiguration> e : clientSecurityConfigurationMap.entrySet()) { AppConfigurationEntry entry = KerberosUtils.keytabEntry( e.getValue().getKeytab(), e.getValue().getPrincipal()); jaasConf.addAppConfigurationEntry(e.getKey(), entry); } break; } } }
public static void install(SecurityConfiguration config, Map<String, ClientSecurityConfiguration> clientSecurityConfigurationMap) throws Exception { SecurityUtils.install(config); // install dynamic JAAS entries for (SecurityModuleFactory factory : config.getSecurityModuleFactories()) { if (factory instanceof JaasModuleFactory) { DynamicConfiguration jaasConf = (DynamicConfiguration) javax.security.auth.login.Configuration.getConfiguration(); for (Map.Entry<String, ClientSecurityConfiguration> e : clientSecurityConfigurationMap.entrySet()) { AppConfigurationEntry entry = KerberosUtils.keytabEntry( e.getValue().getKeytab(), e.getValue().getPrincipal()); jaasConf.addAppConfigurationEntry(e.getKey(), entry); } break; } } }