protected void processKdcOptions() { // By default enforce these flags kdcOptions.setFlag(KdcOption.FORWARDABLE); kdcOptions.setFlag(KdcOption.PROXIABLE); kdcOptions.setFlag(KdcOption.RENEWABLE_OK); for (KOption kOpt: requestOptions.getOptions()) { if (kOpt.getOptionInfo().getGroup() == KrbOptionGroup.KDC_FLAGS) { KrbKdcOption krbKdcOption = (KrbKdcOption) kOpt; boolean flagValue = requestOptions.getBooleanOption(kOpt, true); if (kOpt.equals(KrbKdcOption.NOT_FORWARDABLE)) { krbKdcOption = KrbKdcOption.FORWARDABLE; flagValue = !flagValue; } if (kOpt.equals(KrbKdcOption.NOT_PROXIABLE)) { krbKdcOption = KrbKdcOption.PROXIABLE; flagValue = !flagValue; } KdcOption kdcOption = KdcOption.valueOf(krbKdcOption.name()); kdcOptions.setFlag(kdcOption, flagValue); } } } }
protected void processKdcOptions() { // By default enforce these flags kdcOptions.setFlag(KdcOption.FORWARDABLE); kdcOptions.setFlag(KdcOption.PROXIABLE); kdcOptions.setFlag(KdcOption.RENEWABLE_OK); for (KOption kOpt: requestOptions.getOptions()) { if (kOpt.getOptionInfo().getGroup() == KrbOptionGroup.KDC_FLAGS) { KrbKdcOption krbKdcOption = (KrbKdcOption) kOpt; boolean flagValue = requestOptions.getBooleanOption(kOpt, true); if (kOpt.equals(KrbKdcOption.NOT_FORWARDABLE)) { krbKdcOption = KrbKdcOption.FORWARDABLE; flagValue = !flagValue; } if (kOpt.equals(KrbKdcOption.NOT_PROXIABLE)) { krbKdcOption = KrbKdcOption.PROXIABLE; flagValue = !flagValue; } KdcOption kdcOption = KdcOption.valueOf(krbKdcOption.name()); kdcOptions.setFlag(kdcOption, flagValue); } } } }
@Override public KOptions getPreauthOptions() { KOptions results = new KOptions(); KOptions krbOptions = getRequestOptions(); results.add(krbOptions.getOption(PkinitOption.X509_CERTIFICATE)); results.add(krbOptions.getOption(PkinitOption.X509_ANCHORS)); results.add(krbOptions.getOption(PkinitOption.X509_PRIVATE_KEY)); results.add(krbOptions.getOption(PkinitOption.X509_IDENTITY)); results.add(krbOptions.getOption(PkinitOption.USING_RSA)); if (krbOptions.contains(PkinitOption.USE_ANONYMOUS)) { getKdcOptions().setFlag(KdcOption.REQUEST_ANONYMOUS); } return results; }
@Override public KOptions getPreauthOptions() { KOptions results = new KOptions(); KOptions krbOptions = getRequestOptions(); results.add(krbOptions.getOption(PkinitOption.X509_CERTIFICATE)); results.add(krbOptions.getOption(PkinitOption.X509_ANCHORS)); results.add(krbOptions.getOption(PkinitOption.X509_PRIVATE_KEY)); results.add(krbOptions.getOption(PkinitOption.X509_IDENTITY)); results.add(krbOptions.getOption(PkinitOption.USING_RSA)); if (krbOptions.contains(PkinitOption.USE_ANONYMOUS)) { getKdcOptions().setFlag(KdcOption.REQUEST_ANONYMOUS); } return results; }
kdcOptions.setFlag(KdcOption.RENEWABLE);
kdcOptions.setFlag(KdcOption.RENEWABLE);