/** * Get request realm. * @param kdcReq kdc request * @return realm */ private String getRequestRealm(KdcReq kdcReq) { String realm = kdcReq.getReqBody().getRealm(); if (realm == null && kdcReq.getReqBody().getCname() != null) { realm = kdcReq.getReqBody().getCname().getRealm(); } return realm; } }
/** * Get request realm. * @param kdcReq kdc request * @return realm */ private String getRequestRealm(KdcReq kdcReq) { String realm = kdcReq.getReqBody().getRealm(); if (realm == null && kdcReq.getReqBody().getCname() != null) { realm = kdcReq.getReqBody().getCname().getRealm(); } return realm; } }
/** * Check server. * * @throws org.apache.kerby.kerberos.kerb.KrbException e */ private void checkServer() throws KrbException { KdcReq request = getKdcReq(); PrincipalName principal = request.getReqBody().getSname(); String serverRealm = request.getReqBody().getRealm(); if (serverRealm == null || serverRealm.isEmpty()) { LOG.info("Can't get the server realm from request, and try to get from kdcContext."); serverRealm = kdcContext.getKdcRealm(); } principal.setRealm(serverRealm); KrbIdentity serverEntry = getEntry(principal.getName()); if (serverEntry == null) { LOG.error("Principal: " + principal.getName() + " is not known"); throw new KrbException(KrbErrorCode.KDC_ERR_S_PRINCIPAL_UNKNOWN); } setServerEntry(serverEntry); for (EncryptionType encType : request.getReqBody().getEtypes()) { if (serverEntry.getKeys().containsKey(encType)) { EncryptionKey serverKey = serverEntry.getKeys().get(encType); setServerKey(serverKey); break; } } }
/** * Check server. * * @throws org.apache.kerby.kerberos.kerb.KrbException e */ private void checkServer() throws KrbException { KdcReq request = getKdcReq(); PrincipalName principal = request.getReqBody().getSname(); String serverRealm = request.getReqBody().getRealm(); if (serverRealm == null || serverRealm.isEmpty()) { LOG.info("Can't get the server realm from request, and try to get from kdcContext."); serverRealm = kdcContext.getKdcRealm(); } principal.setRealm(serverRealm); KrbIdentity serverEntry = getEntry(principal.getName()); if (serverEntry == null) { LOG.error("Principal: " + principal.getName() + " is not known"); throw new KrbException(KrbErrorCode.KDC_ERR_S_PRINCIPAL_UNKNOWN); } setServerEntry(serverEntry); for (EncryptionType encType : request.getReqBody().getEtypes()) { if (serverEntry.getKeys().containsKey(encType)) { EncryptionKey serverKey = serverEntry.getKeys().get(encType); setServerKey(serverKey); break; } } }
public Ticket issueTicket() throws KrbException { KdcReq request = kdcRequest.getKdcReq(); Ticket issuedTicket = new Ticket(); PrincipalName serverPrincipal = getServerPrincipal(); issuedTicket.setSname(serverPrincipal); String serverRealm = request.getReqBody().getRealm(); issuedTicket.setRealm(serverRealm); EncTicketPart encTicketPart = makeEncTicketPart(); EncryptionKey encryptionKey = getTicketEncryptionKey(); EncryptedData encryptedData = EncryptionUtil.seal(encTicketPart, encryptionKey, KeyUsage.KDC_REP_TICKET); issuedTicket.setEncryptedEncPart(encryptedData); issuedTicket.setEncPart(encTicketPart); return issuedTicket; }
public Ticket issueTicket() throws KrbException { KdcReq request = kdcRequest.getKdcReq(); Ticket issuedTicket = new Ticket(); PrincipalName serverPrincipal = getServerPrincipal(); issuedTicket.setSname(serverPrincipal); String serverRealm = request.getReqBody().getRealm(); issuedTicket.setRealm(serverRealm); EncTicketPart encTicketPart = makeEncTicketPart(); EncryptionKey encryptionKey = getTicketEncryptionKey(); EncryptedData encryptedData = EncryptionUtil.seal(encTicketPart, encryptionKey, KeyUsage.KDC_REP_TICKET); issuedTicket.setEncryptedEncPart(encryptedData); issuedTicket.setEncPart(encTicketPart); return issuedTicket; }
throw new KrbException(KrbErrorCode.KDC_ERR_C_PRINCIPAL_UNKNOWN); String clientRealm = request.getReqBody().getRealm(); if (clientRealm == null || clientRealm.isEmpty()) { clientRealm = getKdcContext().getKdcRealm();
throw new KrbException(KrbErrorCode.KDC_ERR_C_PRINCIPAL_UNKNOWN); String clientRealm = request.getReqBody().getRealm(); if (clientRealm == null || clientRealm.isEmpty()) { clientRealm = getKdcContext().getKdcRealm();
} else { PrincipalName serverPrincipal = kdcRequest.getKdcReq().getReqBody().getSname(); serverPrincipal.setRealm(kdcRequest.getKdcReq().getReqBody().getRealm()); krbError.setSname(serverPrincipal);
} else { PrincipalName serverPrincipal = kdcRequest.getKdcReq().getReqBody().getSname(); serverPrincipal.setRealm(kdcRequest.getKdcReq().getReqBody().getRealm()); krbError.setSname(serverPrincipal);
String clientRealm = asReq.getReqBody().getRealm(); if (clientRealm == null || clientRealm.isEmpty()) { clientRealm = getKdcContext().getKdcRealm(); } else { PrincipalName serverPrincipal = kdcRequest.getKdcReq().getReqBody().getSname(); serverPrincipal.setRealm(kdcRequest.getKdcReq().getReqBody().getRealm()); krbError.setSname(serverPrincipal);
String clientRealm = asReq.getReqBody().getRealm(); if (clientRealm == null || clientRealm.isEmpty()) { clientRealm = getKdcContext().getKdcRealm(); } else { PrincipalName serverPrincipal = kdcRequest.getKdcReq().getReqBody().getSname(); serverPrincipal.setRealm(kdcRequest.getKdcReq().getReqBody().getRealm()); krbError.setSname(serverPrincipal);
serverPrincipal.setRealm(kdcRequest.getKdcReq().getReqBody().getRealm()); kdcRequest.setServerPrincipal(serverPrincipal); if (audiences == null || !audiences.contains(serverPrincipal.getName())) {
serverPrincipal.setRealm(kdcRequest.getKdcReq().getReqBody().getRealm()); kdcRequest.setServerPrincipal(serverPrincipal); if (audiences == null || !audiences.contains(serverPrincipal.getName())) {
encTicketPart.setCrealm(clientPrincipal.getRealm()); } else { encTicketPart.setCrealm(request.getReqBody().getRealm());
encTicketPart.setCrealm(clientPrincipal.getRealm()); } else { encTicketPart.setCrealm(request.getReqBody().getRealm());