|
All LDAP Classes Internal LDAP Classes |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object | +--com.novell.sasl.Sasl
A static class for creating SASL clients and servers. It transparently locates and uses any available SaslClientFactory/SaslServerFactory instances.
Currently, only the client methods are available.
Field Summary | |
private static SaslClientFactory |
cFactory
|
static java.lang.String |
CLIENTPKGS
The name of the property that specifies the SaslClientFactorys to use. |
static java.lang.String |
MAX_BUFFER
The name of a property that specifies the maximum size of the receive buffer in bytes of SaslClient or SaslServer. |
static java.lang.String |
POLICY_FORWARD_SECRECY
The name of a property that specifies if mechanisms that implement forward secrecy between sessions are required or not The property can contain following values: true - If such mechansims are required false - If such mechanisms not required Absence of the property is interpreted as "false". |
static java.lang.String |
POLICY_NOACTIVE
The name of a property that specifies if mechanisms susceptible to active (non-dictionary) attacks are permitted or not. |
static java.lang.String |
POLICY_NOANONYMOUS
The name of a property that specifies if mechanisms that accept anonymous login are permitted or not. |
static java.lang.String |
POLICY_NODICTIONARY
The name of a property that specifies if mechanisms susceptible to passive dictionary attacks are permitted or not. |
static java.lang.String |
POLICY_NOPLAINTEXT
The name of a property that specifies if mechanisms susceptible to simple plain passive attacks are permitted or not The property can contain following values: true - If such mechansims are not permitted false - If such mechanisms are permitted Absence of the property is interpreted as "false". |
static java.lang.String |
POLICY_PASS_CREDENTIALS
The name of a property that specifies if mechanisms that pass client credentials are required or not The property can contain following values: true - If such mechansims are required false - If such mechanisms are not required Absence of the property is interpreted as "false". |
static java.lang.String |
QOP
The name of a property that specifies the quality-of-protection to use. |
static java.lang.String |
RAW_SEND_SIZE
The name of a property that specifies the maximum size of the raw send buffer in bytes of SaslClient/SaslServer. |
static java.lang.String |
SERVER_AUTH
The name of a property that specifies whether the server must authenticate to the client. |
static java.lang.String |
STRENGTH
The name of a property that specifies the cipher strength to use. |
Constructor Summary | |
private |
Sasl()
|
Method Summary | |
static SaslClient |
createSaslClient(java.lang.String[] mechanisms,
java.lang.String authorizationId,
java.lang.String protocol,
java.lang.String serverName,
java.util.Map props,
javax.security.auth.callback.CallbackHandler cbh)
Creates a SaslClient using the parameters supplied. |
static java.util.Enumeration |
getSaslClientFactories(java.util.Map props)
Gets an enumeration of known factories for producing SaslClient. |
static void |
setSaslClientFactory(SaslClientFactory fac)
Sets the default SaslClientFactory to use. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
private static SaslClientFactory cFactory
public static final java.lang.String CLIENTPKGS
public static final java.lang.String QOP
public static final java.lang.String STRENGTH
public static final java.lang.String SERVER_AUTH
public static final java.lang.String MAX_BUFFER
public static final java.lang.String RAW_SEND_SIZE
public static final java.lang.String POLICY_NOPLAINTEXT
public static final java.lang.String POLICY_NOACTIVE
public static final java.lang.String POLICY_NODICTIONARY
public static final java.lang.String POLICY_NOANONYMOUS
public static final java.lang.String POLICY_FORWARD_SECRECY
public static final java.lang.String POLICY_PASS_CREDENTIALS
Constructor Detail |
private Sasl()
Method Detail |
public static SaslClient createSaslClient(java.lang.String[] mechanisms, java.lang.String authorizationId, java.lang.String protocol, java.lang.String serverName, java.util.Map props, javax.security.auth.callback.CallbackHandler cbh) throws SaslException
mechanisms
- The non-null list of mechanism names to try.Each
is the IANA-registered name of a SASL mechanism. (e.g. "Digest-MD5",
"NMAS_LOGIN").authorizationId
- The possibly null protocol-dependent
identification to be used for authorization.When the SASL authentication
completes successfully,the specified entity is granted access.protocol
- The non-null string name of the protocol for
which the authentication is being performed (e.g., "LDAP").serverName
- The non-null fully qualified host name of the
server to authenticate to.props
- The possibly null set of properties used to
select the SASL mechanisms and to configure the authentication exchange
of teh selected mechanism. For example, "if props includes the
Sasl.POLICY_NOPLAINTEXT property with the value "true", then the selected
SASL mechanism must not be susceptible to simple plain passive attacks.cbh
- The possibly null callback handler to used by
the SASL mechanisms to get further information from the application/
library to complete the authentication. For example, a SASL mechanism
might require the authentication ID and password from the caller.The
authentication ID is requested by using a NameCallback. The password is
requested by using a PasswordCallback. The realm is requested by using
a RealmChoiceCallback if there is a list of realms to choose from, and
by using a RealmCallback if the realm must be entered.
SaslException
- if it cannot create a SaslClient because
of an error.public static java.util.Enumeration getSaslClientFactories(java.util.Map props)
This method uses the same sources for locating factories as createSaslClient().
props
- A possibly null set of properties that may contain policy
properties and the property CLIENTPKGS("javax.security.sasl.client.pkgs")
for specifying a list of SaslClientFactory implementation package names.
public static void setSaslClientFactory(SaslClientFactory fac)
This method sets fac to be the default factory. It can only be called with a non-null value once per VM.
java.lang.IllegalStateException
- If a factory has been set already
|
All LDAP Classes Internal LDAP Classes |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |