Krb5Util

extends Object

java.lang.Object
↳	sun.security.jgss.krb5.Krb5Util

Class Overview

Utilities for obtaining and converting Kerberos tickets.

Summary

Public Methods
static KerberosTicket	credsToTicket(Credentials serviceCreds)
static KerberosKey[]	getKeys(int caller, String serverPrincipal, AccessControlContext acc) Retrieves the keys for the specified server principal from the Subject in the specified AccessControlContext.
static Subject	getSubject(int caller, AccessControlContext acc) Retrieves the caller's Subject, or Subject obtained by logging in via the specified caller.
static KerberosTicket	getTicketFromSubjectAndTgs(int caller, String clientPrincipal, String serverPrincipal, String tgsPrincipal, AccessControlContext acc) Retrieve the service ticket for serverPrincipal from caller's Subject or from Subject obtained by logging in, or if not found, via the Ticket Granting Service using the TGT obtained from the Subject.
static Credentials	ticketToCreds(KerberosTicket kerbTicket)

[Expand]

Inherited Methods

From class java.lang.Object

Object	clone() Creates and returns a copy of this object.
boolean	equals(Object obj) Indicates whether some other object is "equal to" this one.
void	finalize() Called by the garbage collector on an object when garbage collection determines that there are no more references to the object.
final Class<?>	getClass() Returns the runtime class of this `Object`.
int	hashCode() Returns a hash code value for the object.
final void	notify() Wakes up a single thread that is waiting on this object's monitor.
final void	notifyAll() Wakes up all threads that are waiting on this object's monitor.
String	toString() Returns a string representation of the object.
final void	wait() Causes the current thread to wait until another thread invokes the `notify()` method or the `notifyAll()` method for this object.
final void	wait(long timeout, int nanos) Causes the current thread to wait until another thread invokes the `notify()` method or the `notifyAll()` method for this object, or some other thread interrupts the current thread, or a certain amount of real time has elapsed.
final void	wait(long timeout) Causes the current thread to wait until either another thread invokes the `notify()` method or the `notifyAll()` method for this object, or a specified amount of time has elapsed.

Public Methods

public static KerberosTicket credsToTicket (Credentials serviceCreds)

public static KerberosKey[] getKeys (int caller, String serverPrincipal, AccessControlContext acc)

Retrieves the keys for the specified server principal from the Subject in the specified AccessControlContext. If the ticket can not be found in the Subject, and if useSubjectCredsOnly is false, then obtain keys from a LoginContext. NOTE: This method is used by JSSE Kerberos Cipher Suites

Throws

LoginException

public static Subject getSubject (int caller, AccessControlContext acc)

Retrieves the caller's Subject, or Subject obtained by logging in via the specified caller. Caller must have permission to: - access the Subject - create LoginContext - read the auth.login.defaultCallbackHandler security property NOTE: This method is used by JSSE Kerberos Cipher Suites

Throws

LoginException

public static KerberosTicket getTicketFromSubjectAndTgs (int caller, String clientPrincipal, String serverPrincipal, String tgsPrincipal, AccessControlContext acc)

Retrieve the service ticket for serverPrincipal from caller's Subject or from Subject obtained by logging in, or if not found, via the Ticket Granting Service using the TGT obtained from the Subject. Caller must have permission to: - access and update Subject's private credentials - create LoginContext - read the auth.login.defaultCallbackHandler security property NOTE: This method is used by JSSE Kerberos Cipher Suites

Throws

IOException
KrbException
LoginException

public static Credentials ticketToCreds (KerberosTicket kerbTicket)

Throws

IOException
KrbException

Classes

Krb5Util

Class Overview

Summary

Public Methods

public static KerberosTicket credsToTicket (Credentials serviceCreds)

public static KerberosKey[] getKeys (int caller, String serverPrincipal, AccessControlContext acc)

Throws

public static Subject getSubject (int caller, AccessControlContext acc)

Throws

public static KerberosTicket getTicketFromSubjectAndTgs (int caller, String clientPrincipal, String serverPrincipal, String tgsPrincipal, AccessControlContext acc)

Throws

public static Credentials ticketToCreds (KerberosTicket kerbTicket)

Throws