com.ibm.security.auth.module

Class NTLoginModule2000

  1. java.lang.Object
  2. extended bycom.ibm.security.auth.module.NTLoginModule2000
All implemented interfaces:
LoginModule

  1. public class NTLoginModule2000
  2. extends java.lang.Object
  3. implements LoginModule

This LoginModule renders a user's NT security information as some number of Principals and associates them with a Subject.

This LoginModule recognizes the debug option. If set to true in the login Configuration, debug messages will be output to the output stream, System.out.

This LoginModule also recognizes the debugNative option. If set to true in the login Configuration, debug messages from the native component of the module will be output to the output stream, System.out.

This class will be replaced by NTLoginModule2000 in future releases of JAAS.

See Also:
LoginModule

Constructor Summary

Constructor and Description
NTLoginModule2000()

Method Summary

Modifier and Type Method and Description
  1. boolean
abort()
This method is called if the LoginContext's overall authentication failed.
  1. boolean
commit()
This method is called if the LoginContext's overall authentication succeeded (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules succeeded).
  1. void
initialize(Subject subject,CallbackHandler callbackHandler,java.util.Map<java.lang.String,?> sharedState,java.util.Map<java.lang.String,?> options)
Initialize this LoginModule.
  1. boolean
login()
Import underlying NT system identity information.
  1. boolean
logout()
Logout the user.
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

NTLoginModule2000

  1. public NTLoginModule2000()

Method Detail

initialize

  1. public void initialize(Subject subject,
  2. CallbackHandler callbackHandler,
  3. java.util.Map<java.lang.String,?> sharedState,
  4. java.util.Map<java.lang.String,?> options)
Initialize this LoginModule.

Specified by:
initialize in interface LoginModule
Parameters:
subject - the Subject to be authenticated.

callbackHandler - a CallbackHandler for communicating with the end user (prompting for usernames and passwords, for example). This particular LoginModule only extracts the underlying NT system information, so this parameter is ignored.

sharedState - shared LoginModule state.

options - options specified in the login Configuration for this particular LoginModule.

login

  1. public boolean login()
  2. throws LoginException
Import underlying NT system identity information.

Specified by:
login in interface LoginModule
Returns:
true in all cases since this LoginModule should not be ignored.
Throws:
FailedLoginException - if the authentication fails.

LoginException - if this LoginModule is unable to perform the authentication.

commit

  1. public boolean commit()
  2. throws LoginException

This method is called if the LoginContext's overall authentication succeeded (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules succeeded).

If this LoginModule's own authentication attempt succeeded (checked by retrieving the private state saved by the login method), then this method associates some number of various Principals with the Subject located in the LoginModuleContext. If this LoginModule's own authentication attempted failed, then this method removes any state that was originally saved.

Specified by:
commit in interface LoginModule
Returns:
true if this LoginModule's own login and commit attempts succeeded, or false otherwise.
Throws:
LoginException - if the commit fails.

abort

  1. public boolean abort()
  2. throws LoginException

This method is called if the LoginContext's overall authentication failed. (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules did not succeed).

If this LoginModule's own authentication attempt succeeded (checked by retrieving the private state saved by the login and commit methods), then this method cleans up any state that was originally saved.

Specified by:
abort in interface LoginModule
Returns:
false if this LoginModule's own login and/or commit attempts failed, and true otherwise.
Throws:
LoginException - if the abort fails.

logout

  1. public boolean logout()
  2. throws LoginException
Logout the user.

This method removes the UsernamePrincipal, DomainPrincipal, UserIDPrincipal, DomainIDPrincipal, GroupIDPrincipals, and PrimaryGroupIDPrincipal that may have been added by the commit method.

Specified by:
logout in interface LoginModule
Returns:
true in all cases since this LoginModule should not be ignored.
Throws:
LoginException - if the logout fails.