com.ibm.security.krb5

Class KrbApReq

  1. java.lang.Object
  2. extended bycom.ibm.security.krb5.KrbApReq

  1. public class KrbApReq
  2. extends java.lang.Object
This class encapsulates a KRB-AP-REQ that a client sends to a server for authentication.

Constructor Summary

Constructor and Description
KrbApReq(APOptions options,Credentials tgs_creds,Checksum cksum,EncryptionKey subKey,SeqNumber seqNumber,AuthorizationData authorizationData)
KrbApReq(APOptions apOptions,Ticket ticket,EncryptionKey key,Realm crealm,PrincipalName cname,Checksum cksum,KerberosTime ctime,EncryptionKey subKey,SeqNumber seqNumber,AuthorizationData authorizationData)
KrbApReq(byte[] request,Credentials serviceCreds,HostAddress sender)
KrbApReq(byte[] message,EncryptionKey key)
Contructs a AP-REQ message from the bytes received from the peer.
KrbApReq(Credentials tgsCred,boolean mutualRequired,boolean useSubKey,boolean useSeqNumber)
Contructs a AP-REQ message to send to the peer.
KrbApReq(Credentials tgsCred,boolean mutualRequired,boolean useSubKey,boolean useSeqNumber,Checksum cksum)
Contructs a AP-REQ message to send to the peer.
KrbApReq(com.ibm.security.util.DerValue value,EncryptionKey key)
Contructs a AP-REQ message from the bytes received from the peer.

Method Summary

Modifier and Type Method and Description
  1. Checksum
getChecksum()
Returns the optional Checksum stored in the Authenticator for this message.
  1. PrincipalName
getClient()
Returns the principal name of the client that generated this message.
  1. Credentials
getCreds()
Returns the credentials that are contained in the ticket that is part of this this AP-REP.
  1. EncTicketPart
getEncTicketPart()
  1. byte[]
getMessage()
Returns the ASN.1 encoding that should be sent to the peer.
  1. boolean
getMutualAuthRequired()
Returns true if mutual authentication is required and hence an AP-REP will need to be generated.
  1. java.lang.Integer
getSeqNumber()
Returns the optional sequence number stored in the Authenticator for this message.
  1. EncryptionKey
getSubKey()
Returns the optional subkey stored in the Authenticator for this message.
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

KrbApReq

  1. public KrbApReq(Credentials tgsCred,
  2. boolean mutualRequired,
  3. boolean useSubKey,
  4. boolean useSeqNumber)
  5. throws Asn1Exception
  6. KrbCryptoException
  7. KrbException
  8. java.io.IOException
Contructs a AP-REQ message to send to the peer.
Parameters:
tgsCred -
mutualRequired - DOCUMENT ME!
useSubKey - DOCUMENT ME!
useSeqNumber - DOCUMENT ME!
Throws:
//TBD
java.io.IOException

KrbApReq

  1. public KrbApReq(Credentials tgsCred,
  2. boolean mutualRequired,
  3. boolean useSubKey,
  4. boolean useSeqNumber,
  5. Checksum cksum)
  6. throws Asn1Exception
  7. KrbCryptoException
  8. KrbException
  9. java.io.IOException
Contructs a AP-REQ message to send to the peer.
Parameters:
tgsCred - the Credentials to be used to construct the AP Request protocol message.
mutualRequired - Whether mutual authentication is required
useSubKey - Whether the subkey is to be used to protect this specific application session. If this is not set then the session key from the ticket will be used.
cksum - checksum of the the application data that accompanies the KRB_AP_REQ.
Throws:
KrbException - for any Kerberos protocol specific error
java.io.IOException - for any IO related errors (e.g. socket operations)

KrbApReq

  1. public KrbApReq(byte[] message,
  2. EncryptionKey key)
  3. throws KrbException
  4. java.io.IOException
Contructs a AP-REQ message from the bytes received from the peer.
Parameters:
message - The message received from the peer
key - EncrtyptionKey to decrypt the message
Throws:
KrbException - for any Kerberos protocol specific error
java.io.IOException - for any IO related errors (e.g. socket operations)

KrbApReq

  1. public KrbApReq(com.ibm.security.util.DerValue value,
  2. EncryptionKey key)
  3. throws KrbException
  4. java.io.IOException
Contructs a AP-REQ message from the bytes received from the peer.
Parameters:
value - The DerValue that contains the DER enoded AP-REQ protocol message
key - EncrtyptionKey to decrypt the message
Throws:
KrbException - for any Kerberos protocol specific error
java.io.IOException - for any IO related errors (e.g. socket operations)

KrbApReq

  1. public KrbApReq(APOptions options,
  2. Credentials tgs_creds,
  3. Checksum cksum,
  4. EncryptionKey subKey,
  5. SeqNumber seqNumber,
  6. AuthorizationData authorizationData)
  7. throws KrbException
  8. java.io.IOException
Throws:
java.io.IOException

KrbApReq

  1. public KrbApReq(APOptions apOptions,
  2. Ticket ticket,
  3. EncryptionKey key,
  4. Realm crealm,
  5. PrincipalName cname,
  6. Checksum cksum,
  7. KerberosTime ctime,
  8. EncryptionKey subKey,
  9. SeqNumber seqNumber,
  10. AuthorizationData authorizationData)
  11. throws Asn1Exception
  12. java.io.IOException
  13. KdcErrException
  14. KrbCryptoException
Throws:
java.io.IOException

KrbApReq

  1. public KrbApReq(byte[] request,
  2. Credentials serviceCreds,
  3. HostAddress sender)
  4. throws KrbException
  5. java.io.IOException
Throws:
java.io.IOException

Method Detail

getCreds

  1. public Credentials getCreds()
Returns the credentials that are contained in the ticket that is part of this this AP-REP.
Returns:
DOCUMENT ME!

getMutualAuthRequired

  1. public boolean getMutualAuthRequired( )
  2. throws KrbException
  3. java.io.IOException
Returns true if mutual authentication is required and hence an AP-REP will need to be generated.
Returns:
DOCUMENT ME!
Throws:
//TBD
java.io.IOException

getSubKey

  1. public EncryptionKey getSubKey( )
Returns the optional subkey stored in the Authenticator for this message. Returns null if none is stored.
Returns:
DOCUMENT ME!

getSeqNumber

  1. public java.lang.Integer getSeqNumber( )
Returns the optional sequence number stored in the Authenticator for this message. Returns null if none is stored.
Returns:
DOCUMENT ME!

getChecksum

  1. public Checksum getChecksum()
Returns the optional Checksum stored in the Authenticator for this message. Returns null if none is stored.
Returns:
DOCUMENT ME!

getMessage

  1. public byte[] getMessage()
Returns the ASN.1 encoding that should be sent to the peer.
Returns:
DOCUMENT ME!

getClient

  1. public PrincipalName getClient( )
Returns the principal name of the client that generated this message.
Returns:
DOCUMENT ME!

getEncTicketPart

  1. public EncTicketPart getEncTicketPart( )