Package org.apache.catalina.authenticator

Class SpnegoAuthenticator

  • All Implemented Interfaces:
    RegistrationListener, javax.management.MBeanRegistration, Authenticator, Contained, JmxEnabled, Lifecycle, Valve
    public class SpnegoAuthenticator
extends AuthenticatorBase
    A SPNEGO authenticator that uses the SPNEGO/Kerberos support built in to Java 6. Successful Kerberos authentication depends on the correct configuration of multiple components. If the configuration is invalid, the error messages are often cryptic although a Google search will usually point you in the right direction.

    • Constructor Detail

      • SpnegoAuthenticator

        public SpnegoAuthenticator()

    • Method Detail

      • getLoginConfigName

        public java.lang.String getLoginConfigName()

      • setLoginConfigName

        public void setLoginConfigName​(java.lang.String loginConfigName)

      • isStoreDelegatedCredential

        public boolean isStoreDelegatedCredential()

      • setStoreDelegatedCredential

        public void setStoreDelegatedCredential​(boolean storeDelegatedCredential)

      • getNoKeepAliveUserAgents

        public java.lang.String getNoKeepAliveUserAgents()

      • setNoKeepAliveUserAgents

        public void setNoKeepAliveUserAgents​(java.lang.String noKeepAliveUserAgents)

      • getApplyJava8u40Fix

        @Deprecated
public boolean getApplyJava8u40Fix()
        Deprecated.
        This method will be removed from Tomcat 12 onwards.
        This attribute is now hard-coded to false as the work-around this attribute enabled is no longer required.
        Returns:
        Always false

      • setApplyJava8u40Fix

        @Deprecated
public void setApplyJava8u40Fix​(boolean applyJava8u40Fix)
        Deprecated.
        This method will be removed from Tomcat 12 onwards.
        This method is now a NO-OP as the work-around this attribute enabled is no longer required.
        Parameters:
        applyJava8u40Fix - Ignored

      • getAuthMethod

        protected java.lang.String getAuthMethod()
        Description copied from class: AuthenticatorBase
        Return the authentication method, which is vendor-specific and not defined by HttpServletRequest.
        Specified by:
        getAuthMethod in class AuthenticatorBase
        Returns:
        the authentication method, which is vendor-specific and not defined by HttpServletRequest.

      • doAuthenticate

        protected boolean doAuthenticate​(Request request,
                                 HttpServletResponse response)
                          throws java.io.IOException
        Description copied from class: AuthenticatorBase
        Provided for subclasses to implement their specific authentication mechanism.
        Specified by:
        doAuthenticate in class AuthenticatorBase
        Parameters:
        request - The request that triggered the authentication
        response - The response associated with the request
        Returns:
        true if the user was authenticated, otherwise false, in which case an authentication challenge will have been written to the response
        Throws:
        java.io.IOException - If an I/O problem occurred during the authentication process

      • isPreemptiveAuthPossible

        protected boolean isPreemptiveAuthPossible​(Request request)
        Description copied from class: AuthenticatorBase
        Can the authenticator perform preemptive authentication for the given request?
        Overrides:
        isPreemptiveAuthPossible in class AuthenticatorBase
        Parameters:
        request - The request to check for credentials
        Returns:
        true if preemptive authentication is possible, otherwise false