Package com.netscape.cms.realm

Class PKILDAPRealm

java.lang.Object
org.apache.catalina.util.LifecycleBase
org.apache.catalina.util.LifecycleMBeanBase
org.apache.catalina.realm.RealmBase
com.netscape.cms.realm.RealmCommon
com.netscape.cms.realm.PKILDAPRealm
All Implemented Interfaces:
MBeanRegistration, org.apache.catalina.Contained, org.apache.catalina.JmxEnabled, org.apache.catalina.Lifecycle, org.apache.catalina.Realm
public class PKILDAPRealm extends RealmCommon
Author:
Endi S. Dewata

  • Nested Class Summary

    Nested classes/interfaces inherited from class org.apache.catalina.realm.RealmBase

    org.apache.catalina.realm.RealmBase.AllRolesMode

    Nested classes/interfaces inherited from interface org.apache.catalina.Lifecycle

    org.apache.catalina.Lifecycle.SingleUse

  • Field Summary

    Fields
    Modifier and Type
    Field
    Description
    protected LDAPAuthenticationConfig
    authConfig
     
    protected LDAPConnectionConfig
    connConfig
     
    protected LdapBoundConnFactory
    connFactory
     
    protected String
    groupsDN
     
    static final org.slf4j.Logger
    logger
     
    protected PKISocketConfig
    socketConfig
     
    protected String
    usersDN
     

    Fields inherited from class com.netscape.cms.realm.RealmCommon

    config

    Fields inherited from class org.apache.catalina.realm.RealmBase

    allRolesMode, container, containerLog, realmPath, sm, stripRealmForGss, support, USER_ATTRIBUTES_DELIMITER, USER_ATTRIBUTES_WILDCARD, userAttributes, userAttributesList, validate, x509UsernameRetriever, x509UsernameRetrieverClassName

    Fields inherited from class org.apache.catalina.util.LifecycleMBeanBase

    mserver

    Fields inherited from interface org.apache.catalina.Lifecycle

    AFTER_DESTROY_EVENT, AFTER_INIT_EVENT, AFTER_START_EVENT, AFTER_STOP_EVENT, BEFORE_DESTROY_EVENT, BEFORE_INIT_EVENT, BEFORE_START_EVENT, BEFORE_STOP_EVENT, CONFIGURE_START_EVENT, CONFIGURE_STOP_EVENT, PERIODIC_EVENT, START_EVENT, STOP_EVENT

  • Constructor Summary

    Constructors
    Constructor
    Description
    PKILDAPRealm()
     

  • Method Summary

    Modifier and Type
    Method
    Description
    Principal
    authenticate(String username, String password)
     
    Principal
    authenticate(X509Certificate[] certChain)
     
    User
    createUser(netscape.ldap.LDAPEntry entry)
     
    User
    findUserByCertID(netscape.ldap.LDAPConnection conn, String certID)
     
    User
    findUserByUsername(netscape.ldap.LDAPConnection conn, String username)
     
    String
    getCertID(X509Certificate cert)
     
    List<String>
    getUserRoles(netscape.ldap.LDAPConnection conn, String userDN)
     
    void
    importLDIFRecord(netscape.ldap.LDAPConnection connection, netscape.ldap.util.LDIFRecord record)
     
    void
    initInternal()
    Initialize RealmCommon object
    void
    stopInternal()
     

    Methods inherited from class com.netscape.cms.realm.RealmCommon

    getConfig, getPassword, getPrincipal, initRealm, setConfig

    Methods inherited from class org.apache.catalina.realm.RealmBase

    addPropertyChangeListener, authenticate, authenticate, authenticate, authenticate, authenticate, backgroundProcess, findSecurityConstraints, getAllRolesMode, getContainer, getCredentialHandler, getDigest, getDigest, getDomainInternal, getObjectNameKeyProperties, getPrincipal, getPrincipal, getPrincipal, getPrincipal, getRealmPath, getRealmSuffix, getRoles, getServer, getTransportGuaranteeRedirectStatus, getUserAttributes, getValidate, getX509UsernameRetrieverClassName, hasMessageDigest, hasResourcePermission, hasRole, hasRoleInternal, hasUserDataPermission, isStripRealmForGss, main, parseUserAttributes, removePropertyChangeListener, setAllRolesMode, setContainer, setCredentialHandler, setRealmPath, setStripRealmForGss, setTransportGuaranteeRedirectStatus, setUserAttributes, setValidate, setX509UsernameRetrieverClassName, startInternal, toString

    Methods inherited from class org.apache.catalina.util.LifecycleMBeanBase

    destroyInternal, getDomain, getObjectName, postDeregister, postRegister, preDeregister, preRegister, register, setDomain, unregister, unregister

    Methods inherited from class org.apache.catalina.util.LifecycleBase

    addLifecycleListener, destroy, findLifecycleListeners, fireLifecycleEvent, getState, getStateName, getThrowOnFailure, init, removeLifecycleListener, setState, setState, setThrowOnFailure, start, stop

    Methods inherited from class java.lang.Object

    clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

    Methods inherited from interface org.apache.catalina.Realm

    isAvailable

  • Field Details

  • Constructor Details

    • PKILDAPRealm

      public PKILDAPRealm()

  • Method Details

    • initInternal

      public void initInternal() throws org.apache.catalina.LifecycleException
      Description copied from class: RealmCommon
      Initialize RealmCommon object
      Overrides:
      initInternal in class RealmCommon
      Throws:
      org.apache.catalina.LifecycleException

    • importLDIFRecord

      public void importLDIFRecord(netscape.ldap.LDAPConnection connection, netscape.ldap.util.LDIFRecord record) throws Exception
      Throws:
      Exception

    • createUser

      public User createUser(netscape.ldap.LDAPEntry entry) throws Exception
      Throws:
      Exception

    • getUserRoles

      public List<String> getUserRoles(netscape.ldap.LDAPConnection conn, String userDN) throws Exception
      Throws:
      Exception

    • findUserByUsername

      public User findUserByUsername(netscape.ldap.LDAPConnection conn, String username) throws Exception
      Throws:
      Exception

    • getCertID

      public String getCertID(X509Certificate cert)

    • findUserByCertID

      public User findUserByCertID(netscape.ldap.LDAPConnection conn, String certID) throws Exception
      Throws:
      Exception

    • authenticate

      public Principal authenticate(String username, String password)
      Specified by:
      authenticate in interface org.apache.catalina.Realm
      Overrides:
      authenticate in class RealmCommon

    • authenticate

      public Principal authenticate(X509Certificate[] certChain)
      Specified by:
      authenticate in interface org.apache.catalina.Realm
      Overrides:
      authenticate in class RealmCommon

    • stopInternal

      public void stopInternal() throws org.apache.catalina.LifecycleException
      Overrides:
      stopInternal in class RealmCommon
      Throws:
      org.apache.catalina.LifecycleException