A B C D E F G H I J K L M N O R S T U V W
A
- abort() - Method in class com.ibm.security.auth.module.Krb5LoginModule
-
Abort the login
- ACCEPT_ONLY - Static variable in interface org.ietf.jgss.GSSCredential
-
Credential usage flag requesting that it be able to be used for context acceptance only.
- acceptSecContext(byte[], int, int) - Method in interface org.ietf.jgss.GSSContext
-
Accepts a context token received from a context initiator.
- acceptSecContext(InputStream, OutputStream) - Method in interface org.ietf.jgss.GSSContext
-
Accepts a context token received from a context initiator.
- add(GSSName, int, int, Oid, int) - Method in interface org.ietf.jgss.GSSCredential
-
Adds a mechanism specific credential-element to an existing credential.
- addProviderAtEnd(Provider, Oid) - Method in class org.ietf.jgss.GSSManager
-
This method is used to indicate to the GSSManager that the application would like a particular provider to be used if no other provider can be found that supports the given mechanism.
- addProviderAtFront(Provider, Oid) - Method in class org.ietf.jgss.GSSManager
-
This method is used to indicate to the GSSManager that the application would like a particular provider to be used ahead of all others when support is desired for the given mechanism.
B
- BAD_BINDINGS - Static variable in exception org.ietf.jgss.GSSException
-
Channel bindings mismatch error.
- BAD_MECH - Static variable in exception org.ietf.jgss.GSSException
-
Unsupported mechanism requested error.
- BAD_MIC - Static variable in exception org.ietf.jgss.GSSException
-
Token had invalid integrity check error.
- BAD_NAME - Static variable in exception org.ietf.jgss.GSSException
-
Invalid name provided error.
- BAD_NAMETYPE - Static variable in exception org.ietf.jgss.GSSException
-
Name of unsupported type provided error.
- BAD_QOP - Static variable in exception org.ietf.jgss.GSSException
-
Unsupported QOP value error.
- BAD_STATUS - Static variable in exception org.ietf.jgss.GSSException
-
Invalid status code error - this is the default status value.
C
- canonicalize(Oid) - Method in interface org.ietf.jgss.GSSName
-
Creates a mechanism name (MN) from an arbitrary internal name.
- ChannelBinding - Class in org.ietf.jgss
-
The GSS-API accommodates the concept of caller-provided channel binding information.
- ChannelBinding(InetAddress, InetAddress, byte[]) - Constructor for class org.ietf.jgss.ChannelBinding
-
Create a ChannelBinding object with user supplied address information and data.
- ChannelBinding(byte[]) - Constructor for class org.ietf.jgss.ChannelBinding
-
Creates a ChannelBinding object without any addressing information.
- com.ibm.security.auth.callback - package com.ibm.security.auth.callback
- com.ibm.security.auth.module - package com.ibm.security.auth.module
- com.ibm.security.krb5.internal.tools - package com.ibm.security.krb5.internal.tools
- commit() - Method in class com.ibm.security.auth.module.Krb5LoginModule
-
commit the login for user
- containedIn(Oid[]) - Method in class org.ietf.jgss.Oid
-
A utility method to test if this Oid value is contained within the supplied Oid array.
- CONTEXT_EXPIRED - Static variable in exception org.ietf.jgss.GSSException
-
Specified security context expired error.
- createContext(GSSName, Oid, GSSCredential, int) - Method in class org.ietf.jgss.GSSManager
-
Factory method for creating a context on the initiator's side.
- createContext(GSSCredential) - Method in class org.ietf.jgss.GSSManager
-
Factory method for creating a context on the acceptor' side.
- createContext(byte[]) - Method in class org.ietf.jgss.GSSManager
-
Factory method for creating a previously exported context.
- createCredential(int) - Method in class org.ietf.jgss.GSSManager
-
Factory method for acquiring default credentials.
- createCredential(GSSName, int, Oid, int) - Method in class org.ietf.jgss.GSSManager
-
Factory method for acquiring a single mechanism credential.
- createCredential(GSSName, int, Oid[], int) - Method in class org.ietf.jgss.GSSManager
-
Factory method for acquiring credentials over a set of mechanisms.
- createName(String, Oid) - Method in class org.ietf.jgss.GSSManager
-
Factory method to convert a contiguous string name from the specified namespace to an GSSName object.
- createName(byte[], Oid) - Method in class org.ietf.jgss.GSSManager
-
Factory method to convert a contiguous byte array containing a name from the specified namespace to an GSSName object.
- createName(String, Oid, Oid) - Method in class org.ietf.jgss.GSSManager
-
Factory method to convert a contiguous string name from the specified namespace to an GSSName object that is a mechanism name (MN).
- createName(byte[], Oid, Oid) - Method in class org.ietf.jgss.GSSManager
-
Factory method to convert a contiguous byte array containing a name from the specified namespace to an GSSName object that is an MN.
- CREDENTIALS_EXPIRED - Static variable in exception org.ietf.jgss.GSSException
-
Expired credentials detected error.
D
- DEFAULT_LIFETIME - Static variable in interface org.ietf.jgss.GSSContext
-
A lifetime constant representing the default context lifetime.
- DEFAULT_LIFETIME - Static variable in interface org.ietf.jgss.GSSCredential
-
A lifetime constant representing the default credential lifetime.
- DEFECTIVE_CREDENTIAL - Static variable in exception org.ietf.jgss.GSSException
-
Defective credential error.
- DEFECTIVE_TOKEN - Static variable in exception org.ietf.jgss.GSSException
-
Defective token error.
- DelegationPermission - Class in javax.security.auth.kerberos
-
This class is used to restrict the usage of the Kerberos delegation model, ie: forwardable and proxiable tickets.
- DelegationPermission(String) - Constructor for class javax.security.auth.kerberos.DelegationPermission
-
Create a new
DelegationPermission
with the specified subordinate and target principals. - DelegationPermission(String, String) - Constructor for class javax.security.auth.kerberos.DelegationPermission
-
Create a new
DelegationPermission
with the specified subordinate and target principals. - destroy() - Method in class javax.security.auth.kerberos.KerberosKey
-
Destroys this key.
- destroy() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Destroys the ticket and destroys any sensitive information stored in it.
- dispose() - Method in interface org.ietf.jgss.GSSContext
-
Releases any system resources and cryptographic information stored in the context object.
- dispose() - Method in interface org.ietf.jgss.GSSCredential
-
Releases any sensitive information that the GSSCredential object may be containing.
- DUPLICATE_ELEMENT - Static variable in exception org.ietf.jgss.GSSException
-
Duplicate credential element requested error.
- DUPLICATE_TOKEN - Static variable in exception org.ietf.jgss.GSSException
-
The token was a duplicate of an earlier token.
E
- equals(Object) - Method in class javax.security.auth.kerberos.DelegationPermission
-
Checks two DelegationPermission objects for equality.
- equals(Object) - Method in class javax.security.auth.kerberos.KerberosKey
-
Compares the specified Object with this KerberosKey for equality.
- equals(Object) - Method in class javax.security.auth.kerberos.KerberosPrincipal
-
Compares the specified Object with this Principal for equality.
- equals(Object) - Method in class javax.security.auth.kerberos.KerberosTicket
-
Compares the specified Object with this KerberosTicket for equality.
- equals(Object) - Method in class javax.security.auth.kerberos.KeyTab
-
Compares the specified Object with this KeyTab for equality.
- equals(Object) - Method in class javax.security.auth.kerberos.ServicePermission
-
Checks two ServicePermission objects for equality.
- equals(Object) - Method in class org.ietf.jgss.ChannelBinding
-
Returns "true" if two channel bindings match.
- equals(Object) - Method in interface org.ietf.jgss.GSSCredential
-
Tests if this GSSCredential refers to the same entity as the supplied object.
- equals(GSSName) - Method in interface org.ietf.jgss.GSSName
-
Compares two GSSName objects to determine whether they refer to the same entity.
- equals(Object) - Method in interface org.ietf.jgss.GSSName
-
A variation of the equals method that is provided to override the Object.equals() method that the implementing class will inherit.
- equals(Object) - Method in class org.ietf.jgss.Oid
-
Tests if two Oid objects represent the same Object identifier value.
- exists() - Method in class javax.security.auth.kerberos.KeyTab
-
Checks if the keytab file exists.
- export() - Method in interface org.ietf.jgss.GSSContext
-
Provided to support the sharing of work between multiple processes.
- export() - Method in interface org.ietf.jgss.GSSName
-
Returns a canonical contiguous byte representation of a mechanism name (MN), suitable for direct, byte by byte comparison by authorization functions.
F
- FAILURE - Static variable in exception org.ietf.jgss.GSSException
-
General failure, unspecified at GSS-API level.
G
- GAP_TOKEN - Static variable in exception org.ietf.jgss.GSSException
-
An expected per-message token was not received.
- getAcceptorAddress() - Method in class org.ietf.jgss.ChannelBinding
-
Returns the acceptor's address for this channel binding.
- getActions() - Method in class javax.security.auth.kerberos.ServicePermission
-
Returns the canonical string representation of the actions.
- getAlgorithm() - Method in class javax.security.auth.kerberos.KerberosKey
-
Returns the standard algorithm name for this key.
- getAnonymityState() - Method in interface org.ietf.jgss.GSSContext
-
Returns "true" if this is an anonymous context.
- getApplicationData() - Method in class org.ietf.jgss.ChannelBinding
-
Returns application data being used as part of the ChannelBinding.
- getAuthTime() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the time that the client was authenticated.
- getClient() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the client principal associated with this ticket.
- getClientAddresses() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns a list of addresses from where the ticket can be used.
- getConfState() - Method in interface org.ietf.jgss.GSSContext
-
Returns the confidentiality service state over the context.
- getCredDelegState() - Method in interface org.ietf.jgss.GSSContext
-
Determines if credential delegation is enabled on this context.
- getDelegCred() - Method in interface org.ietf.jgss.GSSContext
-
Obtains the credentials delegated by the context initiator to the context acceptor.
- getDER() - Method in class org.ietf.jgss.Oid
-
Returns the full ASN.1 DER encoding for this oid object, which includes the tag and length.
- getEncoded() - Method in class javax.security.auth.kerberos.KerberosKey
-
Returns the key material of this secret key.
- getEncoded() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns an ASN.1 encoding of the entire ticket.
- getEndTime() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the expiration time for this ticket's validity period.
- getFlags() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the flags associated with this ticket.
- getFormat() - Method in class javax.security.auth.kerberos.KerberosKey
-
Returns the name of the encoding format for this secret key.
- getInitiatorAddress() - Method in class org.ietf.jgss.ChannelBinding
-
Returns the initiator's address for this channel binding.
- getInstance(File) - Static method in class javax.security.auth.kerberos.KeyTab
-
Returns a
KeyTab
instance from aFile
object that is bound to an unknown service principal. - getInstance(KerberosPrincipal, File) - Static method in class javax.security.auth.kerberos.KeyTab
-
Returns a
KeyTab
instance from aFile
object that is bound to the specified service principal. - getInstance() - Static method in class javax.security.auth.kerberos.KeyTab
-
Returns the default
KeyTab
instance that is bound to an unknown service principal. - getInstance(KerberosPrincipal) - Static method in class javax.security.auth.kerberos.KeyTab
-
Returns the default
KeyTab
instance that is bound to the specified service principal. - getInstance() - Static method in class org.ietf.jgss.GSSManager
-
Returns the default GSSManager implementation.
- getIntegState() - Method in interface org.ietf.jgss.GSSContext
-
Returns the integrity service state over the context.
- getKeys(KerberosPrincipal) - Method in class javax.security.auth.kerberos.KeyTab
-
Returns fresh keys for the given Kerberos principal.
- getKeyType() - Method in class javax.security.auth.kerberos.KerberosKey
-
Returns the key type for this long-term key.
- getLifetime() - Method in interface org.ietf.jgss.GSSContext
-
Returns the context lifetime in seconds.
- getMajor() - Method in exception org.ietf.jgss.GSSException
-
Returns the major code representing the GSS error code that caused this exception to be thrown.
- getMajorString() - Method in exception org.ietf.jgss.GSSException
-
Returns a string explaining the GSS major error code causing this exception to be thrown.
- getMech() - Method in interface org.ietf.jgss.GSSContext
-
Returns the mechanism oid for this context.
- getMechs() - Method in interface org.ietf.jgss.GSSCredential
-
Returns an array of mechanisms supported by this credential.
- getMechs() - Method in class org.ietf.jgss.GSSManager
-
Returns an array of Oid objects indicating mechanisms available to GSS-API callers.
- getMechsForName(Oid) - Method in class org.ietf.jgss.GSSManager
-
Returns an array of Oid objects corresponding to the mechanisms that support the specific name type.
- getMessage() - Method in exception org.ietf.jgss.GSSException
-
Returns a detailed internationalized message of this exception.
- getMIC(byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Computes a cryptographic MIC over the supplied message.
- getMIC(InputStream, OutputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Computes a cryptographic MIC over the supplied message.
- getMinor() - Method in exception org.ietf.jgss.GSSException
-
Returns the mechanism error code that caused this exception.
- getMinorStatus() - Method in class org.ietf.jgss.MessageProp
-
Retrieves the minor status that the underlying mechanism might have set.
- getMinorString() - Method in exception org.ietf.jgss.GSSException
-
Returns a string explaining the mechanism specific error code.
- getMinorString() - Method in class org.ietf.jgss.MessageProp
-
Returns a string explaining the mechanism specific error code.
- getMutualAuthState() - Method in interface org.ietf.jgss.GSSContext
-
Returns the state of the mutual authentication option for the context.
- getName() - Method in class javax.security.auth.kerberos.KerberosPrincipal
-
The returned string corresponds to the single-string representation of a Kerberos Principal name as specified in Section 2.1 of RFC 1964.
- getName() - Method in interface org.ietf.jgss.GSSCredential
-
Retrieves the name of the entity that the credential asserts.
- getName(Oid) - Method in interface org.ietf.jgss.GSSCredential
-
Retrieves a mechanism name of the entity that the credential asserts.
- getNamesForMech(Oid) - Method in class org.ietf.jgss.GSSManager
-
Returns name type Oid's supported by the specified mechanism.
- getNameType() - Method in class javax.security.auth.kerberos.KerberosPrincipal
-
Returns the name type of the KerberosPrincipal.
- getPrincipal() - Method in class javax.security.auth.kerberos.KerberosKey
-
Returns the principal that this key belongs to.
- getPrincipal() - Method in class javax.security.auth.kerberos.KeyTab
-
Returns the service principal this
KeyTab
object is bound to. - getPrivacy() - Method in class org.ietf.jgss.MessageProp
-
Retrieves the privacy state.
- getQOP() - Method in class org.ietf.jgss.MessageProp
-
Retrieves the QOP value.
- getRealm() - Method in class javax.security.auth.kerberos.KerberosPrincipal
-
Returns the realm component of this Kerberos principal.
- getRemainingAcceptLifetime(Oid) - Method in interface org.ietf.jgss.GSSCredential
-
Returns the remaining lifetime is seconds for the credential to remain capable of accepting security contexts under the specified mechanism.
- getRemainingInitLifetime(Oid) - Method in interface org.ietf.jgss.GSSCredential
-
Returns the remaining lifetime is seconds for the credential to remain capable of initiating security contexts under the specified mechanism.
- getRemainingLifetime() - Method in interface org.ietf.jgss.GSSCredential
-
Returns the remaining lifetime in seconds for a credential.
- getRenewTill() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the latest expiration time for this ticket, including all renewals.
- getReplayDetState() - Method in interface org.ietf.jgss.GSSContext
-
Returns the state of the replay detection option for the context.
- getSequenceDetState() - Method in interface org.ietf.jgss.GSSContext
-
Returns the state of the sequence detection option for the context.
- getServer() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the service principal associated with this ticket.
- getSessionKey() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the session key associated with this ticket.
- getSessionKeyType() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the key type of the session key associated with this ticket as defined by the Kerberos Protocol Specification.
- getSrcName() - Method in interface org.ietf.jgss.GSSContext
-
Returns the name of the context initiator.
- getStartTime() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns the start time for this ticket's validity period.
- getStringNameType() - Method in interface org.ietf.jgss.GSSName
-
Returns the oid representing the type of name returned through the toString method.
- getTargName() - Method in interface org.ietf.jgss.GSSContext
-
Returns the name of the context target (acceptor).
- getUnboundInstance(File) - Static method in class javax.security.auth.kerberos.KeyTab
-
Returns an unbound
KeyTab
instance from aFile
object. - getUnboundInstance() - Static method in class javax.security.auth.kerberos.KeyTab
-
Returns the default unbound
KeyTab
instance. - getUsage() - Method in interface org.ietf.jgss.GSSCredential
-
Returns the credential usage flag.
- getUsage(Oid) - Method in interface org.ietf.jgss.GSSCredential
-
Returns the credential usage flag for the specified credential mechanism.
- getVersionNumber() - Method in class javax.security.auth.kerberos.KerberosKey
-
Returns the key version number.
- getWrapSizeLimit(int, boolean, int) - Method in interface org.ietf.jgss.GSSContext
-
Returns the maximum message size that, if presented to the wrap method with the same confReq and qop parameters, will result in an output token containing no more than the maxTokenSize bytes.
- GSSContext - Interface in org.ietf.jgss
-
This interface encapsulates the GSS-API security context and provides the security services (wrap, unwrap, getMIC, verifyMIC) that are available over the context.
- GSSCredential - Interface in org.ietf.jgss
-
This interface encapsulates the GSS-API credentials for an entity.
- GSSException - Exception in org.ietf.jgss
- GSSException(int) - Constructor for exception org.ietf.jgss.GSSException
-
Creates a GSSException object with a specified major code.
- GSSException(int, int, String) - Constructor for exception org.ietf.jgss.GSSException
-
Creates a GSSException object with the specified major code, minor code, and minor code textual explanation.
- GSSManager - Class in org.ietf.jgss
-
The GSSManager class is an abstract class that serves as a factory for three GSS interfaces: GSSName, GSSCredential, and GSSContext.
- GSSManager() - Constructor for class org.ietf.jgss.GSSManager
- GSSName - Interface in org.ietf.jgss
-
This interface encapsulates a single GSS-API principal entity.
H
- handle(Callback[]) - Method in class com.ibm.security.auth.callback.Krb5CallbackHandler
- hashCode() - Method in class javax.security.auth.kerberos.DelegationPermission
-
Returns the hash code value for this object.
- hashCode() - Method in class javax.security.auth.kerberos.KerberosKey
-
Returns a hashcode for this KerberosKey.
- hashCode() - Method in class javax.security.auth.kerberos.KerberosPrincipal
-
Returns a hashcode for this principal.
- hashCode() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Returns a hashcode for this KerberosTicket.
- hashCode() - Method in class javax.security.auth.kerberos.KeyTab
-
Returns a hashcode for this KeyTab.
- hashCode() - Method in class javax.security.auth.kerberos.ServicePermission
-
Returns the hash code value for this object.
- hashCode() - Method in class org.ietf.jgss.ChannelBinding
-
Returns a hashcode value for this ChannelBinding object.
- hashCode() - Method in interface org.ietf.jgss.GSSCredential
-
Returns a hashcode value for this GSSCredential.
- hashCode() - Method in interface org.ietf.jgss.GSSName
-
Returns a hashcode value for this GSSName.
- hashCode() - Method in class org.ietf.jgss.Oid
-
Returns a hashcode value for this Oid.
I
- implies(Permission) - Method in class javax.security.auth.kerberos.DelegationPermission
-
Checks if this Kerberos delegation permission object "implies" the specified permission.
- implies(Permission) - Method in class javax.security.auth.kerberos.ServicePermission
-
Checks if this Kerberos service permission object "implies" the specified permission.
- INDEFINITE_LIFETIME - Static variable in interface org.ietf.jgss.GSSContext
-
A lifetime constant representing indefinite context lifetime.
- INDEFINITE_LIFETIME - Static variable in interface org.ietf.jgss.GSSCredential
-
A lifetime constant representing indefinite credential lifetime.
- initialize(Subject, CallbackHandler, Map, Map) - Method in class com.ibm.security.auth.module.Krb5LoginModule
- INITIATE_AND_ACCEPT - Static variable in interface org.ietf.jgss.GSSCredential
-
Credential usage flag requesting that it be able to be used for both context initiation and acceptance.
- INITIATE_ONLY - Static variable in interface org.ietf.jgss.GSSCredential
-
Credential usage flag requesting that it be able to be used for context initiation only.
- initSecContext(byte[], int, int) - Method in interface org.ietf.jgss.GSSContext
-
Initiates context establishment.
- initSecContext(InputStream, OutputStream) - Method in interface org.ietf.jgss.GSSContext
-
Initiates context establishment.
- isAnonymous() - Method in interface org.ietf.jgss.GSSName
-
Tests if this name object represents an anonymous entity.
- isBound() - Method in class javax.security.auth.kerberos.KeyTab
-
Returns if the keytab is bound to a principal
- isCurrent() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines if this ticket is still current.
- isDestroyed() - Method in class javax.security.auth.kerberos.KerberosKey
-
Determines if this key has been destroyed.
- isDestroyed() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines if this ticket has been destroyed.
- isDuplicateToken() - Method in class org.ietf.jgss.MessageProp
-
Returns "true" if this is a duplicate of an earlier token.
- isEstablished() - Method in interface org.ietf.jgss.GSSContext
-
Used during context establishment to determine the state of the context.
- isForwardable() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines if this ticket is forwardable.
- isForwarded() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines if this ticket had been forwarded or was issued based on authentication involving a forwarded ticket-granting ticket.
- isGapToken() - Method in class org.ietf.jgss.MessageProp
-
Returns "true" if an expected per-message token was not received.
- isInitial() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines if this ticket was issued using the Kerberos AS-Exchange protocol, and not issued based on some ticket-granting ticket.
- isInitiator() - Method in interface org.ietf.jgss.GSSContext
-
Returns "true" if this is the initiator of the context.
- isMN() - Method in interface org.ietf.jgss.GSSName
-
Tests if this name object contains only one mechanism element and is thus a mechanism name as defined by RFC 2078.
- isOldToken() - Method in class org.ietf.jgss.MessageProp
-
Returns "true" if the token's validity period has expired.
- isPostdated() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines is this ticket is post-dated.
- isProtReady() - Method in interface org.ietf.jgss.GSSContext
-
Returns "true" if the per message operations can be applied over the context.
- isProxiable() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines if this ticket is proxiable.
- isProxy() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines is this ticket is a proxy-ticket.
- isRenewable() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Determines is this ticket is renewable.
- isTransferable() - Method in interface org.ietf.jgss.GSSContext
-
Returns "true" if the context is transferable to other processes through the use of the export method.
- isUnseqToken() - Method in class org.ietf.jgss.MessageProp
-
Returns "true" if a later token has already been processed.
J
- javax.security.auth.kerberos - package javax.security.auth.kerberos
K
- KerberosKey - Class in javax.security.auth.kerberos
-
This class encapsulates a long term secret key for a Kerberos principal.
- KerberosKey(KerberosPrincipal, byte[], int, int) - Constructor for class javax.security.auth.kerberos.KerberosKey
-
Constructs a KerberosKey from the given bytes when the key type and key version number are known.
- KerberosKey(KerberosPrincipal, char[], String) - Constructor for class javax.security.auth.kerberos.KerberosKey
-
Constructs a KerberosKey from a principal's password.
- KerberosPrincipal - Class in javax.security.auth.kerberos
-
This class encapsulates a Kerberos principal.
- KerberosPrincipal(String) - Constructor for class javax.security.auth.kerberos.KerberosPrincipal
-
Constructs a KerberosPrincipal from the provided string input.
- KerberosPrincipal(String, int) - Constructor for class javax.security.auth.kerberos.KerberosPrincipal
-
Constructs a KerberosPrincipal from the provided string and name type input.
- KerberosTicket - Class in javax.security.auth.kerberos
-
This class encapsulates a Kerberos ticket and associated information as viewed from the client's point of view.
- KerberosTicket(byte[], KerberosPrincipal, KerberosPrincipal, byte[], int, boolean[], Date, Date, Date, Date, InetAddress[]) - Constructor for class javax.security.auth.kerberos.KerberosTicket
-
Constructs a KerberosTicket using credentials information that a client either receives from a KDC or reads from a cache.
- KeyTab - Class in javax.security.auth.kerberos
-
This class encapsulates a keytab file.
- Kinit - Class in com.ibm.security.krb5.internal.tools
-
Kinit tool for obtaining Kerberos v5 tickets.
- Kinit(String[]) - Constructor for class com.ibm.security.krb5.internal.tools.Kinit
-
Constructs a new Kinit object.
- Klist - Class in com.ibm.security.krb5.internal.tools
-
This class can execute as a command-line tool to list entries in credential cache and key tab.
- Klist() - Constructor for class com.ibm.security.krb5.internal.tools.Klist
- Krb5CallbackHandler - Class in com.ibm.security.auth.callback
-
A text-based calback handler that for a Kerberos principal name and/or password.
- Krb5CallbackHandler() - Constructor for class com.ibm.security.auth.callback.Krb5CallbackHandler
- Krb5LoginModule - Class in com.ibm.security.auth.module
-
A JAAS
LoginModule
for acquiring Kerberos credentials. - Krb5LoginModule() - Constructor for class com.ibm.security.auth.module.Krb5LoginModule
- KRB_NT_PRINCIPAL - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
- KRB_NT_SRV_HST - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
-
service with host name as instance (telnet, rcommands) name type
- KRB_NT_SRV_INST - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
-
service and other unique instance (krbtgt) name type
- KRB_NT_SRV_XHST - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
-
service with host as remaining components name type
- KRB_NT_UID - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
-
unique ID name type
- KRB_NT_UNKNOWN - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
- Ktab - Class in com.ibm.security.krb5.internal.tools
-
This class can execute as a command-line tool to help the user manage entires in the key table.
- Ktab() - Constructor for class com.ibm.security.krb5.internal.tools.Ktab
L
- login() - Method in class com.ibm.security.auth.module.Krb5LoginModule
-
login
- logout() - Method in class com.ibm.security.auth.module.Krb5LoginModule
-
Logout the user.
M
- main(String[]) - Static method in class com.ibm.security.krb5.internal.tools.Kinit
-
The main method is used to accept user command line input for ticket request.
- main(String[]) - Static method in class com.ibm.security.krb5.internal.tools.Klist
-
The main program that can be invoked at command line.
- main(String[]) - Static method in class com.ibm.security.krb5.internal.tools.Ktab
-
The main program that can be invoked at command line.
- MessageProp - Class in org.ietf.jgss
-
This is a utility class used within the per-message GSSContext methods to convey per-message properties.
- MessageProp(boolean) - Constructor for class org.ietf.jgss.MessageProp
-
Constructor which sets QOP to 0 indicating that the default QOP is requested.
- MessageProp(int, boolean) - Constructor for class org.ietf.jgss.MessageProp
-
Constructor which sets the values for the qop and privacy state.
N
- NAME_NOT_MN - Static variable in exception org.ietf.jgss.GSSException
-
Name contains multi-mechanism elements error.
- newPermissionCollection() - Method in class javax.security.auth.kerberos.DelegationPermission
-
Returns a PermissionCollection object for storing DelegationPermission objects.
- newPermissionCollection() - Method in class javax.security.auth.kerberos.ServicePermission
-
Returns a PermissionCollection object for storing ServicePermission objects.
- NO_CONTEXT - Static variable in exception org.ietf.jgss.GSSException
-
Invalid security context error.
- NO_CRED - Static variable in exception org.ietf.jgss.GSSException
-
Invalid credentials error.
- NT_ANONYMOUS - Static variable in interface org.ietf.jgss.GSSName
-
Name type for representing an anonymous entity.
- NT_EXPORT_NAME - Static variable in interface org.ietf.jgss.GSSName
-
Name type used to indicate an exported name produced by the export method.
- NT_HOSTBASED_SERVICE - Static variable in interface org.ietf.jgss.GSSName
-
Oid indicating a host-based service name form.
- NT_MACHINE_UID_NAME - Static variable in interface org.ietf.jgss.GSSName
-
Name type to indicate a numeric user identifier corresponding to a user on a local system.
- NT_STRING_UID_NAME - Static variable in interface org.ietf.jgss.GSSName
-
Name type to indicate a string of digits representing the numeric user identifier of a user on a local system.
- NT_USER_NAME - Static variable in interface org.ietf.jgss.GSSName
-
Name type to indicate a named user on a local system.
O
- Oid - Class in org.ietf.jgss
-
This class represents Universal Object Identifiers (Oids) and their associated operations.
- Oid(String) - Constructor for class org.ietf.jgss.Oid
-
Constructs an Oid object from a string representation of its integer components.
- Oid(InputStream) - Constructor for class org.ietf.jgss.Oid
-
Creates an Oid object from its ASN.1 DER encoding.
- Oid(byte[]) - Constructor for class org.ietf.jgss.Oid
-
Creates an Oid object from its ASN.1 DER encoding.
- OLD_TOKEN - Static variable in exception org.ietf.jgss.GSSException
-
The token's validity period has expired.
- org.ietf.jgss - package org.ietf.jgss
-
Contains the top-level GSSAPI interfaces and classes specified in RFC 2853, Generic Security Service API Version 2: Java Bindings. GSSAPI framework developers provide implementations of subclasses of the interfaces and classes contained in this package.
R
- refresh() - Method in class javax.security.auth.kerberos.KerberosTicket
-
Extends the validity period of this ticket.
- requestAnonymity(boolean) - Method in interface org.ietf.jgss.GSSContext
-
Requests anonymous support over the context.
- requestConf(boolean) - Method in interface org.ietf.jgss.GSSContext
-
Requests that confidentiality service be available over the context.
- requestCredDeleg(boolean) - Method in interface org.ietf.jgss.GSSContext
-
Sets the request state for the credential delegation flag for the context.
- requestInteg(boolean) - Method in interface org.ietf.jgss.GSSContext
-
Requests that integrity services be available over the context.
- requestLifetime(int) - Method in interface org.ietf.jgss.GSSContext
-
Sets the desired lifetime for the context in seconds.
- requestMutualAuth(boolean) - Method in interface org.ietf.jgss.GSSContext
-
Sets the request state of the mutual authentication flag for the context.
- requestReplayDet(boolean) - Method in interface org.ietf.jgss.GSSContext
-
Sets the request state of the replay detection service for the context.
- requestSequenceDet(boolean) - Method in interface org.ietf.jgss.GSSContext
-
Sets the request state for the sequence checking service of the context.
S
- ServicePermission - Class in javax.security.auth.kerberos
-
This class is used to protect Kerberos services and the credentials necessary to access those services.
- ServicePermission(String, String) - Constructor for class javax.security.auth.kerberos.ServicePermission
-
Create a new
ServicePermission
with the specifiedservicePrincipal
andaction
. - setChannelBinding(ChannelBinding) - Method in interface org.ietf.jgss.GSSContext
-
Sets the channel bindings to be used during context establishment.
- setMinor(int, String) - Method in exception org.ietf.jgss.GSSException
-
Used internally by the GSS-API implementation and the underlying mechanisms to set the minor code and its textual representation.
- setPrivacy(boolean) - Method in class org.ietf.jgss.MessageProp
-
Sets the privacy state.
- setQOP(int) - Method in class org.ietf.jgss.MessageProp
-
Sets the QOP value.
- setSupplementaryStates(boolean, boolean, boolean, boolean, int, String) - Method in class org.ietf.jgss.MessageProp
-
This method sets the state for the supplementary information flags and the minor status in MessageProp.
T
- toString() - Method in class javax.security.auth.kerberos.KerberosKey
-
DOCUMENT ME!
- toString() - Method in class javax.security.auth.kerberos.KerberosPrincipal
- toString() - Method in class javax.security.auth.kerberos.KerberosTicket
-
DOCUMENT ME!
- toString() - Method in class javax.security.auth.kerberos.KeyTab
- toString() - Method in exception org.ietf.jgss.GSSException
-
Returns an internationalized textual representation of both the major and minor status codes.
- toString() - Method in interface org.ietf.jgss.GSSName
-
Returns a textual representation of the GSSName object.
- toString() - Method in class org.ietf.jgss.Oid
-
Returns a string representation of the oid's integer components in dot separated notation.
U
- UNAUTHORIZED - Static variable in exception org.ietf.jgss.GSSException
-
Operation unauthorized error.
- UNAVAILABLE - Static variable in exception org.ietf.jgss.GSSException
-
Operation unavailable error.
- UNSEQ_TOKEN - Static variable in exception org.ietf.jgss.GSSException
-
A later token has already been processed.
- unwrap(byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Used by the peer application to process tokens generated with the wrap call.
- unwrap(InputStream, OutputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Used by the peer application to process tokens generated with the wrap call.
V
- verifyMIC(byte[], int, int, byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Verifies the cryptographic MIC contained in the supplied token.
- verifyMIC(InputStream, InputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Verifies the cryptographic MIC contained in the supplied token.
W
- wrap(byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Applies per-message security services over the established security context.
- wrap(InputStream, OutputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
-
Allows to apply per-message security services over the established security context.