public static boolean pricipalCompareIgnoreRealm(PrincipalName princ1, PrincipalName princ2) throws KrbException { if (princ1 != null && princ2 != null) { princ1.setRealm(null); princ2.setRealm(null); if (princ1.getName().equals(princ2.getName())) { return true; } else { return false; } } else { throw new KrbException("principal can't be null."); } }
public static boolean pricipalCompareIgnoreRealm(PrincipalName princ1, PrincipalName princ2) throws KrbException { if (princ1 != null && princ2 != null) { princ1.setRealm(null); princ2.setRealm(null); if (princ1.getName().equals(princ2.getName())) { return true; } else { return false; } } else { throw new KrbException("principal can't be null."); } }
public static PrincipalName makeAnonymousPrincipal() { PrincipalName principalName = new PrincipalName(KRB5_WELLKNOWN_NAMESTR + "/" + KRB5_ANONYMOUS_PRINCSTR); principalName.setRealm(KRB5_ANONYMOUS_REALMSTR); principalName.setNameType(NameType.NT_WELLKNOWN); return principalName; } }
public static PrincipalName makeAnonymousPrincipal() { PrincipalName principalName = new PrincipalName(KRB5_WELLKNOWN_NAMESTR + "/" + KRB5_ANONYMOUS_PRINCSTR); principalName.setRealm(KRB5_ANONYMOUS_REALMSTR); principalName.setNameType(NameType.NT_WELLKNOWN); return principalName; } }
public Credential(TgtTicket tgt) { PrincipalName clientPrincipal = tgt.getClientPrincipal(); clientPrincipal.setRealm(tgt.getRealm()); init(tgt, clientPrincipal); }
public Credential(TgtTicket tgt) { PrincipalName clientPrincipal = tgt.getClientPrincipal(); clientPrincipal.setRealm(tgt.getRealm()); init(tgt, clientPrincipal); }
public TgsRequestWithTgt(KrbContext context, TgtTicket tgt) { super(context); setAllowedPreauth(PaDataType.TGS_REQ); ticket = tgt; clientPrincipal = tgt.getClientPrincipal(); if (clientPrincipal.getRealm() == null) { clientPrincipal.setRealm(tgt.getRealm()); } }
public TgsRequestWithTgt(KrbContext context, TgtTicket tgt) { super(context); setAllowedPreauth(PaDataType.TGS_REQ); ticket = tgt; clientPrincipal = tgt.getClientPrincipal(); if (clientPrincipal.getRealm() == null) { clientPrincipal.setRealm(tgt.getRealm()); } }
public TgsRequestWithTgt(KrbContext context, SgtTicket sgt) { super(context); setAllowedPreauth(PaDataType.TGS_REQ); ticket = sgt; clientPrincipal = sgt.getClientPrincipal(); if (clientPrincipal.getRealm() == null) { clientPrincipal.setRealm(sgt.getRealm()); } }
public TgsRequestWithTgt(KrbContext context, SgtTicket sgt) { super(context); setAllowedPreauth(PaDataType.TGS_REQ); ticket = sgt; clientPrincipal = sgt.getClientPrincipal(); if (clientPrincipal.getRealm() == null) { clientPrincipal.setRealm(sgt.getRealm()); } }
@Override public PrincipalName readPrincipal(int version) throws IOException { int numComponents = readShort(); if (version == Keytab.V501) { numComponents -= 1; } String realm = readCountedString(); List<String> nameStrings = new ArrayList<>(); for (int i = 0; i < numComponents; i++) { // sub 1 if version 0x501 String component = readCountedString(); nameStrings.add(component); } int type = readInt(); // not present if version 0x501 NameType nameType = NameType.fromValue(type); PrincipalName principal = new PrincipalName(nameStrings, nameType); principal.setRealm(realm); return principal; }
@Override public PrincipalName readPrincipal(int version) throws IOException { NameType nameType = NameType.NT_UNKNOWN; if (version != CredentialCache.FCC_FVNO_1) { int typeValue = readInt(); nameType = NameType.fromValue(typeValue); } int numComponents = readInt(); if (version == CredentialCache.FCC_FVNO_1) { numComponents -= 1; } String realm = readCountedString(); List<String> nameStrings = new ArrayList<>(); String component; for (int i = 0; i < numComponents; i++) { // sub 1 if version 0x501 component = readCountedString(); nameStrings.add(component); } PrincipalName principal = new PrincipalName(nameStrings, nameType); principal.setRealm(realm); return principal; }
@Override public PrincipalName readPrincipal(int version) throws IOException { int numComponents = readShort(); if (version == Keytab.V501) { numComponents -= 1; } String realm = readCountedString(); List<String> nameStrings = new ArrayList<>(); for (int i = 0; i < numComponents; i++) { // sub 1 if version 0x501 String component = readCountedString(); nameStrings.add(component); } int type = readInt(); // not present if version 0x501 NameType nameType = NameType.fromValue(type); PrincipalName principal = new PrincipalName(nameStrings, nameType); principal.setRealm(realm); return principal; }
@Override public PrincipalName readPrincipal(int version) throws IOException { NameType nameType = NameType.NT_UNKNOWN; if (version != CredentialCache.FCC_FVNO_1) { int typeValue = readInt(); nameType = NameType.fromValue(typeValue); } int numComponents = readInt(); if (version == CredentialCache.FCC_FVNO_1) { numComponents -= 1; } String realm = readCountedString(); List<String> nameStrings = new ArrayList<>(); String component; for (int i = 0; i < numComponents; i++) { // sub 1 if version 0x501 component = readCountedString(); nameStrings.add(component); } PrincipalName principal = new PrincipalName(nameStrings, nameType); principal.setRealm(realm); return principal; }
@Override protected PrincipalName getclientPrincipal() { PrincipalName clientPrincipal; if (token != null) { clientPrincipal = new PrincipalName(token.getSubject()); } else { clientPrincipal = tgtTicket.getEncPart().getCname(); clientPrincipal.setRealm(tgtTicket.getEncPart().getCrealm()); } return clientPrincipal; }
@Override protected PrincipalName getclientPrincipal() { PrincipalName clientPrincipal; if (token != null) { clientPrincipal = new PrincipalName(token.getSubject()); } else { clientPrincipal = tgtTicket.getEncPart().getCname(); clientPrincipal.setRealm(tgtTicket.getEncPart().getCrealm()); } return clientPrincipal; }
/** * Check server. * * @throws org.apache.kerby.kerberos.kerb.KrbException e */ private void checkServer() throws KrbException { KdcReq request = getKdcReq(); PrincipalName principal = request.getReqBody().getSname(); String serverRealm = request.getReqBody().getRealm(); if (serverRealm == null || serverRealm.isEmpty()) { LOG.info("Can't get the server realm from request, and try to get from kdcContext."); serverRealm = kdcContext.getKdcRealm(); } principal.setRealm(serverRealm); KrbIdentity serverEntry = getEntry(principal.getName()); if (serverEntry == null) { LOG.error("Principal: " + principal.getName() + " is not known"); throw new KrbException(KrbErrorCode.KDC_ERR_S_PRINCIPAL_UNKNOWN); } setServerEntry(serverEntry); for (EncryptionType encType : request.getReqBody().getEtypes()) { if (serverEntry.getKeys().containsKey(encType)) { EncryptionKey serverKey = serverEntry.getKeys().get(encType); setServerKey(serverKey); break; } } }
/** * Check server. * * @throws org.apache.kerby.kerberos.kerb.KrbException e */ private void checkServer() throws KrbException { KdcReq request = getKdcReq(); PrincipalName principal = request.getReqBody().getSname(); String serverRealm = request.getReqBody().getRealm(); if (serverRealm == null || serverRealm.isEmpty()) { LOG.info("Can't get the server realm from request, and try to get from kdcContext."); serverRealm = kdcContext.getKdcRealm(); } principal.setRealm(serverRealm); KrbIdentity serverEntry = getEntry(principal.getName()); if (serverEntry == null) { LOG.error("Principal: " + principal.getName() + " is not known"); throw new KrbException(KrbErrorCode.KDC_ERR_S_PRINCIPAL_UNKNOWN); } setServerEntry(serverEntry); for (EncryptionType encType : request.getReqBody().getEtypes()) { if (serverEntry.getKeys().containsKey(encType)) { EncryptionKey serverKey = serverEntry.getKeys().get(encType); setServerKey(serverKey); break; } } }
private void init(KrbTicket tkt, PrincipalName clientPrincipal) { EncKdcRepPart kdcRepPart = tkt.getEncKdcRepPart(); this.serverName = kdcRepPart.getSname(); this.serverRealm = kdcRepPart.getSrealm(); this.serverName.setRealm(serverRealm); this.clientName = clientPrincipal; this.key = kdcRepPart.getKey(); this.authTime = kdcRepPart.getAuthTime(); this.startTime = kdcRepPart.getStartTime(); this.endTime = kdcRepPart.getEndTime(); this.renewTill = kdcRepPart.getRenewTill(); this.ticketFlags = kdcRepPart.getFlags(); this.clientAddresses = kdcRepPart.getCaddr(); this.ticket = tkt.getTicket(); this.clientRealm = kdcRepPart.getSrealm(); this.isEncInSKey = false; this.secondTicket = null; }
private void init(KrbTicket tkt, PrincipalName clientPrincipal) { EncKdcRepPart kdcRepPart = tkt.getEncKdcRepPart(); this.serverName = kdcRepPart.getSname(); this.serverRealm = kdcRepPart.getSrealm(); this.serverName.setRealm(serverRealm); this.clientName = clientPrincipal; this.key = kdcRepPart.getKey(); this.authTime = kdcRepPart.getAuthTime(); this.startTime = kdcRepPart.getStartTime(); this.endTime = kdcRepPart.getEndTime(); this.renewTill = kdcRepPart.getRenewTill(); this.ticketFlags = kdcRepPart.getFlags(); this.clientAddresses = kdcRepPart.getCaddr(); this.ticket = tkt.getTicket(); this.clientRealm = kdcRepPart.getSrealm(); this.isEncInSKey = false; this.secondTicket = null; }