|
| |
|
| org.jboss.security.plugins.JaasSecurityManager
 org.jboss.security.plugins.JaasSecurityDomain
| JaasSecurityDomain | | public class JaasSecurityDomain extends JaasSecurityManager implements SecurityDomain,JaasSecurityDomainMBean(Code) | | The JaasSecurityDomain is an extension of JaasSecurityManager that addes
the notion of a KeyStore, and JSSE KeyManagerFactory and TrustManagerFactory
for supporting SSL and other cryptographic use cases.
Attributes:
- KeyStoreType: The implementation type name being used, defaults to 'JKS'.
- KeyStoreURL: Set the KeyStore database URL string. This is used to obtain
an InputStream to initialize the KeyStore. If the string is not a value
URL, its treated as a file.
- KeyStorePass: the password used to load the KeyStore. Its format is one of:
- The plaintext password for the KeyStore(or whatever format is used
by the KeyStore). The toCharArray() value of the string is used without any
manipulation.
- A command to execute to obtain the plaintext password. The format
is '{EXT}...' where the '...' is the exact command line that will be passed
to the Runtime.exec(String) method to execute a platform command. The first
line of the command output is used as the password.
- A class to create to obtain the plaintext password. The format
is '{CLASS}classname[:ctorarg]' where the '[:ctorarg]' is an optional
string delimited by the ':' from the classname that will be passed to the
classname ctor. The password is obtained from classname by invoking a 'char[]
toCharArray()' method if found, otherwise, the 'String toString()' method is
used.
The KeyStorePass is also used in combination with the Salt and IterationCount
attributes to create a PBE secret key used with the encode/decode operations.
- ManagerServiceName: The JMX object name string of the security manager service
that the domain registers with to function as a security manager for the
security domain name passed to the ctor. The makes the JaasSecurityDomain
available under the standard JNDI java:/jaas/(domain) binding.
- LoadSunJSSEProvider: A flag indicating if the Sun com.sun.net.ssl.internal.ssl.Provider
security provider should be loaded on startup. This is needed when using
the Sun JSSE jars without them installed as an extension with JDK 1.3. This
should be set to false with JDK 1.4 or when using an alternate JSSE provider
- Salt:
- IterationCount:
author:
Scott.Stark@jboss.org
author:
Jason Essington
version:
$Revision: 59905 $ |
| Constructor Summary | |
| public | JaasSecurityDomain()
Creates a default JaasSecurityDomain for with a securityDomain
name of 'other'. | | public | JaasSecurityDomain(String securityDomain)
Creates a JaasSecurityDomain for with a securityDomain
name of that given by the 'securityDomain' argument. | | public | JaasSecurityDomain(String securityDomain, CallbackHandler handler)
Creates a JaasSecurityDomain for with a securityDomain
name of that given by the 'securityDomain' argument. |
| JaasSecurityDomain | | public JaasSecurityDomain()(Code) | | Creates a default JaasSecurityDomain for with a securityDomain
name of 'other'.
|
| JaasSecurityDomain | | public JaasSecurityDomain(String securityDomain)(Code) | | Creates a JaasSecurityDomain for with a securityDomain
name of that given by the 'securityDomain' argument.
Parameters:
securityDomain - , the name of the security domain |
| JaasSecurityDomain | | public JaasSecurityDomain(String securityDomain, CallbackHandler handler)(Code) | | Creates a JaasSecurityDomain for with a securityDomain
name of that given by the 'securityDomain' argument.
Parameters:
securityDomain - , the name of the security domain
Parameters:
handler - , the CallbackHandler to use to obtain login module info |
| decode | | public byte[] decode(byte[] secret) throws Exception(Code) | | Decrypt the secret using the cipherKey.
Parameters:
secret - - the encrypted secret to decrypt. the decrypted secret
throws:
Exception - |
| decode64 | | public byte[] decode64(String secret) throws Exception(Code) | | Decrypt the base64 encoded secret using the cipherKey.
Parameters:
secret - - the base64 encoded encrypted secret to decrypt. the decrypted secret
throws:
Exception - |
| encode | | public byte[] encode(byte[] secret) throws Exception(Code) | | Encrypt the secret using the cipherKey.
Parameters:
secret - - the plaintext secret to encrypt the encrypted secret
throws:
Exception - |
| encode64 | | public String encode64(byte[] secret) throws Exception(Code) | | Encrypt the secret using the cipherKey and return a base64 encoding.
Parameters:
secret - - the plaintext secret to encrypt the encrypted secret as a base64 string
throws:
Exception - |
| getManagerServiceName | | public ObjectName getManagerServiceName()(Code) | | The JMX object name string of the security manager service.
The JMX object name string of the security manager service. |
| reloadKeyAndTrustStore | | public void reloadKeyAndTrustStore() throws Exception(Code) | | Reload the key- and truststore
|
| setCipherAlgorithm | | public void setCipherAlgorithm(String cipherAlgorithm)(Code) | | |
| setIterationCount | | public void setIterationCount(int iterationCount)(Code) | | |
| setKeyStoreType | | public void setKeyStoreType(String type)(Code) | | |
| setManagerServiceName | | public void setManagerServiceName(ObjectName managerServiceName)(Code) | | Set the JMX object name string of the security manager service.
|
| setTrustStorePass | | public void setTrustStorePass(String password)(Code) | | |
| setTrustStoreType | | public void setTrustStoreType(String type)(Code) | | |
| stopService | | protected void stopService()(Code) | | |
|
|
|