org.apache.directory.server.kerberos

Class KerberosConfig

java.lang.Object

org.apache.directory.server.kerberos.KerberosConfig

Direct Known Subclasses:

ChangePasswordConfig

public class KerberosConfig
extends Object

Author:

Apache Directory Project

Field Summary

Fields

Modifier and Type	Field and Description
static long	DEFAULT_ALLOWABLE_CLOCKSKEW The default allowable clockskew
static boolean	DEFAULT_EMPTY_ADDRESSES_ALLOWED The default for allowing empty addresses
static String[]	DEFAULT_ENCRYPTION_TYPES The default encryption types
static boolean	DEFAULT_PA_ENC_TIMESTAMP_REQUIRED The default for requiring encrypted timestamps
static String	DEFAULT_PRINCIPAL The default kdc service principal
static String	DEFAULT_REALM The default kdc realm
static boolean	DEFAULT_TGS_FORWARDABLE_ALLOWED The default for allowing forwardable tickets
static int	DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME The default for the maximum renewable lifetime
static int	DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME The default for the maximum ticket lifetime
static int	DEFAULT_TGS_MINIMUM_TICKET_LIFETIME The default for the minimum ticket lifetime, 4 minutes
static boolean	DEFAULT_TGS_POSTDATED_ALLOWED The default for allowing postdated tickets
static boolean	DEFAULT_TGS_PROXIABLE_ALLOWED The default for allowing proxiable tickets
static boolean	DEFAULT_TGS_RENEWABLE_ALLOWED The default for allowing renewable tickets
static boolean	DEFAULT_VERIFY_BODY_CHECKSUM The default for verifying the body checksum

Constructor Summary

Constructors

Constructor and Description
KerberosConfig()

Method Summary

Modifier and Type	Method and Description
long	getAllowableClockSkew() Returns the allowable clock skew.
Set<EncryptionType>	getEncryptionTypes() Returns the encryption types.
long	getMaximumRenewableLifetime()
long	getMaximumTicketLifetime()
long	getMinimumTicketLifetime()
String	getPrimaryRealm() Returns the primary realm.
String	getSearchBaseDn()
KerberosPrincipal	getServicePrincipal() Returns the service principal for this KDC/changepwd service.
boolean	isBodyChecksumVerified()
boolean	isEmptyAddressesAllowed()
boolean	isForwardableAllowed()
boolean	isPaEncTimestampRequired() Returns whether pre-authentication by encrypted timestamp is required.
boolean	isPostdatedAllowed()
boolean	isProxiableAllowed()
boolean	isRenewableAllowed()
void	setAllowableClockSkew(long allowableClockSkew)
void	setBodyChecksumVerified(boolean isBodyChecksumVerified)
void	setEmptyAddressesAllowed(boolean isEmptyAddressesAllowed)
void	setEncryptionTypes(EncryptionType[] encryptionTypes) Initialize the encryptionTypes set
void	setEncryptionTypes(Set<EncryptionType> encryptionTypes) Initialize the encryptionTypes set
void	setForwardableAllowed(boolean isForwardableAllowed)
void	setMaximumRenewableLifetime(long maximumRenewableLifetime)
void	setMaximumTicketLifetime(long maximumTicketLifetime)
void	setMinimumTicketLifetime(long minimumTicketLifetime)
void	setPaEncTimestampRequired(boolean isPaEncTimestampRequired)
void	setPostdatedAllowed(boolean isPostdatedAllowed)
void	setPrimaryRealm(String primaryRealm)
void	setProxiableAllowed(boolean isProxiableAllowed)
void	setRenewableAllowed(boolean isRenewableAllowed)
void	setSearchBaseDn(String searchBaseDn)
void	setServicePrincipal(String kdcPrincipal)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

DEFAULT_PRINCIPAL

public static final String DEFAULT_PRINCIPAL

The default kdc service principal

See Also:

Constant Field Values

DEFAULT_REALM

public static final String DEFAULT_REALM

The default kdc realm

See Also:

Constant Field Values

DEFAULT_ALLOWABLE_CLOCKSKEW

public static final long DEFAULT_ALLOWABLE_CLOCKSKEW

The default allowable clockskew

See Also:

Constant Field Values

DEFAULT_EMPTY_ADDRESSES_ALLOWED

public static final boolean DEFAULT_EMPTY_ADDRESSES_ALLOWED

The default for allowing empty addresses

See Also:

Constant Field Values

DEFAULT_PA_ENC_TIMESTAMP_REQUIRED

public static final boolean DEFAULT_PA_ENC_TIMESTAMP_REQUIRED

The default for requiring encrypted timestamps

See Also:

Constant Field Values

DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME

public static final int DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME

The default for the maximum ticket lifetime

See Also:

Constant Field Values

DEFAULT_TGS_MINIMUM_TICKET_LIFETIME

public static final int DEFAULT_TGS_MINIMUM_TICKET_LIFETIME

The default for the minimum ticket lifetime, 4 minutes

See Also:

Constant Field Values

DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME

public static final int DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME

The default for the maximum renewable lifetime

See Also:

Constant Field Values

DEFAULT_TGS_FORWARDABLE_ALLOWED

public static final boolean DEFAULT_TGS_FORWARDABLE_ALLOWED

The default for allowing forwardable tickets

See Also:

Constant Field Values

DEFAULT_TGS_PROXIABLE_ALLOWED

public static final boolean DEFAULT_TGS_PROXIABLE_ALLOWED

The default for allowing proxiable tickets

See Also:

Constant Field Values

DEFAULT_TGS_POSTDATED_ALLOWED

public static final boolean DEFAULT_TGS_POSTDATED_ALLOWED

The default for allowing postdated tickets

See Also:

Constant Field Values

DEFAULT_TGS_RENEWABLE_ALLOWED

public static final boolean DEFAULT_TGS_RENEWABLE_ALLOWED

The default for allowing renewable tickets

See Also:

Constant Field Values

DEFAULT_VERIFY_BODY_CHECKSUM

public static final boolean DEFAULT_VERIFY_BODY_CHECKSUM

The default for verifying the body checksum

See Also:

Constant Field Values

DEFAULT_ENCRYPTION_TYPES

public static final String[] DEFAULT_ENCRYPTION_TYPES

The default encryption types

Constructor Detail

KerberosConfig

public KerberosConfig()

Method Detail

getAllowableClockSkew

public long getAllowableClockSkew()

Returns the allowable clock skew.

Returns:

The allowable clock skew.

isEmptyAddressesAllowed

public boolean isEmptyAddressesAllowed()

Returns:

the isEmptyAddressesAllowed

isForwardableAllowed

public boolean isForwardableAllowed()

Returns:

the isForwardableAllowed

isPostdatedAllowed

public boolean isPostdatedAllowed()

Returns:

the isPostdatedAllowed

isProxiableAllowed

public boolean isProxiableAllowed()

Returns:

the isProxiableAllowed

isRenewableAllowed

public boolean isRenewableAllowed()

Returns:

the isRenewableAllowed

getMaximumRenewableLifetime

public long getMaximumRenewableLifetime()

Returns:

the maximumRenewableLifetime

getMaximumTicketLifetime

public long getMaximumTicketLifetime()

Returns:

the maximumTicketLifetime

setAllowableClockSkew

public void setAllowableClockSkew(long allowableClockSkew)

Parameters:

allowableClockSkew - the allowableClockSkew to set

setEncryptionTypes

public void setEncryptionTypes(EncryptionType[] encryptionTypes)

Initialize the encryptionTypes set

Parameters:

encryptionTypes - the encryptionTypes to set

setEncryptionTypes

public void setEncryptionTypes(Set<EncryptionType> encryptionTypes)

Initialize the encryptionTypes set

Parameters:

encryptionTypes - the encryptionTypes to set

setEmptyAddressesAllowed

public void setEmptyAddressesAllowed(boolean isEmptyAddressesAllowed)

Parameters:

isEmptyAddressesAllowed - the isEmptyAddressesAllowed to set

setForwardableAllowed

public void setForwardableAllowed(boolean isForwardableAllowed)

Parameters:

isForwardableAllowed - the isForwardableAllowed to set

setPaEncTimestampRequired

public void setPaEncTimestampRequired(boolean isPaEncTimestampRequired)

Parameters:

isPaEncTimestampRequired - the isPaEncTimestampRequired to set

setPostdatedAllowed

public void setPostdatedAllowed(boolean isPostdatedAllowed)

Parameters:

isPostdatedAllowed - the isPostdatedAllowed to set

setProxiableAllowed

public void setProxiableAllowed(boolean isProxiableAllowed)

Parameters:

isProxiableAllowed - the isProxiableAllowed to set

setRenewableAllowed

public void setRenewableAllowed(boolean isRenewableAllowed)

Parameters:

isRenewableAllowed - the isRenewableAllowed to set

setServicePrincipal

public void setServicePrincipal(String kdcPrincipal)

Parameters:

kdcPrincipal - the kdcPrincipal to set

setMaximumRenewableLifetime

public void setMaximumRenewableLifetime(long maximumRenewableLifetime)

Parameters:

maximumRenewableLifetime - the maximumRenewableLifetime to set

setMaximumTicketLifetime

public void setMaximumTicketLifetime(long maximumTicketLifetime)

Parameters:

maximumTicketLifetime - the maximumTicketLifetime to set

setPrimaryRealm

public void setPrimaryRealm(String primaryRealm)

Parameters:

primaryRealm - the primaryRealm to set

getPrimaryRealm

public String getPrimaryRealm()

Returns the primary realm.

Returns:

The primary realm.

getServicePrincipal

public KerberosPrincipal getServicePrincipal()

Returns the service principal for this KDC/changepwd service.

Returns:

The service principal for this KDC/changepwd service.

getEncryptionTypes

public Set<EncryptionType> getEncryptionTypes()

Returns the encryption types.

Returns:

The encryption types.

isPaEncTimestampRequired

public boolean isPaEncTimestampRequired()

Returns whether pre-authentication by encrypted timestamp is required.

Returns:

Whether pre-authentication by encrypted timestamp is required.

isBodyChecksumVerified

public boolean isBodyChecksumVerified()

Returns:

the isBodyChecksumVerified

setBodyChecksumVerified

public void setBodyChecksumVerified(boolean isBodyChecksumVerified)

Parameters:

isBodyChecksumVerified - the isBodyChecksumVerified to set

getSearchBaseDn

public String getSearchBaseDn()

setSearchBaseDn

public void setSearchBaseDn(String searchBaseDn)

getMinimumTicketLifetime

public long getMinimumTicketLifetime()

setMinimumTicketLifetime

public void setMinimumTicketLifetime(long minimumTicketLifetime)