Examples of javax.security.auth.message.config.AuthConfigProvider

• javax.security.auth.message.config.AuthConfigProvider

  This interface is implemented by objects that can be used to obtain authentication context configuration objects i.e., ClientAuthConfig or ServerAuthConfig objects. Authentication context configuration objects serve as sources of the authentication context objects, i.e, ClientAuthContext or ServerAuthContext objects, for a specific message layer and messaging context.

  Authentication context objects encapsulate the initialization, configuration, and invocation of authentication modules, i.e., ClientAuthModule or ServerAuthModule objects, for a specific message exchange within a specific message layer and messaging context.

  Callers do not directly operate on authentication modules. Instead, they rely on a ClientAuthContext or ServerAuthContext to manage the invocation of modules. A caller obtains an instance of ClientAuthContext or ServerAuthContext by calling the respective getAuthContext method on a ClientAuthConfig or ServerAuthConfig object obtained from an AuthConfigProvider.

  The following represents a typical sequence of calls for obtaining a client authentication context object, and then using it to secure a request.

  1. AuthConfigProvider provider;
  2. ClientAuthConfig config = provider.getClientAuthConfig(layer,appID,cbh);
  3. String operation = config.getOperation(authParam);
  4. ClientAuthContext context = config.getAuthContext(operation,properties);
  5. context.secureRequest(authParam,subject,...);

  Every implementation of this interface must offer a public, single argument constructor with the following signature:

   public AuthConfigProviderImpl(Map properties);

  where the properties argument may be null, and where all values and keys occuring in a non-null properties argument must be of type String.

  An AuthConfigFactory may be used to obtain the ConfigProvider for a specific message layer and application context identifier.

  @author Anil Saldhana @author Charlie Lai, Ron Monzillo (Javadoc for JSR-196) @since May 12, 2006 @version $Revision: 45179 $

/* 132 */     String input = (layer + "_" + appContext).toUpperCase();
/* 133 */     String allLayer = ("NULL_" + appContext).toUpperCase();
/* 134 */     String allContext = (layer + "_" + "NULL").toUpperCase();
/* 135 */     String general = "NULL_NULL";
/*     */
/* 137 */     AuthConfigProvider acp = null;
/* 138 */     String key = null;
/* 139 */     for (int i = 0; (i < 4) && (acp == null); i++)
/*     */     {
/* 141 */       if (i == 0) key = input;
/* 142 */       if (i == 1) key = allLayer;

/*     */   {
/* 218 */     if ((className == null) || (className.length() == 0)) {
/* 219 */       throw new IllegalArgumentException("className is null or zero length");
/*     */     }
/*     */
/* 222 */     AuthConfigProvider acp = null;
/*     */     try
/*     */     {
/* 225 */       Class provClass = Thread.currentThread().getContextClassLoader().loadClass(className);
/* 226 */       Constructor ctr = provClass.getConstructor(new Class[] { Map.class });
/* 227 */       acp = (AuthConfigProvider)ctr.newInstance(new Object[] { properties });

      if(origListener == listener)
      {
         keyListenerMap.remove(key);
         //Get the ID List
         AuthConfigProvider provider = (AuthConfigProvider)keyProviderMap.get(key);
         if(provider != null)
         {
            List list = (List)providerToIDListMap.get(provider);
            arr = new String[list.size()];
            list.toArray(arr);

      String allLayer  = ("NULL" + "_" + appContext).toUpperCase();
      String allContext = (layer + "_" + "NULL").toUpperCase();
      String general = "NULL" + "_" + "NULL";
      String blank = (layer + "_" + " ").toUpperCase();

      AuthConfigProvider acp = null;
      String key = null;
      for(int i = 0 ; i < 5 && acp == null; i++)
      {
         if(i == 0) key = input;
         if(i == 1) key = allLayer;

   {
      if(className == null || className.length() == 0)
         throw new IllegalArgumentException("className is null or zero length");

      //Instantiate the provider
      AuthConfigProvider acp = null;
      try
      {
         Class provClass = SecurityActions.getContextClassLoader().loadClass(className);
         Constructor ctr = provClass.getConstructor(new Class[] {Map.class});
         acp = (AuthConfigProvider)ctr.newInstance(new Object[] {properties});

   @SuppressWarnings("unchecked")
   public void testServerFactoryConfig() throws Exception
   {
      assertNotNull("AuthConfigFactory is ! null", factory);
      AuthConfigProvider provider = factory.getConfigProvider("TEST", "APP", null);
      assertNotNull("AuthConfigProvider is ! null", provider);

      ServerAuthConfig serverConfig =
         provider.getServerAuthConfig("TEST", "APP",
               new AppCallbackHandler("anil","anil".toCharArray()));
      assertNotNull("ServerAuthConfig ! null", serverConfig);
      MessageInfo mi = new GenericMessageInfo(new Object(), new Object());
      String authContextID = serverConfig.getAuthContextID(mi);
      assertNotNull("AuthContext ID != null",authContextID);

   @SuppressWarnings("unchecked")
   public void testClientFactoryConfig() throws Exception
   {
      assertNotNull("AuthConfigFactory is ! null", factory);
      AuthConfigProvider provider = factory.getConfigProvider("TEST", "APP", null);
      assertNotNull("AuthConfigProvider is ! null", provider);

      ClientAuthConfig clientConfig =
         provider.getClientAuthConfig("TEST", "APP",
               new AppCallbackHandler("anil","anil".toCharArray()));
      assertNotNull("ClientAuthConfig ! null", clientConfig);
      MessageInfo mi = new GenericMessageInfo(new Object(), new Object());
      String authContextID = clientConfig.getAuthContextID(mi);
      assertNotNull("AuthContext ID != null",authContextID);

      xli.loadConfig();
   }

   public void testSuccessfulJASPI() throws Exception
   {
      AuthConfigProvider provider = factory.getConfigProvider(layer, appId, null);
      ServerAuthConfig serverConfig = provider.getServerAuthConfig(layer, appId, new AppCallbackHandler("jduke",
            "theduke".toCharArray()));
      assertNotNull("ServerAuthConfig is not null", serverConfig);

      MessageInfo mi = new GenericMessageInfo(new Object(), new Object());
      String authContextID = serverConfig.getAuthContextID(mi);

      assertEquals(AuthStatus.SUCCESS, status);
   }

   public void testUnSuccessfulJASPI() throws Exception
   {
      AuthConfigProvider provider = factory.getConfigProvider(layer, appId, null);
      ServerAuthConfig serverConfig = provider.getServerAuthConfig(layer, appId, new AppCallbackHandler("jduke",
            "badpwd".toCharArray()));
      assertNotNull("ServerAuthConfig is not null", serverConfig);

      MessageInfo mi = new GenericMessageInfo(new Object(), new Object());
      String authContextID = serverConfig.getAuthContextID(mi);

      try
      {
         String contextID = PolicyContext.getContextID();
         AuthConfigFactory factory = AuthConfigFactory.getFactory();
         AuthConfigProvider provider = factory.getConfigProvider(layer,contextID,null);
         if(provider == null)
            throw new IllegalStateException("Provider is null for "+ layer + " for "+ contextID);

         ServerAuthConfig serverConfig = provider.getServerAuthConfig(layer,contextID,handler);
         ServerAuthContext sctx = serverConfig.getAuthContext(contextID,
               new Subject(), new HashMap());
         if(clientSubject == null)
            clientSubject = new Subject();
         Subject serviceSubject = new Subject();