Examples of LoginContext

javax.security.auth.login.LoginContext
org.apache.jackrabbit.oak.spi.security.authentication.LoginContext
Interface version of the JAAS {@link javax.security.auth.login.LoginContext}class. It is used to make integration of non-JAAS authentication components easier while still retaining full JAAS support. The {@link JaasLoginContext}class acts as a bridge that connects the JAAS {@link javax.security.auth.login.LoginContext} class with this interface.
org.apache.wicket.security.hive.authentication.LoginContext
A LoginContext is little more than a factory to create a {@link Subject} and can bediscarded afterwards. Usually it contains some credentials such as username and password. Note that generally it is no a good idea to store those type of credentials in the session, so if you plan on keeping this context in the session be sure to clear them before you return a Subject in {@link #login()}. Some applications will require you to login with two or more different LoginContexts before a user is fully authenticated. For that purpose a sortOrder is available in the context. which is used in descending order to pass authentication requests to the subjects until one of them authenticates. Sort orders are >=0 and are not required to have an interval of 1. For example 0, 5,6 are all perfectly legal sort orders for one user. Duplicates are also allowed, in that case they are queried in reverse order of login. The context also contains a flag to indicate if an additional login is allowed. Note that both the sort order and the additional login flag must be constant. Also note that all LoginContexts of the same class and with the same sort order are equal, thus for logoff you do not need to keep a reference to the context but can simply use a new instance. @author marrink @see #preventsAdditionalLogins()
org.wicketstuff.security.hive.authentication.LoginContext
A LoginContext is little more than a factory to create a {@link Subject} and can be discardedafterwards. Usually it contains some credentials such as username and password. Note that generally it is no a good idea to store those type of credentials in the session, so if you plan on keeping this context in the session be sure to clear them before you return a Subject in {@link #login()}. Some applications will require you to login with two or more different LoginContexts before a user is fully authenticated. For that purpose a sortOrder is available in the context. which is used in descending order to pass authentication requests to the subjects until one of them authenticates. Sort orders are >=0 and are not required to have an interval of 1. For example 0, 5,6 are all perfectly legal sort orders for one user. Duplicates are also allowed, in that case they are queried in reverse order of login. The context also contains a flag to indicate if an additional login is allowed. Note that both the sort order and the additional login flag must be constant. Also note that all LoginContexts of the same class and with the same sort order are equal, thus for logoff you do not need to keep a reference to the context but can simply use a new instance. @author marrink @see #preventsAdditionalLogins()

Examples of javax.security.auth.login.LoginContext

    }


    public boolean authenticate(final String username, final String password, final ServerSession session) {
        try {
            Subject subject = new Subject();
            LoginContext loginContext = new LoginContext(realm, subject, new CallbackHandler() {
                public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException {
                    for (Callback callback : callbacks) {
                        if (callback instanceof NameCallback) {
                            ((NameCallback) callback).setName(username);
                        } else if (callback instanceof PasswordCallback) {
                            ((PasswordCallback) callback).setPassword(password.toCharArray());
                        } else {
                            throw new UnsupportedCallbackException(callback);
                        }
                    }
                }
            });
            loginContext.login();
            if (role != null && role.length() > 0) {
                String clazz = "org.apache.karaf.jaas.modules.RolePrincipal";
                String name = role;
                int idx = role.indexOf(':');
                if (idx > 0) {

View Full Code Here

Examples of javax.security.auth.login.LoginContext


        // Establish a LoginContext to use for authentication
        try {


            if ((principalName != null) && (!principalName.equals(""))) {
                LoginContext loginContext = null;
                if (appName == null)
                    appName = "Tomcat";


                if (log.isDebugEnabled())
                    log.debug(sm.getString("jaasRealm.beginLogin", principalName, appName));


                // What if the LoginModule is in the container class loader ?
                ClassLoader ocl = null;


                if (isUseContextClassLoader()) {
                    ocl = Thread.currentThread().getContextClassLoader();
                    Thread.currentThread().setContextClassLoader(this.getClass().getClassLoader());
                }


                try {
                    loginContext = ContextManager.login(appName, callbackHandler);
                } catch (AccountExpiredException e) {
                    if (log.isDebugEnabled())
                        log.debug(sm.getString("jaasRealm.accountExpired", principalName));
                    return (null);
                } catch (CredentialExpiredException e) {
                    if (log.isDebugEnabled())
                        log.debug(sm.getString("jaasRealm.credentialExpired", principalName));
                    return (null);
                } catch (FailedLoginException e) {
                    if (log.isDebugEnabled())
                        log.debug(sm.getString("jaasRealm.failedLogin", principalName));
                    return (null);
                } catch (LoginException e) {
                    log.warn(sm.getString("jaasRealm.loginException", principalName), e);
                    return (null);
                } catch (Throwable e) {
                    log.error(sm.getString("jaasRealm.unexpectedError"), e);
                    return (null);
                } finally {
                    if (isUseContextClassLoader()) {
                        Thread.currentThread().setContextClassLoader(ocl);
                    }
                }


                if (log.isDebugEnabled())
                    log.debug("Login context created " + principalName);


                // Negotiate a login via this LoginContext
                Subject subject = loginContext.getSubject();
                ContextManager.setCallers(subject, subject);


                if (log.isDebugEnabled())
                    log.debug(sm.getString("jaasRealm.loginContextCreated", principalName));

View Full Code Here

Examples of javax.security.auth.login.LoginContext

    public Object login(String user, String pass) throws LoginException {
        return login("OpenEJB", user, pass);
    }


    public Object login(String securityRealm, String user, String pass) throws LoginException {
        LoginContext context = ContextManager.login(securityRealm, new UsernamePasswordCallbackHandler(user, pass));


        Subject subject = context.getSubject();
        return ContextManager.getSubjectId(subject);
    }

View Full Code Here

Examples of javax.security.auth.login.LoginContext

                } else {
                    throw new LoginException("Cannot extract credentials from class: " + credentials.getClass().getName());
                }


                //set up the login context
                LoginContext loginContext = ContextManager.login(securityRealmName, callbackHandler);
                callbackHandler.clear();


                Subject subject = loginContext.getSubject();
                ContextManager.setCallers(subject, subject);


                //login success
                userPrincipal = new JAASJettyPrincipal(username);
                userPrincipal.setSubject(subject);

View Full Code Here

Examples of javax.security.auth.login.LoginContext

        registerSubject(EMPTY);
    }


    public static LoginContext login(String realm, CallbackHandler callbackHandler) throws LoginException {
        Subject subject = new Subject();
        LoginContext loginContext = new LoginContext(realm, subject, callbackHandler);
        loginContext.login();
        SubjectId id = ContextManager.registerSubject(subject);
        IdentificationPrincipal principal = new IdentificationPrincipal(id);
        subject.getPrincipals().add(principal);
        return loginContext;
    }

View Full Code Here

Examples of javax.security.auth.login.LoginContext

        
        try {
            
            
            CallbackHandler handler = getCallbackHandler(name, password);  
            LoginContext ctx = new LoginContext(getContextName(), null, handler, loginConfig);  
            
            ctx.login();
            
            Subject subject = ctx.getSubject();
            
            message.put(SecurityContext.class, createSecurityContext(subject)); 
        } catch (LoginException ex) {
            String errorMessage = "Unauthorized : " + ex.getMessage();
            LOG.fine(errorMessage);

View Full Code Here

Examples of javax.security.auth.login.LoginContext

        }


        try
        {
            System.setProperty( "javax.security.auth.useSubjectCredsOnly", "true" );
            LoginContext loginContext = new LoginContext( request.getLoginContextName(),
                new SaslCallbackHandler( request ) );
            loginContext.login();


            final GssApiRequest requetFinal = request;
            return ( BindFuture ) Subject.doAs( loginContext.getSubject(), new PrivilegedExceptionAction<Object>()
            {
                public Object run() throws Exception
                {
                    return bindSasl( requetFinal );
                }

View Full Code Here

Examples of javax.security.auth.login.LoginContext


        // Establish a LoginContext to use for authentication
        try {


            if ( (principalName!=null) && (!principalName.equals("")) ) {
              LoginContext loginContext = null;
              if (appName == null)
                  appName = "Tomcat";


              if (log.isDebugEnabled())
                  log.debug(sm.getString("jaasRealm.beginLogin", principalName, appName));


              // What if the LoginModule is in the container class loader ?
              ClassLoader ocl = null;


              if (isUseContextClassLoader()) {
                  ocl = Thread.currentThread().getContextClassLoader();
                  Thread.currentThread().setContextClassLoader(this.getClass().getClassLoader());
              }


              try {
                  loginContext = new LoginContext(appName, callbackHandler);
              } catch (Throwable e) {
                  log.error(sm.getString("jaasRealm.unexpectedError"), e);
                  return (null);
              } finally {
                  if (isUseContextClassLoader()) {
                      Thread.currentThread().setContextClassLoader(ocl);
                  }
              }


              if (log.isDebugEnabled())
                  log.debug("Login context created " + principalName);


              // Negotiate a login via this LoginContext
              Subject subject;
              try {
                  loginContext.login();
                  Subject tempSubject = loginContext.getSubject();
                  if (tempSubject == null) {
                      if (log.isDebugEnabled())
                          log.debug(sm.getString("jaasRealm.failedLogin", principalName));
                      return (null);
                  }

View Full Code Here

Examples of javax.security.auth.login.LoginContext

            }
            if (contextAndServiceNameCallback.getServiceName() == null) {
                throw new WSSecurityException(WSSecurityException.ErrorCode.FAILURE, "kerberosCallbackServiceNameNotSupplied");
            }


            LoginContext loginContext = new LoginContext(contextAndServiceNameCallback.getContextName(), callbackHandler);
            loginContext.login();


            Subject clientSubject = loginContext.getSubject();
            Set<Principal> clientPrincipals = clientSubject.getPrincipals();
            if (clientPrincipals.isEmpty()) {
                throw new WSSecurityException(
                        WSSecurityException.ErrorCode.FAILURE,
                        "kerberosLoginError", "No Client principals found after login"

View Full Code Here

Examples of javax.security.auth.login.LoginContext

            }
            if (contextAndServiceNameCallback.getServiceName() == null) {
                throw new WSSecurityException(WSSecurityException.ErrorCode.FAILURE, "kerberosCallbackServiceNameNotSupplied");
            }


            LoginContext loginContext = new LoginContext(contextAndServiceNameCallback.getContextName(), callbackHandler);
            loginContext.login();


            // Get the service name to use - fall back on the principal
            this.subject = loginContext.getSubject();


            String service = contextAndServiceNameCallback.getServiceName();
            if (service == null) {
                Set<Principal> principals = subject.getPrincipals();
                if (principals.isEmpty()) {

View Full Code Here

0 1 2 3 4 5

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.