public class KerberosConfig extends Object
Modifier and Type | Field and Description |
---|---|
static long |
DEFAULT_ALLOWABLE_CLOCKSKEW
The default allowable clockskew
|
static boolean |
DEFAULT_EMPTY_ADDRESSES_ALLOWED
The default for allowing empty addresses
|
static String[] |
DEFAULT_ENCRYPTION_TYPES
The default encryption types
|
static boolean |
DEFAULT_PA_ENC_TIMESTAMP_REQUIRED
The default for requiring encrypted timestamps
|
static String |
DEFAULT_PRINCIPAL
The default kdc service principal
|
static String |
DEFAULT_REALM
The default kdc realm
|
static boolean |
DEFAULT_TGS_FORWARDABLE_ALLOWED
The default for allowing forwardable tickets
|
static int |
DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME
The default for the maximum renewable lifetime
|
static int |
DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME
The default for the maximum ticket lifetime
|
static int |
DEFAULT_TGS_MINIMUM_TICKET_LIFETIME
The default for the minimum ticket lifetime, 4 minutes
|
static boolean |
DEFAULT_TGS_POSTDATED_ALLOWED
The default for allowing postdated tickets
|
static boolean |
DEFAULT_TGS_PROXIABLE_ALLOWED
The default for allowing proxiable tickets
|
static boolean |
DEFAULT_TGS_RENEWABLE_ALLOWED
The default for allowing renewable tickets
|
static boolean |
DEFAULT_VERIFY_BODY_CHECKSUM
The default for verifying the body checksum
|
Constructor and Description |
---|
KerberosConfig() |
Modifier and Type | Method and Description |
---|---|
long |
getAllowableClockSkew()
Returns the allowable clock skew.
|
Set<EncryptionType> |
getEncryptionTypes()
Returns the encryption types.
|
long |
getMaximumRenewableLifetime() |
long |
getMaximumTicketLifetime() |
long |
getMinimumTicketLifetime() |
String |
getPrimaryRealm()
Returns the primary realm.
|
String |
getSearchBaseDn() |
KerberosPrincipal |
getServicePrincipal()
Returns the service principal for this KDC/changepwd service.
|
boolean |
isBodyChecksumVerified() |
boolean |
isEmptyAddressesAllowed() |
boolean |
isForwardableAllowed() |
boolean |
isPaEncTimestampRequired()
Returns whether pre-authentication by encrypted timestamp is required.
|
boolean |
isPostdatedAllowed() |
boolean |
isProxiableAllowed() |
boolean |
isRenewableAllowed() |
void |
setAllowableClockSkew(long allowableClockSkew) |
void |
setBodyChecksumVerified(boolean isBodyChecksumVerified) |
void |
setEmptyAddressesAllowed(boolean isEmptyAddressesAllowed) |
void |
setEncryptionTypes(EncryptionType[] encryptionTypes)
Initialize the encryptionTypes set
|
void |
setEncryptionTypes(Set<EncryptionType> encryptionTypes)
Initialize the encryptionTypes set
|
void |
setForwardableAllowed(boolean isForwardableAllowed) |
void |
setMaximumRenewableLifetime(long maximumRenewableLifetime) |
void |
setMaximumTicketLifetime(long maximumTicketLifetime) |
void |
setMinimumTicketLifetime(long minimumTicketLifetime) |
void |
setPaEncTimestampRequired(boolean isPaEncTimestampRequired) |
void |
setPostdatedAllowed(boolean isPostdatedAllowed) |
void |
setPrimaryRealm(String primaryRealm) |
void |
setProxiableAllowed(boolean isProxiableAllowed) |
void |
setRenewableAllowed(boolean isRenewableAllowed) |
void |
setSearchBaseDn(String searchBaseDn) |
void |
setServicePrincipal(String kdcPrincipal) |
public static final String DEFAULT_PRINCIPAL
public static final String DEFAULT_REALM
public static final long DEFAULT_ALLOWABLE_CLOCKSKEW
public static final boolean DEFAULT_EMPTY_ADDRESSES_ALLOWED
public static final boolean DEFAULT_PA_ENC_TIMESTAMP_REQUIRED
public static final int DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME
public static final int DEFAULT_TGS_MINIMUM_TICKET_LIFETIME
public static final int DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME
public static final boolean DEFAULT_TGS_FORWARDABLE_ALLOWED
public static final boolean DEFAULT_TGS_PROXIABLE_ALLOWED
public static final boolean DEFAULT_TGS_POSTDATED_ALLOWED
public static final boolean DEFAULT_TGS_RENEWABLE_ALLOWED
public static final boolean DEFAULT_VERIFY_BODY_CHECKSUM
public static final String[] DEFAULT_ENCRYPTION_TYPES
public long getAllowableClockSkew()
public boolean isEmptyAddressesAllowed()
public boolean isForwardableAllowed()
public boolean isPostdatedAllowed()
public boolean isProxiableAllowed()
public boolean isRenewableAllowed()
public long getMaximumRenewableLifetime()
public long getMaximumTicketLifetime()
public void setAllowableClockSkew(long allowableClockSkew)
allowableClockSkew
- the allowableClockSkew to setpublic void setEncryptionTypes(EncryptionType[] encryptionTypes)
encryptionTypes
- the encryptionTypes to setpublic void setEncryptionTypes(Set<EncryptionType> encryptionTypes)
encryptionTypes
- the encryptionTypes to setpublic void setEmptyAddressesAllowed(boolean isEmptyAddressesAllowed)
isEmptyAddressesAllowed
- the isEmptyAddressesAllowed to setpublic void setForwardableAllowed(boolean isForwardableAllowed)
isForwardableAllowed
- the isForwardableAllowed to setpublic void setPaEncTimestampRequired(boolean isPaEncTimestampRequired)
isPaEncTimestampRequired
- the isPaEncTimestampRequired to setpublic void setPostdatedAllowed(boolean isPostdatedAllowed)
isPostdatedAllowed
- the isPostdatedAllowed to setpublic void setProxiableAllowed(boolean isProxiableAllowed)
isProxiableAllowed
- the isProxiableAllowed to setpublic void setRenewableAllowed(boolean isRenewableAllowed)
isRenewableAllowed
- the isRenewableAllowed to setpublic void setServicePrincipal(String kdcPrincipal)
kdcPrincipal
- the kdcPrincipal to setpublic void setMaximumRenewableLifetime(long maximumRenewableLifetime)
maximumRenewableLifetime
- the maximumRenewableLifetime to setpublic void setMaximumTicketLifetime(long maximumTicketLifetime)
maximumTicketLifetime
- the maximumTicketLifetime to setpublic void setPrimaryRealm(String primaryRealm)
primaryRealm
- the primaryRealm to setpublic String getPrimaryRealm()
public KerberosPrincipal getServicePrincipal()
public Set<EncryptionType> getEncryptionTypes()
public boolean isPaEncTimestampRequired()
public boolean isBodyChecksumVerified()
public void setBodyChecksumVerified(boolean isBodyChecksumVerified)
isBodyChecksumVerified
- the isBodyChecksumVerified to setpublic String getSearchBaseDn()
public void setSearchBaseDn(String searchBaseDn)
public long getMinimumTicketLifetime()
public void setMinimumTicketLifetime(long minimumTicketLifetime)
Copyright © 2017. All rights reserved.