public class ClientCertificateLoginModule extends Object implements LoginModule
This LoginModule authenticates users with X509 certificates.
If testUser successfully authenticates itself, a PrincipalImpl with the testUser's
username is added to the Subject.
This LoginModule recognizes the debug option. If set to true in the login Configuration, debug messages will be output to the output stream, System.out.
| Constructor and Description |
|---|
ClientCertificateLoginModule() |
| Modifier and Type | Method and Description |
|---|---|
boolean |
abort()
This method is called if the LoginContext's overall authentication failed.
|
boolean |
commit()
This method is called if the LoginContext's overall authentication succeeded (the relevant
REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules succeeded).
|
void |
initialize(Subject subject,
CallbackHandler callbackHandler,
Map<String,?> sharedState,
Map<String,?> options)
Initialize this
LoginModule. |
boolean |
login()
Authenticate the user by prompting for a username and password.
|
boolean |
logout()
Logout the user.
|
static void |
setKeyStore(KeyStore keyStore) |
public void initialize(Subject subject, CallbackHandler callbackHandler, Map<String,?> sharedState, Map<String,?> options)
LoginModule.
initialize in interface LoginModulesubject - the Subject to be authenticated.
callbackHandler - a CallbackHandler for communicating with the end user
(prompting for usernames and passwords, for example).
sharedState - shared LoginModule state. (unused)
options - options specified in the login Configuration for this particular
LoginModule. Only used for the "debug" option.public boolean login()
throws LoginException
login in interface LoginModuleLoginModule should not be ignored.LoginException - if this LoginModule is unable to perform the
authentication.public boolean commit()
throws LoginException
This method is called if the LoginContext's overall authentication succeeded (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules succeeded).
If this LoginModule's own authentication attempt succeeded (checked by retrieving the private
state saved by the login method), then this method associates a
PrincipalImpl with the Subject located in the LoginModule.
If this LoginModule's own authentication attempted failed, then this method removes any state
that was originally saved.
commit in interface LoginModuleLoginException - if the commit fails.public boolean abort()
throws LoginException
This method is called if the LoginContext's overall authentication failed. (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules did not succeed).
If this LoginModule's own authentication attempt succeeded (checked by retrieving the private
state saved by the login and commit methods), then this method cleans
up any state that was originally saved.
abort in interface LoginModuleLoginException - if the abort fails.public boolean logout()
throws LoginException
This method removes the PrincipalImpl that was added by the commit
method.
logout in interface LoginModuleLoginModule should not be ignored.LoginException - if the logout fails.public static void setKeyStore(KeyStore keyStore)
Copyright © 2019. All rights reserved.