KerberosConfig

java.lang.Object
- org.apache.directory.server.kerberos.KerberosConfig

Direct Known Subclasses:: ChangePasswordConfig

public class KerberosConfig
extends java.lang.Object

Field Summary

Fields
Modifier and Type	Field and Description
`private long`	`allowableClockSkew` The allowable clock skew.
`static long`	`DEFAULT_ALLOWABLE_CLOCKSKEW` The default allowable clockskew
`static boolean`	`DEFAULT_EMPTY_ADDRESSES_ALLOWED` The default for allowing empty addresses
`static java.lang.String[]`	`DEFAULT_ENCRYPTION_TYPES` The default encryption types
`static boolean`	`DEFAULT_PA_ENC_TIMESTAMP_REQUIRED` The default for requiring encrypted timestamps
`static java.lang.String`	`DEFAULT_PRINCIPAL` The default kdc service principal
`static java.lang.String`	`DEFAULT_REALM` The default kdc realm
`static boolean`	`DEFAULT_TGS_FORWARDABLE_ALLOWED` The default for allowing forwardable tickets
`static int`	`DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME` The default for the maximum renewable lifetime
`static int`	`DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME` The default for the maximum ticket lifetime
`static int`	`DEFAULT_TGS_MINIMUM_TICKET_LIFETIME` The default for the minimum ticket lifetime, 4 minutes
`static boolean`	`DEFAULT_TGS_POSTDATED_ALLOWED` The default for allowing postdated tickets
`static boolean`	`DEFAULT_TGS_PROXIABLE_ALLOWED` The default for allowing proxiable tickets
`static boolean`	`DEFAULT_TGS_RENEWABLE_ALLOWED` The default for allowing renewable tickets
`static boolean`	`DEFAULT_VERIFY_BODY_CHECKSUM` The default for verifying the body checksum
`private java.util.Set<EncryptionType>`	`encryptionTypes` The encryption types.
`private boolean`	`isBodyChecksumVerified` Whether to verify the body checksum.
`private boolean`	`isEmptyAddressesAllowed` Whether empty addresses are allowed.
`private boolean`	`isForwardableAllowed` Whether forwardable addresses are allowed.
`private boolean`	`isPaEncTimestampRequired` Whether pre-authentication by encrypted timestamp is required.
`private boolean`	`isPostdatedAllowed` Whether postdated tickets are allowed.
`private boolean`	`isProxiableAllowed` Whether proxiable addresses are allowed.
`private boolean`	`isRenewableAllowed` Whether renewable tickets are allowed.
`private long`	`maximumRenewableLifetime` The maximum renewable lifetime.
`private long`	`maximumTicketLifetime` The maximum ticket lifetime.
`private long`	`minimumTicketLifetime` The minimum ticket lifetime.
`private java.lang.String`	`primaryRealm` The primary realm
`private java.lang.String`	`searchBaseDn`
`private java.lang.String`	`servicePrincipal` The service principal name.
`private javax.security.auth.kerberos.KerberosPrincipal`	`srvPrincipal`

Constructor Summary

Constructors
Constructor and Description

KerberosConfig()

Constructors
Constructor and Description
`KerberosConfig()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`long`	`getAllowableClockSkew()` Returns the allowable clock skew.
`java.util.Set<EncryptionType>`	`getEncryptionTypes()` Returns the encryption types.
`long`	`getMaximumRenewableLifetime()`
`long`	`getMaximumTicketLifetime()`
`long`	`getMinimumTicketLifetime()`
`java.lang.String`	`getPrimaryRealm()` Returns the primary realm.
`java.lang.String`	`getSearchBaseDn()`
`javax.security.auth.kerberos.KerberosPrincipal`	`getServicePrincipal()` Returns the service principal for this KDC/changepwd service.
`boolean`	`isBodyChecksumVerified()`
`boolean`	`isEmptyAddressesAllowed()`
`boolean`	`isForwardableAllowed()`
`boolean`	`isPaEncTimestampRequired()` Returns whether pre-authentication by encrypted timestamp is required.
`boolean`	`isPostdatedAllowed()`
`boolean`	`isProxiableAllowed()`
`boolean`	`isRenewableAllowed()`
`private void`	`prepareEncryptionTypes()` Construct an HashSet containing the default encryption types
`void`	`setAllowableClockSkew(long allowableClockSkew)`
`void`	`setBodyChecksumVerified(boolean isBodyChecksumVerified)`
`void`	`setEmptyAddressesAllowed(boolean isEmptyAddressesAllowed)`
`void`	`setEncryptionTypes(EncryptionType[] encryptionTypes)` Initialize the encryptionTypes set
`void`	`setEncryptionTypes(java.util.Set<EncryptionType> encryptionTypes)` Initialize the encryptionTypes set
`void`	`setForwardableAllowed(boolean isForwardableAllowed)`
`void`	`setMaximumRenewableLifetime(long maximumRenewableLifetime)`
`void`	`setMaximumTicketLifetime(long maximumTicketLifetime)`
`void`	`setMinimumTicketLifetime(long minimumTicketLifetime)`
`void`	`setPaEncTimestampRequired(boolean isPaEncTimestampRequired)`
`void`	`setPostdatedAllowed(boolean isPostdatedAllowed)`
`void`	`setPrimaryRealm(java.lang.String primaryRealm)`
`void`	`setProxiableAllowed(boolean isProxiableAllowed)`
`void`	`setRenewableAllowed(boolean isRenewableAllowed)`
`void`	`setSearchBaseDn(java.lang.String searchBaseDn)`
`void`	`setServicePrincipal(java.lang.String kdcPrincipal)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Field Detail
  - DEFAULT_PRINCIPAL
```
public static final java.lang.String DEFAULT_PRINCIPAL
```
    The default kdc service principal
    
    See Also:
    
    Constant Field Values
  - DEFAULT_REALM
```
public static final java.lang.String DEFAULT_REALM
```
    The default kdc realm
    
    See Also:
    
    Constant Field Values
  - DEFAULT_ALLOWABLE_CLOCKSKEW
```
public static final long DEFAULT_ALLOWABLE_CLOCKSKEW
```
    The default allowable clockskew
    
    See Also:
    
    Constant Field Values
  - DEFAULT_EMPTY_ADDRESSES_ALLOWED
```
public static final boolean DEFAULT_EMPTY_ADDRESSES_ALLOWED
```
    The default for allowing empty addresses
    
    See Also:
    
    Constant Field Values
  - DEFAULT_PA_ENC_TIMESTAMP_REQUIRED
```
public static final boolean DEFAULT_PA_ENC_TIMESTAMP_REQUIRED
```
    The default for requiring encrypted timestamps
    
    See Also:
    
    Constant Field Values
  - DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME
```
public static final int DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME
```
    The default for the maximum ticket lifetime
    
    See Also:
    
    Constant Field Values
  - DEFAULT_TGS_MINIMUM_TICKET_LIFETIME
```
public static final int DEFAULT_TGS_MINIMUM_TICKET_LIFETIME
```
    The default for the minimum ticket lifetime, 4 minutes
    
    See Also:
    
    Constant Field Values
  - DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME
```
public static final int DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME
```
    The default for the maximum renewable lifetime
    
    See Also:
    
    Constant Field Values
  - DEFAULT_TGS_FORWARDABLE_ALLOWED
```
public static final boolean DEFAULT_TGS_FORWARDABLE_ALLOWED
```
    The default for allowing forwardable tickets
    
    See Also:
    
    Constant Field Values
  - DEFAULT_TGS_PROXIABLE_ALLOWED
```
public static final boolean DEFAULT_TGS_PROXIABLE_ALLOWED
```
    The default for allowing proxiable tickets
    
    See Also:
    
    Constant Field Values
  - DEFAULT_TGS_POSTDATED_ALLOWED
```
public static final boolean DEFAULT_TGS_POSTDATED_ALLOWED
```
    The default for allowing postdated tickets
    
    See Also:
    
    Constant Field Values
  - DEFAULT_TGS_RENEWABLE_ALLOWED
```
public static final boolean DEFAULT_TGS_RENEWABLE_ALLOWED
```
    The default for allowing renewable tickets
    
    See Also:
    
    Constant Field Values
  - DEFAULT_VERIFY_BODY_CHECKSUM
```
public static final boolean DEFAULT_VERIFY_BODY_CHECKSUM
```
    The default for verifying the body checksum
    
    See Also:
    
    Constant Field Values
  - DEFAULT_ENCRYPTION_TYPES
```
public static final java.lang.String[] DEFAULT_ENCRYPTION_TYPES
```
    The default encryption types
  - primaryRealm
```
private java.lang.String primaryRealm
```
    The primary realm
  - servicePrincipal
```
private java.lang.String servicePrincipal
```
    The service principal name.
  - allowableClockSkew
```
private long allowableClockSkew
```
    The allowable clock skew.
  - isPaEncTimestampRequired
```
private boolean isPaEncTimestampRequired
```
    Whether pre-authentication by encrypted timestamp is required.
  - maximumTicketLifetime
```
private long maximumTicketLifetime
```
    The maximum ticket lifetime.
  - minimumTicketLifetime
```
private long minimumTicketLifetime
```
    The minimum ticket lifetime.
  - maximumRenewableLifetime
```
private long maximumRenewableLifetime
```
    The maximum renewable lifetime.
  - isEmptyAddressesAllowed
```
private boolean isEmptyAddressesAllowed
```
    Whether empty addresses are allowed.
  - isForwardableAllowed
```
private boolean isForwardableAllowed
```
    Whether forwardable addresses are allowed.
  - isProxiableAllowed
```
private boolean isProxiableAllowed
```
    Whether proxiable addresses are allowed.
  - isPostdatedAllowed
```
private boolean isPostdatedAllowed
```
    Whether postdated tickets are allowed.
  - isRenewableAllowed
```
private boolean isRenewableAllowed
```
    Whether renewable tickets are allowed.
  - isBodyChecksumVerified
```
private boolean isBodyChecksumVerified
```
    Whether to verify the body checksum.
  - encryptionTypes
```
private java.util.Set<EncryptionType> encryptionTypes
```
    The encryption types.
  - srvPrincipal
```
private javax.security.auth.kerberos.KerberosPrincipal srvPrincipal
```
  - searchBaseDn
```
private java.lang.String searchBaseDn
```
- Constructor Detail
  - KerberosConfig
```
public KerberosConfig()
```
- Method Detail
  - getAllowableClockSkew
```
public long getAllowableClockSkew()
```
    Returns the allowable clock skew.
    
    Returns:
    
    The allowable clock skew.
  - isEmptyAddressesAllowed
```
public boolean isEmptyAddressesAllowed()
```
    Returns:
    
    the isEmptyAddressesAllowed
  - isForwardableAllowed
```
public boolean isForwardableAllowed()
```
    Returns:
    
    the isForwardableAllowed
  - isPostdatedAllowed
```
public boolean isPostdatedAllowed()
```
    Returns:
    
    the isPostdatedAllowed
  - isProxiableAllowed
```
public boolean isProxiableAllowed()
```
    Returns:
    
    the isProxiableAllowed
  - isRenewableAllowed
```
public boolean isRenewableAllowed()
```
    Returns:
    
    the isRenewableAllowed
  - getMaximumRenewableLifetime
```
public long getMaximumRenewableLifetime()
```
    Returns:
    
    the maximumRenewableLifetime
  - getMaximumTicketLifetime
```
public long getMaximumTicketLifetime()
```
    Returns:
    
    the maximumTicketLifetime
  - setAllowableClockSkew
```
public void setAllowableClockSkew(long allowableClockSkew)
```
    Parameters:
    
    allowableClockSkew - the allowableClockSkew to set
  - setEncryptionTypes
```
public void setEncryptionTypes(EncryptionType[] encryptionTypes)
```
    Initialize the encryptionTypes set
    
    Parameters:
    
    encryptionTypes - the encryptionTypes to set
  - setEncryptionTypes
```
public void setEncryptionTypes(java.util.Set<EncryptionType> encryptionTypes)
```
    Initialize the encryptionTypes set
    
    Parameters:
    
    encryptionTypes - the encryptionTypes to set
  - setEmptyAddressesAllowed
```
public void setEmptyAddressesAllowed(boolean isEmptyAddressesAllowed)
```
    Parameters:
    
    isEmptyAddressesAllowed - the isEmptyAddressesAllowed to set
  - setForwardableAllowed
```
public void setForwardableAllowed(boolean isForwardableAllowed)
```
    Parameters:
    
    isForwardableAllowed - the isForwardableAllowed to set
  - setPaEncTimestampRequired
```
public void setPaEncTimestampRequired(boolean isPaEncTimestampRequired)
```
    Parameters:
    
    isPaEncTimestampRequired - the isPaEncTimestampRequired to set
  - setPostdatedAllowed
```
public void setPostdatedAllowed(boolean isPostdatedAllowed)
```
    Parameters:
    
    isPostdatedAllowed - the isPostdatedAllowed to set
  - setProxiableAllowed
```
public void setProxiableAllowed(boolean isProxiableAllowed)
```
    Parameters:
    
    isProxiableAllowed - the isProxiableAllowed to set
  - setRenewableAllowed
```
public void setRenewableAllowed(boolean isRenewableAllowed)
```
    Parameters:
    
    isRenewableAllowed - the isRenewableAllowed to set
  - setServicePrincipal
```
public void setServicePrincipal(java.lang.String kdcPrincipal)
```
    Parameters:
    
    kdcPrincipal - the kdcPrincipal to set
  - setMaximumRenewableLifetime
```
public void setMaximumRenewableLifetime(long maximumRenewableLifetime)
```
    Parameters:
    
    maximumRenewableLifetime - the maximumRenewableLifetime to set
  - setMaximumTicketLifetime
```
public void setMaximumTicketLifetime(long maximumTicketLifetime)
```
    Parameters:
    
    maximumTicketLifetime - the maximumTicketLifetime to set
  - setPrimaryRealm
```
public void setPrimaryRealm(java.lang.String primaryRealm)
```
    Parameters:
    
    primaryRealm - the primaryRealm to set
  - getPrimaryRealm
```
public java.lang.String getPrimaryRealm()
```
    Returns the primary realm.
    
    Returns:
    
    The primary realm.
  - getServicePrincipal
```
public javax.security.auth.kerberos.KerberosPrincipal getServicePrincipal()
```
    Returns the service principal for this KDC/changepwd service.
    
    Returns:
    
    The service principal for this KDC/changepwd service.
  - getEncryptionTypes
```
public java.util.Set<EncryptionType> getEncryptionTypes()
```
    Returns the encryption types.
    
    Returns:
    
    The encryption types.
  - isPaEncTimestampRequired
```
public boolean isPaEncTimestampRequired()
```
    Returns whether pre-authentication by encrypted timestamp is required.
    
    Returns:
    
    Whether pre-authentication by encrypted timestamp is required.
  - isBodyChecksumVerified
```
public boolean isBodyChecksumVerified()
```
    Returns:
    
    the isBodyChecksumVerified
  - setBodyChecksumVerified
```
public void setBodyChecksumVerified(boolean isBodyChecksumVerified)
```
    Parameters:
    
    isBodyChecksumVerified - the isBodyChecksumVerified to set
  - getSearchBaseDn
```
public java.lang.String getSearchBaseDn()
```
  - setSearchBaseDn
```
public void setSearchBaseDn(java.lang.String searchBaseDn)
```
  - getMinimumTicketLifetime
```
public long getMinimumTicketLifetime()
```
  - setMinimumTicketLifetime
```
public void setMinimumTicketLifetime(long minimumTicketLifetime)
```
  - prepareEncryptionTypes
```
private void prepareEncryptionTypes()
```
    Construct an HashSet containing the default encryption types

Class KerberosConfig

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

DEFAULT_PRINCIPAL

DEFAULT_REALM

DEFAULT_ALLOWABLE_CLOCKSKEW

DEFAULT_EMPTY_ADDRESSES_ALLOWED

DEFAULT_PA_ENC_TIMESTAMP_REQUIRED

DEFAULT_TGS_MAXIMUM_TICKET_LIFETIME

DEFAULT_TGS_MINIMUM_TICKET_LIFETIME

DEFAULT_TGS_MAXIMUM_RENEWABLE_LIFETIME

DEFAULT_TGS_FORWARDABLE_ALLOWED

DEFAULT_TGS_PROXIABLE_ALLOWED

DEFAULT_TGS_POSTDATED_ALLOWED

DEFAULT_TGS_RENEWABLE_ALLOWED

DEFAULT_VERIFY_BODY_CHECKSUM

DEFAULT_ENCRYPTION_TYPES

primaryRealm

servicePrincipal

allowableClockSkew

isPaEncTimestampRequired

maximumTicketLifetime

minimumTicketLifetime

maximumRenewableLifetime

isEmptyAddressesAllowed

isForwardableAllowed

isProxiableAllowed

isPostdatedAllowed

isRenewableAllowed

isBodyChecksumVerified

encryptionTypes

srvPrincipal

searchBaseDn

Constructor Detail

KerberosConfig

Method Detail

getAllowableClockSkew

isEmptyAddressesAllowed

isForwardableAllowed

isPostdatedAllowed

isProxiableAllowed

isRenewableAllowed

getMaximumRenewableLifetime

getMaximumTicketLifetime

setAllowableClockSkew

setEncryptionTypes

setEncryptionTypes

setEmptyAddressesAllowed

setForwardableAllowed

setPaEncTimestampRequired

setPostdatedAllowed

setProxiableAllowed

setRenewableAllowed

setServicePrincipal

setMaximumRenewableLifetime

setMaximumTicketLifetime

setPrimaryRealm

getPrimaryRealm

getServicePrincipal

getEncryptionTypes

isPaEncTimestampRequired

isBodyChecksumVerified

setBodyChecksumVerified

getSearchBaseDn

setSearchBaseDn

getMinimumTicketLifetime

setMinimumTicketLifetime

prepareEncryptionTypes