public class KerberosUtil extends Object
| Modifier and Type | Field and Description | 
|---|---|
| static Oid | GSS_KRB5_MECH_OID | 
| static Oid | GSS_SPNEGO_MECH_OID | 
| static Oid | NT_GSS_KRB5_PRINCIPAL_OID | 
| Constructor and Description | 
|---|
| KerberosUtil() | 
| Modifier and Type | Method and Description | 
|---|---|
| static String | getDefaultRealm()Return the default realm for this JVM. | 
| static String | getDefaultRealmProtected()Return the default realm for this JVM. | 
| static String | getDomainRealm(String shortprinc) | 
| static String | getKrb5LoginModuleName() | 
| static String | getLocalHostName() | 
| static Oid | getOidInstance(String oidName)Deprecated.  | 
| static String[] | getPrincipalNames(String keytab,
                 Pattern pattern)Get all the unique principals from keytabfile which matches a pattern. | 
| static String | getServicePrincipal(String service,
                   String hostname)Create Kerberos principal for a given service and hostname,
 inferring realm from the fqdn of the hostname. | 
| static String | getTokenServerName(byte[] rawToken)Extract the TGS server principal from the given gssapi kerberos or spnego
 wrapped token. | 
| static boolean | hasKerberosKeyTab(Subject subject)Check if the subject contains Kerberos keytab related objects. | 
| static boolean | hasKerberosTicket(Subject subject)Check if the subject contains Kerberos ticket. | 
public static final Oid GSS_SPNEGO_MECH_OID
public static final Oid GSS_KRB5_MECH_OID
public static final Oid NT_GSS_KRB5_PRINCIPAL_OID
public static String getKrb5LoginModuleName()
@Deprecated public static Oid getOidInstance(String oidName) throws ClassNotFoundException, GSSException, NoSuchFieldException, IllegalAccessException
GSS_SPNEGO_MECH_OID, GSS_KRB5_MECH_OID,
 or NT_GSS_KRB5_PRINCIPAL_OID instead.oidName - The oid NameClassNotFoundException - for backward compatibility.GSSException - for backward compatibility.NoSuchFieldException - if the input is not supported.IllegalAccessException - for backward compatibility.public static String getDefaultRealm() throws ClassNotFoundException, NoSuchMethodException, IllegalArgumentException, IllegalAccessException, InvocationTargetException
IllegalArgumentException - If the default realm does not exist.ClassNotFoundException - Not thrown. Exists for compatibility.NoSuchMethodException - Not thrown. Exists for compatibility.IllegalAccessException - Not thrown. Exists for compatibility.InvocationTargetException - Not thrown. Exists for compatibility.public static String getDefaultRealmProtected()
public static String getLocalHostName() throws UnknownHostException
UnknownHostExceptionpublic static final String getServicePrincipal(String service, String hostname) throws UnknownHostException
service - Service for which you want to generate the principal.hostname - Fully-qualified domain name.UnknownHostException - If no IP address for the local host could be found.public static final String[] getPrincipalNames(String keytab, Pattern pattern) throws IOException
keytab - Name of the keytab file to be read.pattern - pattern to be matched.IOException - if cannot get the principal namepublic static boolean hasKerberosKeyTab(Subject subject)
subject - subject to be checkedpublic static boolean hasKerberosTicket(Subject subject)
subject - subject to be checkedpublic static String getTokenServerName(byte[] rawToken)
rawToken - bytes of the gss tokenIllegalArgumentException - if token is undecodableCopyright © 2008–2023 Apache Software Foundation. All rights reserved.