Home » geronimo-2.2-source-release » org.apache.geronimo.security.realm.providers » [javadoc | source]
public class: CertificatePropertiesFileLoginModule [javadoc | source]

All Implemented Interfaces:

An example LoginModule that reads a list of credentials and group from a file on disk. Authentication is provided by the SSL layer supplying the client certificate. All we check is that it is present. The file should be formatted using standard Java properties syntax. Expects to be run by a GenericSecurityRealm (doesn't work on its own). The usersURI property file should have lines of the form token=certificatename where certificate name is X509Certificate.getSubjectX500Principal().getName() The groupsURI property file should have lines of the form group=token1,token2,... where the tokens were associated to the certificate names in the usersURI properties file. This login module checks security credentials so the lifecycle methods must return true to indicate success or throw LoginException to indicate failure.
Field Summary
public static final  String USERS_URI     
public static final  String GROUPS_URI     
public static final  List<String> supportedOptions     
final  Map groups     
Method from org.apache.geronimo.security.realm.providers.CertificatePropertiesFileLoginModule Summary:
abort,   commit,   initialize,   loadProperties,   login,   logout
Methods from java.lang.Object:
clone,   equals,   finalize,   getClass,   hashCode,   notify,   notifyAll,   toString,   wait,   wait,   wait
Method from org.apache.geronimo.security.realm.providers.CertificatePropertiesFileLoginModule Detail:
 public boolean abort() throws LoginException 
 public boolean commit() throws LoginException 
 public  void initialize(Subject subject,
    CallbackHandler callbackHandler,
    Map sharedState,
    Map options) 
 public  void loadProperties(ServerInfo serverInfo,
    URI usersURI,
    URI groupURI) throws GeronimoSecurityException 
 public boolean login() throws LoginException 
    This LoginModule is not to be ignored. So, this method should never return false.
 public boolean logout() throws LoginException