|
|||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectnet.sourceforge.spnego.SpnegoHttpFilter.Constants
public static final class SpnegoHttpFilter.Constants
Defines constants and parameter names that are used in the web.xml file, and HTTP request headers, etc.
This class is primarily used internally or by implementers of
custom http clients and by SpnegoFilterConfig
.
Field Summary | |
---|---|
static String |
ALLOW_BASIC
Servlet init param name in web.xml spnego.allow.basic. |
static String |
ALLOW_DELEGATION
Servlet init param name in web.xml spnego.allow.delegation. |
static String |
ALLOW_LOCALHOST
Servlet init param name in web.xml spnego.allow.localhost. |
static String |
ALLOW_UNSEC_BASIC
Servlet init param name in web.xml spnego.allow.unsecure.basic. |
static String |
AUTHN_HEADER
HTTP Response Header WWW-Authenticate. |
static String |
AUTHZ_HEADER
HTTP Request Header Authorization. |
static String |
BASIC_HEADER
HTTP Response Header Basic. |
static String |
CLIENT_MODULE
Servlet init param name in web.xml spnego.login.client.module. |
static String |
KRB5_CONF
Servlet init param name in web.xml spnego.krb5.conf. |
(package private) static String |
LOGGER_LEVEL
Specify logging level. |
(package private) static String |
LOGGER_NAME
Name of Spnego Logger. |
static String |
LOGIN_CONF
Servlet init param name in web.xml spnego.login.conf. |
static String |
NEGOTIATE_HEADER
HTTP Response Header Negotiate. |
(package private) static String |
NTLM_PROLOG
NTLM base64-encoded token start value. |
static String |
PREAUTH_PASSWORD
Servlet init param name in web.xml spnego.preauth.password. |
static String |
PREAUTH_USERNAME
Servlet init param name in web.xml spnego.preauth.username. |
static String |
PROMPT_NTLM
If server receives an NTLM token, the filter will return with a 401 and with Basic as the only option (no Negotiate) spnego.prompt.ntlm. |
static String |
SERVER_MODULE
Servlet init param name in web.xml spnego.login.server.module. |
Constructor Summary | |
---|---|
private |
SpnegoHttpFilter.Constants()
|
Method Summary |
---|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static final String ALLOW_BASIC
Set this value to true
in web.xml if the filter
should allow Basic Authentication.
It is recommended that you only allow Basic Authentication
if you have clients that cannot perform Kerberos authentication.
Also, you should consider requiring SSL/TLS by setting
spnego.allow.unsecure.basic
to false
.
public static final String ALLOW_DELEGATION
Set this value to true
if server should support
credential delegation requests.
Take a look at the DelegateServletRequest
for more
information about other pre-requisites.
public static final String ALLOW_LOCALHOST
Flag to indicate if requests coming from http://localhost or http://127.0.0.1 should not be authenticated using Kerberos.
This feature helps to obviate the requirement of creating an SPN for developer machines.
public static final String ALLOW_UNSEC_BASIC
Set this value to false
in web.xml if the filter
should reject connections that do not use SSL/TLS.
public static final String AUTHN_HEADER
The filter will respond with this header with a value of "Basic" and/or "Negotiate" (based on web.xml file).
public static final String AUTHZ_HEADER
Clients should send this header where the value is the authentication token(s).
public static final String BASIC_HEADER
The filter will set this as the value for the "WWW-Authenticate" header if "Basic" auth is allowed (based on web.xml file).
public static final String CLIENT_MODULE
The LoginModule name that exists in the login.conf file.
public static final String KRB5_CONF
The location of the krb5.conf file. On Windows, this file will
sometimes be named krb5.ini and reside %WINDOWS_ROOT%/krb5.ini
here.
By default, Java looks for the file in these locations and order:
static final String LOGGER_LEVEL
1 = FINEST 2 = FINER 3 = FINE 4 = CONFIG 5 = INFO 6 = WARNING 7 = SEVERE
static final String LOGGER_NAME
Example: Logger.getLogger(Constants.LOGGER_NAME)
public static final String LOGIN_CONF
The location of the login.conf file.
public static final String NEGOTIATE_HEADER
The filter will set this as the value for the "WWW-Authenticate" header. Note that the filter may also add another header with a value of "Basic" (if allowed by the web.xml file).
static final String NTLM_PROLOG
public static final String PREAUTH_PASSWORD
Network Domain password. For Windows, this is sometimes known as the Windows NT password.
public static final String PREAUTH_USERNAME
Network Domain username. For Windows, this is sometimes known as the Windows NT username.
public static final String PROMPT_NTLM
public static final String SERVER_MODULE
The LoginModule name that exists in the login.conf file.
Constructor Detail |
---|
private SpnegoHttpFilter.Constants()
|
|||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |