OpenJDK 1.23 · sun.security.krb5.KrbApReq · APIdia, the JavaDoc alternative

Field Summary

Modifier and Type	Field and Description
private APReq	apReqMessg
private Authenticator	authenticator
private Credentials	creds
private KerberosTime	ctime
private int	cusec
private static final char[]	hexConst
private byte[]	obuf
private static ReplayCache	rcache

Constructor Summary

Access	Constructor and Description
public	KrbApReq(Credentials the `Credentials` to be used to construct the AP Request protocol message. tgsCred, boolean Whether mutual authentication is required mutualRequired, boolean Whether the subkey is to be used to protect this specific application session. If this is not set then the session key from the ticket will be used. useSubKey, boolean useSeqNumber, Checksum checksum of the application data that accompanies the KRB_AP_REQ. cksum) Constructs an AP-REQ message to send to the peer.
public	KrbApReq(byte[] The message received from the peer message, Krb5AcceptCredential `KrbAcceptCredential` containing keys to decrypt the message; key selected will depend on etype used to encrypt data cred, InetAddress initiator) Constructs an AP-REQ message from the bytes received from the peer.
pack-priv	KrbApReq(APOptions apOptions, Ticket ticket, EncryptionKey key, PrincipalName cname, Checksum cksum, KerberosTime ctime, EncryptionKey subKey, SeqNumber seqNumber, AuthorizationData authorizationData) used by KrbTgsReq

Method Summary

Modifier and Type	Method and Description
private void	authenticate(Krb5AcceptCredential cred, InetAddress initiator)
private static void	checkPermittedEType(int target)
private void	createMessage(APOptions apOptions, Ticket ticket, EncryptionKey key, PrincipalName cname, Checksum cksum, KerberosTime ctime, EncryptionKey subKey, SeqNumber seqNumber, AuthorizationData authorizationData, int usage)
pack-priv int	cusec()
pack-priv void	decode()
pack-priv void	decode(DerValue encoding)
pack-priv APOptions	getAPOptions()
public Checksum	getChecksum() Returns the optional Checksum stored in the Authenticator for this message.
public PrincipalName	getClient() Returns the principal name of the client that generated this message.
public Credentials	getCreds() Returns the credentials that are contained in the ticket that is part of this AP-REQ.
pack-priv KerberosTime	getCtime()
public byte[]	getMessage() Returns the ASN.1 encoding that should be sent to the peer.
public boolean	getMutualAuthRequired() Returns true if mutual authentication is required and hence an AP-REP will need to be generated.
public Integer	getSeqNumber() Returns the optional sequence number stored in the Authenticator for this message.
public EncryptionKey	getSubKey() Returns the optional subkey stored in the Authenticator for this message.
private void	init(APOptions options, Credentials tgs_creds, Checksum cksum, EncryptionKey subKey, SeqNumber seqNumber, AuthorizationData authorizationData, int usage)
private void	init(APOptions apOptions, Ticket ticket, EncryptionKey key, PrincipalName cname, Checksum cksum, KerberosTime ctime, EncryptionKey subKey, SeqNumber seqNumber, AuthorizationData authorizationData, int usage)
pack-priv boolean	useSessionKey()

Inherited from java.lang.Object:: clone equals finalize getClass hashCode notify notifyAll toString wait wait wait

Field Detail

apReqMessg	back to summary
private APReq apReqMessg

authenticator	back to summary
private Authenticator authenticator

creds	back to summary
private Credentials creds

ctime	back to summary
private KerberosTime ctime

cusec	back to summary
private int cusec

hexConst	back to summary
private static final char[] hexConst

obuf	back to summary
private byte[] obuf

rcache	back to summary
private static ReplayCache rcache

Constructor Detail

KrbApReq back to summary

KrbApReq	back to summary
public KrbApReq(Credentials tgsCred, boolean mutualRequired, boolean useSubKey, boolean useSeqNumber, Checksum cksum) throws Asn1Exception, KrbCryptoException, KrbException, IOException Constructs an AP-REQ message to send to the peer. Parameters tgsCred:Credentials the `Credentials` to be used to construct the AP Request protocol message. mutualRequired:boolean Whether mutual authentication is required useSubKey:boolean Whether the subkey is to be used to protect this specific application session. If this is not set then the session key from the ticket will be used. cksum:Checksum checksum of the application data that accompanies the KRB_AP_REQ. Exceptions KrbException: for any Kerberos protocol specific error IOException: for any IO related errors (e.g. socket operations)

public KrbApReq(Credentials tgsCred, boolean mutualRequired, boolean useSubKey, boolean useSeqNumber, Checksum cksum) throws Asn1Exception, KrbCryptoException, KrbException, IOException

Constructs an AP-REQ message to send to the peer.

Parameters

tgsCred:Credentials: the Credentials to be used to construct the AP Request protocol message.
mutualRequired:boolean: Whether mutual authentication is required
useSubKey:boolean: Whether the subkey is to be used to protect this specific application session. If this is not set then the session key from the ticket will be used.
cksum:Checksum: checksum of the application data that accompanies the KRB_AP_REQ.

Exceptions

KrbException:: for any Kerberos protocol specific error
IOException:: for any IO related errors (e.g. socket operations)

KrbApReq back to summary

KrbApReq	back to summary
public KrbApReq(byte[] message, Krb5AcceptCredential cred, InetAddress initiator) throws KrbException, IOException Constructs an AP-REQ message from the bytes received from the peer. Parameters message:byte[] The message received from the peer cred:Krb5AcceptCredential `KrbAcceptCredential` containing keys to decrypt the message; key selected will depend on etype used to encrypt data Exceptions KrbException: for any Kerberos protocol specific error IOException: for any IO related errors (e.g. socket operations)

public KrbApReq(byte[] message, Krb5AcceptCredential cred, InetAddress initiator) throws KrbException, IOException

Constructs an AP-REQ message from the bytes received from the peer.