Examples of org.apache.directory.shared.kerberos.messages.ApReq

Package org.apache.directory.shared.kerberos.messages

Examples of org.apache.directory.shared.kerberos.messages.ApReq

org.apache.directory.shared.kerberos.messages.ApReq

AP-REQ message component . It will store the object described by the ASN.1 grammar :

 AP-REQ          ::= [APPLICATION 14] SEQUENCE { pvno            [0] INTEGER (5), msg-type        [1] INTEGER (14), ap-options      [2] APOptions, ticket          [3] Ticket, authenticator   [4] EncryptedData -- Authenticator }

@author Apache Directory Project

        if ( undecodedAuthHeader == null )
        {
            throw new KerberosException( ErrorType.KDC_ERR_PADATA_TYPE_NOSUPP );
        }


        ApReq authHeader = KerberosDecoder.decodeApReq( undecodedAuthHeader );


        Ticket tgt = authHeader.getTicket();


        tgsContext.setAuthHeader( authHeader );
        tgsContext.setTgt( tgt );
    }

View Full Code Here

    }




    private static void verifyTgtAuthHeader( TicketGrantingContext tgsContext ) throws KerberosException
    {
        ApReq authHeader = tgsContext.getAuthHeader();
        Ticket tgt = tgsContext.getTgt();


        KdcOptions kdcOptions = tgsContext.getRequest().getKdcReqBody().getKdcOptions();
        boolean isValidate = kdcOptions.get( KdcOptions.VALIDATE );

View Full Code Here

            authenticator.setSubKey( sessionKey );
        }
        
        EncryptedData authnData = cipherTextHandler.encrypt( sessionKey, getEncoded( authenticator ), KeyUsage.TGS_REQ_PA_TGS_REQ_PADATA_AP_REQ_TGS_SESS_KEY );
        
        ApReq apReq = new ApReq();
        
        apReq.setAuthenticator( authnData );
        apReq.setTicket( srvTktReq.getTgt().getTicket() );


        apReq.setApOptions( srvTktReq.getApOptions() );
        
        KdcReqBody tgsReqBody = new KdcReqBody();
        tgsReqBody.setKdcOptions( srvTktReq.getKdcOptions() );
        tgsReqBody.setRealm( KdcClientUtil.extractRealm( serverPrincipal ) );
        tgsReqBody.setTill( getDefaultTill() );

View Full Code Here

            clientTgtReq.setPassword( oldPassword );
            clientTgtReq.setServerPrincipal( "kadmin/changepw@" + KdcClientUtil.extractRealm( clientPrincipal ) );
            
            TgTicket tgt = getTgt( clientTgtReq );
            
            ApReq apReq = new ApReq();
            ApOptions options = new ApOptions();
            apReq.setApOptions( options );
            apReq.setTicket( tgt.getTicket() );
            
            Authenticator authenticator = new Authenticator();
            authenticator.setCName( new PrincipalName( tgt.getClientName(), PrincipalNameType.KRB_NT_PRINCIPAL ) );
            authenticator.setCRealm( tgt.getRealm() );
            KerberosTime ctime = new KerberosTime();
            authenticator.setCTime( ctime );
            authenticator.setCusec( 0 );
            authenticator.setSeqNumber( nonceGenerator.nextInt() );
            
            EncryptionKey subKey = RandomKeyFactory.getRandomKey( usedEType );
            
            authenticator.setSubKey( subKey );
            
            EncryptedData authData = cipherTextHandler.encrypt( tgt.getSessionKey(), getEncoded( authenticator ), KeyUsage.AP_REQ_AUTHNT_SESS_KEY );
            apReq.setAuthenticator( authData );
            
            
            KrbPriv privateMessage = new KrbPriv();
            
            EncKrbPrivPart part = new EncKrbPrivPart();

View Full Code Here

        {
            throw new KerberosException( ErrorType.KRB_AP_ERR_BAD_INTEGRITY, de );
        }


        // get the decoded ApReq
        ApReq apReq = ( ( ApReqContainer ) apReqContainer ).getApReq();


        return apReq;
    }

View Full Code Here

        catch ( DecoderException de )
        {
            fail( de.getMessage() );
        }


        ApReq apReq = apReqContainer.getApReq();


        assertTrue( apReq instanceof ApReq );


        // Check the encoding
        int length = apReq.computeLength();


        // Check the length
        assertEquals( 0x6C, length );


        // Check the encoding
        ByteBuffer encodedPdu = ByteBuffer.allocate( length );


        try
        {
            encodedPdu = apReq.encode( encodedPdu );


            // Check the length
            assertEquals( 0x6C, encodedPdu.limit() );
        }
        catch ( EncoderException ee )

View Full Code Here

            // This will generate a PROTOCOL_ERROR
            throw new DecoderException( I18n.err( I18n.ERR_04067 ) );
        }


        // Create the AP-REQ now
        ApReq apReq = new ApReq();


        apReqContainer.setApReq( apReq );
    }

View Full Code Here

        // Update the parent
        apReqContainer.updateParent();


        // Store the Ticket in the container
        Ticket ticket = ticketContainer.getTicket();
        ApReq apReq = apReqContainer.getApReq();
        apReq.setTicket( ticket );


        if ( IS_DEBUG )
        {
            LOG.debug( "Stored ticket:  {}", ticket );
        }

View Full Code Here

     * @throws IOException
     */
    protected PaData[] getPreAuthenticationData( Ticket ticket, EncryptedData authenticator )
        throws EncoderException
    {
        ApReq applicationRequest = new ApReq();
        applicationRequest.setApOptions( new ApOptions() );
        applicationRequest.setTicket( ticket );
        applicationRequest.setAuthenticator( authenticator );


        ByteBuffer buffer = ByteBuffer.allocate( applicationRequest.computeLength() );
        byte[] encodedApReq = applicationRequest.encode( buffer ).array();


        PaData[] paData = new PaData[1];


        PaData preAuth = new PaData();
        preAuth.setPaDataType( PaDataType.PA_TGS_REQ );

View Full Code Here

        if ( undecodedAuthHeader == null )
        {
            throw new KerberosException( ErrorType.KDC_ERR_PADATA_TYPE_NOSUPP );
        }


        ApReq authHeader = KerberosDecoder.decodeApReq( undecodedAuthHeader );


        Ticket tgt = authHeader.getTicket();


        tgsContext.setAuthHeader( authHeader );
        tgsContext.setTgt( tgt );
    }

View Full Code Here

0 1 2 3 4

TOP

Related Classes of org.apache.directory.shared.kerberos.messages.ApReq

org.apache.directory.kerberos.client.KdcConnection

org.apache.directory.kerberos.client.KpasswdDecode

org.apache.directory.server.changepw.io.ChangePasswordRequestDecoder

org.apache.directory.server.changepw.io.ChangePasswordRequestEncoder

org.apache.directory.server.changepw.protocol.ChangepwProtocolHandlerTest

org.apache.directory.server.changepw.service.ChangePasswordService

org.apache.directory.server.kerberos.changepwd.messages.ChangePasswordRequest

org.apache.directory.server.kerberos.changepwd.service.ChangePasswordService

org.apache.directory.server.kerberos.kdc.ticketgrant.TicketGrantingService

org.apache.directory.server.kerberos.protocol.AbstractTicketGrantingServiceTest

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.