A B C D E F G H I J K L M N O R S T U V W

A

abort() - Method in class com.ibm.security.auth.module.Krb5LoginModule
DOCUMENT ME!
ACCEPT_ONLY - Static variable in interface org.ietf.jgss.GSSCredential
Credential usage flag requesting that it be able to be used for context acceptance only.
acceptSecContext(byte[], int, int) - Method in interface org.ietf.jgss.GSSContext
Accepts a context token received from a context initiator.
acceptSecContext(InputStream, OutputStream) - Method in interface org.ietf.jgss.GSSContext
Accepts a context token received from a context initiator.
add(GSSName, int, int, Oid, int) - Method in interface org.ietf.jgss.GSSCredential
Adds a mechanism specific credential-element to an existing credential.
addProviderAtEnd(Provider, Oid) - Method in class org.ietf.jgss.GSSManager
This method is used to indicate to the GSSManager that the application would like a particular provider to be used if no other provider can be found that supports the given mechanism.
addProviderAtFront(Provider, Oid) - Method in class org.ietf.jgss.GSSManager
This method is used to indicate to the GSSManager that the application would like a particular provider to be used ahead of all others when support is desired for the given mechanism.

B

BAD_BINDINGS - Static variable in exception org.ietf.jgss.GSSException
Channel bindings mismatch error.
BAD_MECH - Static variable in exception org.ietf.jgss.GSSException
Unsupported mechanism requested error.
BAD_MIC - Static variable in exception org.ietf.jgss.GSSException
Token had invalid integrity check error.
BAD_NAME - Static variable in exception org.ietf.jgss.GSSException
Invalid name provided error.
BAD_NAMETYPE - Static variable in exception org.ietf.jgss.GSSException
Name of unsupported type provided error.
BAD_QOP - Static variable in exception org.ietf.jgss.GSSException
Unsupported QOP value error.
BAD_STATUS - Static variable in exception org.ietf.jgss.GSSException
Invalid status code error - this is the default status value.
BASE64_TOKEN - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The Base64 encoded byte array that includes the AP_REQ or JGSS Token

C

canonicalize(Oid) - Method in interface org.ietf.jgss.GSSName
Creates a mechanism name (MN) from an arbitrary internal name.
ChannelBinding - Class in org.ietf.jgss
The GSS-API accommodates the concept of caller-provided channel binding information.
ChannelBinding(InetAddress, InetAddress, byte[]) - Constructor for class org.ietf.jgss.ChannelBinding
Create a ChannelBinding object with user supplied address information and data.
ChannelBinding(byte[]) - Constructor for class org.ietf.jgss.ChannelBinding
Creates a ChannelBinding object without any addressing information.
CLIENT_NAME - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The CLIENT or TARGET Kerberos Principal name in this format "clientName/hostname" or just "clientName"
CLIENTLOGINCONF - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The JAAS Config file used with the initiator's Krb5LoginModule information
CLIENTPASSWORD - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The Clients Password used with the Krb5LoginModule
com.ibm.security.auth.callback - package com.ibm.security.auth.callback
 
com.ibm.security.auth.module - package com.ibm.security.auth.module
 
com.ibm.security.jgss.mech.krb5 - package com.ibm.security.jgss.mech.krb5
The IBM Kerberos V5 GSSAPI mechanism, the default mechanism supported by this IBM GSSAPI framework.
com.ibm.security.krb5 - package com.ibm.security.krb5
 
com.ibm.security.krb5.internal.tools - package com.ibm.security.krb5.internal.tools
 
commit() - Method in class com.ibm.security.auth.module.Krb5LoginModule
DOCUMENT ME!
containedIn(Oid[]) - Method in class org.ietf.jgss.Oid
A utility method to test if this Oid value is contained within the supplied Oid array.
CONTEXT_APREQ_TOKEN - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The byte array of the AP_REQ Token.
CONTEXT_APREQ_TOKEN_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_APREQ_TOKEN.
CONTEXT_EXPIRED - Static variable in exception org.ietf.jgss.GSSException
Specified security context expired error.
CONTEXT_GSS_TOKEN - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The byte array of the GSS Token.
CONTEXT_GSS_TOKEN_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_GSS_TOKEN.
CONTEXT_KRB_SERVICE_KEY - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
Kerberos Key of the Service's Key
CONTEXT_KRB_SERVICE_KEY_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_KRB_SERVICE_KEY.
CONTEXT_SESSION_KEY_BYTES - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
Byte Array of the Session Key
CONTEXT_SESSION_KEY_BYTES_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_SESSION_KEY_BYTES.
CONTEXT_SESSION_KEY_ENC - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
Integer value of the Session Key Encryption Algorithm
CONTEXT_SESSION_KEY_ENC_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_SESSION_KEY_ENC.
CONTEXT_SUB_KEY_BYTES - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
Byte Array of the Sub Session Key
CONTEXT_SUB_KEY_BYTES_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_SUB_KEY_BYTES.
CONTEXT_SUB_KEY_ENC - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
Integer value of the Sub Session Key Encryption Algorithm
CONTEXT_SUB_KEY_ENC_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_SUB_KEY_ENC.
CONTEXT_SUBJECT - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The Context's JAAS Subject
CONTEXT_SUBJECT_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_SUBJECT.
CONTEXT_WRAPPED - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
Integer that states if the context was wrapped or not.
CONTEXT_WRAPPED_TYPE - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The class type of the CONTEXT_WRAPPED.
createContext(GSSName, Oid, GSSCredential, int) - Method in class org.ietf.jgss.GSSManager
Factory method for creating a context on the initiator's side.
createContext(GSSCredential) - Method in class org.ietf.jgss.GSSManager
Factory method for creating a context on the acceptor' side.
createContext(byte[]) - Method in class org.ietf.jgss.GSSManager
Factory method for creating a previously exported context.
createCredential(int) - Method in class org.ietf.jgss.GSSManager
Factory method for acquiring default credentials.
createCredential(GSSName, int, Oid, int) - Method in class org.ietf.jgss.GSSManager
Factory method for acquiring a single mechanism credential.
createCredential(GSSName, int, Oid[], int) - Method in class org.ietf.jgss.GSSManager
Factory method for acquiring credentials over a set of mechanisms.
createName(String, Oid) - Method in class org.ietf.jgss.GSSManager
Factory method to convert a contiguous string name from the specified namespace to an GSSName object.
createName(byte[], Oid) - Method in class org.ietf.jgss.GSSManager
Factory method to convert a contiguous byte array containing a name from the specified namespace to an GSSName object.
createName(String, Oid, Oid) - Method in class org.ietf.jgss.GSSManager
Factory method to convert a contiguous string name from the specified namespace to an GSSName object that is a mechanism name (MN).
createName(byte[], Oid, Oid) - Method in class org.ietf.jgss.GSSManager
Factory method to convert a contiguous byte array containing a name from the specified namespace to an GSSName object that is an MN.
CREDENTIALS_EXPIRED - Static variable in exception org.ietf.jgss.GSSException
Expired credentials detected error.

D

DECODED_TOKEN - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The decoded AP_REQ or JGSS Token byte array
DEFAULT_LIFETIME - Static variable in interface org.ietf.jgss.GSSContext
A lifetime constant representing the default context lifetime.
DEFAULT_LIFETIME - Static variable in interface org.ietf.jgss.GSSCredential
A lifetime constant representing the default credential lifetime.
DEFECTIVE_CREDENTIAL - Static variable in exception org.ietf.jgss.GSSException
Defective credential error.
DEFECTIVE_TOKEN - Static variable in exception org.ietf.jgss.GSSException
Defective token error.
DelegationPermission - Class in javax.security.auth.kerberos
This class is used to restrict the usage of the Kerberos delegation model, ie: forwardable and proxiable tickets.
DelegationPermission(String) - Constructor for class javax.security.auth.kerberos.DelegationPermission
Create a new DelegationPermission with the specified subordinate and target principals.
DelegationPermission(String, String) - Constructor for class javax.security.auth.kerberos.DelegationPermission
Create a new DelegationPermission with the specified subordinate and target principals.
destroy() - Method in class javax.security.auth.kerberos.KerberosKey
Destroys this key.
destroy() - Method in class javax.security.auth.kerberos.KerberosTicket
Destroys the ticket and destroys any sensitive information stored in it.
dispose() - Method in interface org.ietf.jgss.GSSContext
Releases any system resources and cryptographic information stored in the context object.
dispose() - Method in interface org.ietf.jgss.GSSCredential
Releases any sensitive information that the GSSCredential object may be containing.
DUPLICATE_ELEMENT - Static variable in exception org.ietf.jgss.GSSException
Duplicate credential element requested error.
DUPLICATE_TOKEN - Static variable in exception org.ietf.jgss.GSSException
The token was a duplicate of an earlier token.

E

eData - Variable in class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
DOCUMENT ME!
ENCODING - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The JVM encoding scheme used with the string inputs.
equals(Object) - Method in class javax.security.auth.kerberos.DelegationPermission
Checks two DelegationPermission objects for equality.
equals(Object) - Method in class javax.security.auth.kerberos.KerberosPrincipal
Compares the specified Object with this Principal for equality.
equals(Object) - Method in class javax.security.auth.kerberos.ServicePermission
Checks two ServicePermission objects for equality.
equals(Object) - Method in class org.ietf.jgss.ChannelBinding
Returns "true" if two channel bindings match.
equals(Object) - Method in interface org.ietf.jgss.GSSCredential
Tests if this GSSCredential refers to the same entity as the supplied object.
equals(GSSName) - Method in interface org.ietf.jgss.GSSName
Compares two GSSName objects to determine whether they refer to the same entity.
equals(Object) - Method in interface org.ietf.jgss.GSSName
A variation of the equals method that is provided to override the Object.equals() method that the implementing class will inherit.
equals(Object) - Method in class org.ietf.jgss.Oid
Tests if two Oid objects represent the same Object identifier value.
errorCode - Variable in class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
DOCUMENT ME!
eText - Variable in class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
DOCUMENT ME!
export() - Method in interface org.ietf.jgss.GSSContext
Provided to support the sharing of work between multiple processes.
export() - Method in interface org.ietf.jgss.GSSName
Returns a canonical contiguous byte representation of a mechanism name (MN), suitable for direct, byte by byte comparison by authorization functions.

F

FAILURE - Static variable in exception org.ietf.jgss.GSSException
General failure, unspecified at GSS-API level.

G

GAP_TOKEN - Static variable in exception org.ietf.jgss.GSSException
An expected per-message token was not received.
getAcceptorAddress() - Method in class org.ietf.jgss.ChannelBinding
Returns the acceptor's address for this channel binding.
getActions() - Method in class javax.security.auth.kerberos.ServicePermission
Returns the canonical string representation of the actions.
getAlgorithm() - Method in class javax.security.auth.kerberos.KerberosKey
Returns the standard algorithm name for this key.
getAnonymityState() - Method in interface org.ietf.jgss.GSSContext
Returns "true" if this is an anonymous context.
getApplicationData() - Method in class org.ietf.jgss.ChannelBinding
Returns application data being used as part of the ChannelBinding.
getAuthTime() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the time that the client was authenticated.
getClient() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the client principal associated with this ticket.
getClientAddresses() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns a list of addresses from where the ticket can be used.
getConfState() - Method in interface org.ietf.jgss.GSSContext
Returns the confidentiality service state over the context.
getCredDelegState() - Method in interface org.ietf.jgss.GSSContext
Returns the state of the delegated credentials for the context.
getDefaultRealmString() - Static method in class com.ibm.security.jgss.mech.krb5.Krb5RealmUtil
DOCUMENT ME!
getDelegCred() - Method in interface org.ietf.jgss.GSSContext
Returns the delegated credential object on the acceptor's side.
getDER() - Method in class org.ietf.jgss.Oid
Returns the full ASN.1 DER encoding for this oid object, which includes the tag and length.
getEData() - Method in class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
DOCUMENT ME!
getEncoded() - Method in class javax.security.auth.kerberos.KerberosKey
Returns the key material of this secret key.
getEncoded() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns an ASN.1 encoding of the entire ticket.
getEndTime() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the expiration time for this ticket's validity period.
getErrorCode() - Method in class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
DOCUMENT ME!
getErrorString() - Method in class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
DOCUMENT ME!
getFlags() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the flags associated with this ticket.
getFormat() - Method in class javax.security.auth.kerberos.KerberosKey
Returns the name of the encoding format for this secret key.
getInitiatorAddress() - Method in class org.ietf.jgss.ChannelBinding
Returns the initiator's address for this channel binding.
getInstance() - Static method in class org.ietf.jgss.GSSManager
Returns the default GSSManager implementation.
getIntegState() - Method in interface org.ietf.jgss.GSSContext
Returns the integrity service state over the context.
getKeyType() - Method in class javax.security.auth.kerberos.KerberosKey
Returns the key type for this long-term key.
getLifetime() - Method in interface org.ietf.jgss.GSSContext
Returns the context lifetime in seconds.
getMajor() - Method in exception org.ietf.jgss.GSSException
Returns the major code representing the GSS error code that caused this exception to be thrown.
getMajorString() - Method in exception org.ietf.jgss.GSSException
Returns a string explaining the GSS major error code causing this exception to be thrown.
getMech() - Method in interface org.ietf.jgss.GSSContext
Returns the mechanism oid for this context.
getMechs() - Method in interface org.ietf.jgss.GSSCredential
Returns an array of mechanisms supported by this credential.
getMechs() - Method in class org.ietf.jgss.GSSManager
Returns an array of Oid objects indicating mechanisms available to GSS-API callers.
getMechsForName(Oid) - Method in class org.ietf.jgss.GSSManager
Returns an array of Oid objects corresponding to the mechanisms that support the specific name type.
getMessage() - Method in exception org.ietf.jgss.GSSException
Returns a detailed internationalized message of this exception.
getMIC(byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Computes a cryptographic MIC over the supplied message.
getMIC(InputStream, OutputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Computes a cryptographic MIC over the supplied message.
getMinor() - Method in exception org.ietf.jgss.GSSException
Returns the mechanism error code that caused this exception.
getMinorStatus() - Method in class org.ietf.jgss.MessageProp
Retrieves the minor status that the underlying mechanism might have set.
getMinorString() - Method in exception org.ietf.jgss.GSSException
Returns a string explaining the mechanism specific error code.
getMinorString() - Method in class org.ietf.jgss.MessageProp
Returns a string explaining the mechanism specific error code.
getMutualAuthState() - Method in interface org.ietf.jgss.GSSContext
Returns the state of the mutual authentication option for the context.
getName() - Method in class javax.security.auth.kerberos.KerberosPrincipal
The returned string corresponds to the single-string representation of a Kerberos Principal name as specified in Section 2.1 of RFC 1964.
getName() - Method in interface org.ietf.jgss.GSSCredential
Retrieves the name of the entity that the credential asserts.
getName(Oid) - Method in interface org.ietf.jgss.GSSCredential
Retrieves a mechanism name of the entity that the credential asserts.
getNamesForMech(Oid) - Method in class org.ietf.jgss.GSSManager
Returns name type Oid's supported by the specified mechanism.
getNameType() - Method in class javax.security.auth.kerberos.KerberosPrincipal
Returns the name type of the KerberosPrincipal.
getPrincipal() - Method in class javax.security.auth.kerberos.KerberosKey
Returns the principal that this key belongs to.
getPrivacy() - Method in class org.ietf.jgss.MessageProp
Retrieves the privacy state.
getQOP() - Method in class org.ietf.jgss.MessageProp
Retrieves the QOP value.
getRealm() - Method in class javax.security.auth.kerberos.KerberosPrincipal
Returns the realm component of this Kerberos principal.
getRemainingAcceptLifetime(Oid) - Method in interface org.ietf.jgss.GSSCredential
Returns the remaining lifetime is seconds for the credential to remain capable of accepting security contexts under the specified mechanism.
getRemainingInitLifetime(Oid) - Method in interface org.ietf.jgss.GSSCredential
Returns the remaining lifetime is seconds for the credential to remain capable of initiating security contexts under the specified mechanism.
getRemainingLifetime() - Method in interface org.ietf.jgss.GSSCredential
Returns the remaining lifetime in seconds for a credential.
getRenewTill() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the latest expiration time for this ticket, including all renewals.
getReplayDetState() - Method in interface org.ietf.jgss.GSSContext
Returns the state of the replay detection option for the context.
getSequenceDetState() - Method in interface org.ietf.jgss.GSSContext
Returns the state of the sequence detection option for the context.
getServer() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the service principal associated with this ticket.
getSessionKey() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the session key associated with this ticket.
getSessionKeyType() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the key type of the session key associated with this ticket as defined by the Kerberos Protocol Specification.
getSrcName() - Method in interface org.ietf.jgss.GSSContext
Returns the name of the context initiator.
getStartTime() - Method in class javax.security.auth.kerberos.KerberosTicket
Returns the start time for this ticket's validity period.
getStringNameType() - Method in interface org.ietf.jgss.GSSName
Returns the oid representing the type of name returned through the toString method.
getTargName() - Method in interface org.ietf.jgss.GSSContext
Returns the name of the context target (acceptor).
getUsage() - Method in interface org.ietf.jgss.GSSCredential
Returns the credential usage flag.
getUsage(Oid) - Method in interface org.ietf.jgss.GSSCredential
Returns the credential usage flag for the specified credential mechanism.
getVersionNumber() - Method in class javax.security.auth.kerberos.KerberosKey
Returns the key version number.
getWrapSizeLimit(int, boolean, int) - Method in interface org.ietf.jgss.GSSContext
Returns the maximum message size that, if presented to the wrap method with the same confReq and qop parameters, will result in an output token containing no more than the maxTokenSize bytes.
GSSContext - Interface in org.ietf.jgss
This interface encapsulates the GSS-API security context and provides the security services (wrap, unwrap, getMIC, verifyMIC) that are available over the context.
GSSCredential - Interface in org.ietf.jgss
This interface encapsulates the GSS-API credentials for an entity.
GSSException - Exception in org.ietf.jgss
 
GSSException(int) - Constructor for exception org.ietf.jgss.GSSException
Creates a GSSException object with a specified major code.
GSSException(int, int, String) - Constructor for exception org.ietf.jgss.GSSException
Creates a GSSException object with the specified major code, minor code, and minor code textual explanation.
GSSManager - Class in org.ietf.jgss
The GSSManager class is an abstract class that serves as a factory for three GSS interfaces: GSSName, GSSCredential, and GSSContext.
GSSManager() - Constructor for class org.ietf.jgss.GSSManager
 
GSSName - Interface in org.ietf.jgss
This interface encapsulates a single GSS-API principal entity.

H

handle(Callback[]) - Method in class com.ibm.security.auth.callback.Krb5CallbackHandler
 
hashCode() - Method in class javax.security.auth.kerberos.DelegationPermission
Returns the hash code value for this object.
hashCode() - Method in class javax.security.auth.kerberos.KerberosPrincipal
Returns a hashcode for this principal.
hashCode() - Method in class javax.security.auth.kerberos.ServicePermission
Returns the hash code value for this object.
hashCode() - Method in class org.ietf.jgss.ChannelBinding
Returns a hashcode value for this ChannelBinding object.
hashCode() - Method in interface org.ietf.jgss.GSSCredential
Returns a hashcode value for this GSSCredential.
hashCode() - Method in interface org.ietf.jgss.GSSName
Returns a hashcode value for this GSSName.
hashCode() - Method in class org.ietf.jgss.Oid
Returns a hashcode value for this Oid.

I

implies(Permission) - Method in class javax.security.auth.kerberos.DelegationPermission
Checks if this Kerberos delegation permission object "implies" the specified permission.
implies(Permission) - Method in class javax.security.auth.kerberos.ServicePermission
Checks if this Kerberos service permission object "implies" the specified permission.
INDEFINITE_LIFETIME - Static variable in interface org.ietf.jgss.GSSContext
A lifetime constant representing indefinite context lifetime.
INDEFINITE_LIFETIME - Static variable in interface org.ietf.jgss.GSSCredential
A lifetime constant representing indefinite credential lifetime.
init(Map) - Method in class com.ibm.security.krb5.KerberosTokenConsumer
Inializes the KerberosTokenConsumer with a Map set of objects listed:
SERVICE_KEYTAB = Kerberos KeyTab that contains the Servers Credentials
SUBJECT= Input JAAS Subject that may or may not contain credentials
ENCODING = JVM Character encoding(Default UTF-8)
BASE64_TOKEN = byte[] of the Base64 encoded input Token
DECODED_TOKEN = byte[] of the decoded input Token
STRING_TOKEN = String of the Base64 encoded input Token
SERVICE_NAME = String principal Name of the Service
SERVICEPASSWORD = String Service password, required is using JAAS
REALM_NAME = String REALM name
LOGINCONF = JAAS Login Configuration File URL
init(Map) - Method in class com.ibm.security.krb5.KerberosTokenGenerator
Invokes the KerberosTokenConsumer with a Map set of objects listed:
SUBJECT= Input JAAS Subject that may or may not contain credentials
SERVICE_NAME = String principal Name of the Service
WRAPPED = Indications if this is to be an AP_REQ Token(Integer 0) or a GSS Token(Integer 1)
CLIENT_NAME = String principal Name of the Service
CLIENTPASSWORD = String Service password, required is using JAAS
REALM_NAME = String REALM name
CLIENTLOGINCONF = JAAS Login Configuration File URL
initialize(Subject, CallbackHandler, Map, Map) - Method in class com.ibm.security.auth.module.Krb5LoginModule
DOCUMENT ME!
INITIATE_AND_ACCEPT - Static variable in interface org.ietf.jgss.GSSCredential
Credential usage flag requesting that it be able to be used for both context initiation and acceptance.
INITIATE_ONLY - Static variable in interface org.ietf.jgss.GSSCredential
Credential usage flag requesting that it be able to be used for context initiation only.
initSecContext(byte[], int, int) - Method in interface org.ietf.jgss.GSSContext
Initiates context establishment.
initSecContext(InputStream, OutputStream) - Method in interface org.ietf.jgss.GSSContext
Initiates context establishment.
invoke(Map) - Method in class com.ibm.security.krb5.KerberosTokenConsumer
 
invoke(Map) - Method in class com.ibm.security.krb5.KerberosTokenGenerator
 
isAnonymous() - Method in interface org.ietf.jgss.GSSName
Tests if this name object represents an anonymous entity.
isCurrent() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines if this ticket is still current.
isDestroyed() - Method in class javax.security.auth.kerberos.KerberosKey
Determines if this key has been destroyed.
isDestroyed() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines if this ticket has been destroyed.
isDuplicateToken() - Method in class org.ietf.jgss.MessageProp
Returns "true" if this is a duplicate of an earlier token.
isErrorToken() - Method in class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
DOCUMENT ME!
isEstablished() - Method in interface org.ietf.jgss.GSSContext
Used during context establishment to determine the state of the context.
isForwardable() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines if this ticket is forwardable.
isForwarded() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines if this ticket had been forwarded or was issued based on authentication involving a forwarded ticket-granting ticket.
isGapToken() - Method in class org.ietf.jgss.MessageProp
Returns "true" if an expected per-message token was not received.
isInitial() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines if this ticket was issued using the Kerberos AS-Exchange protocol, and not issued based on some ticket-granting ticket.
isInitiator() - Method in interface org.ietf.jgss.GSSContext
Returns "true" if this is the initiator of the context.
isMN() - Method in interface org.ietf.jgss.GSSName
Tests if this name object contains only one mechanism element and is thus a mechanism name as defined by RFC 2078.
isOldToken() - Method in class org.ietf.jgss.MessageProp
Returns "true" if the token's validity period has expired.
isPostdated() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines is this ticket is post-dated.
isProtReady() - Method in interface org.ietf.jgss.GSSContext
Returns "true" if the per message operations can be applied over the context.
isProxiable() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines if this ticket is proxiable.
isProxy() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines is this ticket is a proxy-ticket.
isRenewable() - Method in class javax.security.auth.kerberos.KerberosTicket
Determines is this ticket is renewable.
isTransferable() - Method in interface org.ietf.jgss.GSSContext
Returns "true" if the context is transferable to other processes through the use of the export method.
isUnseqToken() - Method in class org.ietf.jgss.MessageProp
Returns "true" if a later token has already been processed.

J

javax.security.auth.kerberos - package javax.security.auth.kerberos
 

K

KerberosKey - Class in javax.security.auth.kerberos
This class encapsulates a long term secret key for a Kerberos principal.
KerberosKey(KerberosPrincipal, byte[], int, int) - Constructor for class javax.security.auth.kerberos.KerberosKey
Constructs a KerberosKey from the given bytes when the key type and key version number are known.
KerberosKey(KerberosPrincipal, char[], String) - Constructor for class javax.security.auth.kerberos.KerberosKey
Constructs a KerberosKey from a principal's password.
KerberosPrincipal - Class in javax.security.auth.kerberos
This class encapsulates a Kerberos principal.
KerberosPrincipal(String) - Constructor for class javax.security.auth.kerberos.KerberosPrincipal
Constructs a KerberosPrincipal from the provided string input.
KerberosPrincipal(String, int) - Constructor for class javax.security.auth.kerberos.KerberosPrincipal
Constructs a KerberosPrincipal from the provided string and name type input.
KerberosTicket - Class in javax.security.auth.kerberos
This class encapsulates a Kerberos ticket and associated information as viewed from the client's point of view.
KerberosTicket(byte[], KerberosPrincipal, KerberosPrincipal, byte[], int, boolean[], Date, Date, Date, Date, InetAddress[]) - Constructor for class javax.security.auth.kerberos.KerberosTicket
Constructs a KerberosTicket using credentials information that a client either receives from a KDC or reads from a cache.
KerberosTokenConfig - Class in com.ibm.security.krb5
This Class contains all valid input parameters needed by the KeberosTokenconsumer and KerberosTokenGenerator classes.
KerberosTokenConfig() - Constructor for class com.ibm.security.krb5.KerberosTokenConfig
 
KerberosTokenConsumer - Class in com.ibm.security.krb5
DOCUMENT ME!
KerberosTokenConsumer() - Constructor for class com.ibm.security.krb5.KerberosTokenConsumer
Creates a new KerberosTokenConsumer object.
KerberosTokenGenerator - Class in com.ibm.security.krb5
DOCUMENT ME!
KerberosTokenGenerator() - Constructor for class com.ibm.security.krb5.KerberosTokenGenerator
Creates a new KerberosTokenGenerator object.
Kinit - Class in com.ibm.security.krb5.internal.tools
Kinit tool for obtaining Kerberos v5 tickets.
Kinit(String[]) - Constructor for class com.ibm.security.krb5.internal.tools.Kinit
Constructs a new Kinit object.
Klist - Class in com.ibm.security.krb5.internal.tools
This class can execute as a command-line tool to list entries in credential cache and key tab.
Klist() - Constructor for class com.ibm.security.krb5.internal.tools.Klist
 
Krb5CallbackHandler - Class in com.ibm.security.auth.callback
A text-based calback handler that for a Kerberos principal name and/or password.
Krb5CallbackHandler() - Constructor for class com.ibm.security.auth.callback.Krb5CallbackHandler
 
Krb5LoginModule - Class in com.ibm.security.auth.module
A JAAS LoginModule for acquiring Kerberos credentials.
Krb5LoginModule() - Constructor for class com.ibm.security.auth.module.Krb5LoginModule
 
Krb5RealmUtil - Class in com.ibm.security.jgss.mech.krb5
DOCUMENT ME!
Krb5RealmUtil() - Constructor for class com.ibm.security.jgss.mech.krb5.Krb5RealmUtil
 
Krb5TokenErrorUtil - Class in com.ibm.security.jgss.mech.krb5
DOCUMENT ME!
Krb5TokenErrorUtil(byte[], int, int) - Constructor for class com.ibm.security.jgss.mech.krb5.Krb5TokenErrorUtil
Creates a new Krb5TokenErrorUtil object.
KRB_NT_PRINCIPAL - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
user principal name type
KRB_NT_SRV_HST - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
service with host name as instance (telnet, rcommands) name type
KRB_NT_SRV_INST - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
service and other unique instance (krbtgt) name type
KRB_NT_SRV_XHST - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
service with host as remaining components name type
KRB_NT_UID - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
unique ID name type
KRB_NT_UNKNOWN - Static variable in class javax.security.auth.kerberos.KerberosPrincipal
unknown name type
Ktab - Class in com.ibm.security.krb5.internal.tools
This class can execute as a command-line tool to help the user manage entires in the key table.
Ktab() - Constructor for class com.ibm.security.krb5.internal.tools.Ktab
 

L

login() - Method in class com.ibm.security.auth.module.Krb5LoginModule
DOCUMENT ME!
LOGINCONF - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The File URL of the JAAS Login Config file
logout() - Method in class com.ibm.security.auth.module.Krb5LoginModule
Logout the user.

M

main(String[]) - Static method in class com.ibm.security.krb5.internal.tools.Kinit
The main method is used to accept user command line input for ticket request.
main(String[]) - Static method in class com.ibm.security.krb5.internal.tools.Klist
The main program that can be invoked at command line.
main(String[]) - Static method in class com.ibm.security.krb5.internal.tools.Ktab
The main program that can be invoked at command line.
mapHostToRealm(String) - Static method in class com.ibm.security.jgss.mech.krb5.Krb5RealmUtil
DOCUMENT ME!
MECH_TYPE_KRB5 - Static variable in class com.ibm.security.krb5.KerberosTokenConsumer
We only support the KRB5 mech.
MessageProp - Class in org.ietf.jgss
This is a utility class used within the per-message GSSContext methods to convey per-message properties.
MessageProp(boolean) - Constructor for class org.ietf.jgss.MessageProp
Constructor which sets QOP to 0 indicating that the default QOP is requested.
MessageProp(int, boolean) - Constructor for class org.ietf.jgss.MessageProp
Constructor which sets the values for the qop and privacy state.

N

NAME_NOT_MN - Static variable in exception org.ietf.jgss.GSSException
Name contains multi-mechanism elements error.
newPermissionCollection() - Method in class javax.security.auth.kerberos.DelegationPermission
Returns a PermissionCollection object for storing DelegationPermission objects.
newPermissionCollection() - Method in class javax.security.auth.kerberos.ServicePermission
Returns a PermissionCollection object for storing ServicePermission objects.
NO_CONTEXT - Static variable in exception org.ietf.jgss.GSSException
Invalid security context error.
NO_CRED - Static variable in exception org.ietf.jgss.GSSException
Invalid credentials error.
NT_ANONYMOUS - Static variable in interface org.ietf.jgss.GSSName
Name type for representing an anonymous entity.
NT_EXPORT_NAME - Static variable in interface org.ietf.jgss.GSSName
Name type used to indicate an exported name produced by the export method.
NT_HOSTBASED_SERVICE - Static variable in interface org.ietf.jgss.GSSName
Oid indicating a host-based service name form.
NT_MACHINE_UID_NAME - Static variable in interface org.ietf.jgss.GSSName
Name type to indicate a numeric user identifier corresponding to a user on a local system.
NT_STRING_UID_NAME - Static variable in interface org.ietf.jgss.GSSName
Name type to indicate a string of digits representing the numeric user identifier of a user on a local system.
NT_USER_NAME - Static variable in interface org.ietf.jgss.GSSName
Name type to indicate a named user on a local system.

O

Oid - Class in org.ietf.jgss
This class represents Universal Object Identifiers (Oids) and their associated operations.
Oid(String) - Constructor for class org.ietf.jgss.Oid
Constructs an Oid object from a string representation of its integer components.
Oid(InputStream) - Constructor for class org.ietf.jgss.Oid
Creates an Oid object from its ASN.1 DER encoding.
Oid(byte[]) - Constructor for class org.ietf.jgss.Oid
Creates an Oid object from its ASN.1 DER encoding.
OLD_TOKEN - Static variable in exception org.ietf.jgss.GSSException
The token's validity period has expired.
org.ietf.jgss - package org.ietf.jgss
Contains the top-level GSSAPI interfaces and classes specified in RFC 2853, Generic Security Service API Version 2: Java Bindings. GSSAPI framework developers provide implementations of subclasses of the interfaces and classes contained in this package.

R

REALM_NAME - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The Kerberos REALM NAME
refresh() - Method in class javax.security.auth.kerberos.KerberosTicket
Extends the validity period of this ticket.
requestAnonymity(boolean) - Method in interface org.ietf.jgss.GSSContext
Requests anonymous support over the context.
requestConf(boolean) - Method in interface org.ietf.jgss.GSSContext
Requests that confidentiality service be available over the context.
requestCredDeleg(boolean) - Method in interface org.ietf.jgss.GSSContext
Sets the request state for the credential delegation flag for the context.
requestInteg(boolean) - Method in interface org.ietf.jgss.GSSContext
Requests that integrity services be available over the context.
requestLifetime(int) - Method in interface org.ietf.jgss.GSSContext
Sets the desired lifetime for the context in seconds.
requestMutualAuth(boolean) - Method in interface org.ietf.jgss.GSSContext
Sets the request state of the mutual authentication flag for the context.
requestReplayDet(boolean) - Method in interface org.ietf.jgss.GSSContext
Sets the request state of the replay detection service for the context.
requestSequenceDet(boolean) - Method in interface org.ietf.jgss.GSSContext
Sets the request state for the sequence checking service of the context.

S

SERVICE_KEYTAB - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The optional Kerberos KEYTAB that contains the SERVICE credentials.
SERVICE_NAME - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The Kerberos SERVICE principal name in this format "servicelName/hostname" or "serviceName"
SERVICEPASSWORD - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The Servers password used with the Krb5LoginModule
ServicePermission - Class in javax.security.auth.kerberos
This class is used to protect Kerberos services and the credentials necessary to access those services.
ServicePermission(String, String) - Constructor for class javax.security.auth.kerberos.ServicePermission
Create a new ServicePermission with the specified servicePrincipal and action.
setChannelBinding(ChannelBinding) - Method in interface org.ietf.jgss.GSSContext
Sets the channel bindings to be used during context establishment.
setMinor(int, String) - Method in exception org.ietf.jgss.GSSException
Used internally by the GSS-API implementation and the underlying mechanisms to set the minor code and its textual representation.
setPrivacy(boolean) - Method in class org.ietf.jgss.MessageProp
Sets the privacy state.
setQOP(int) - Method in class org.ietf.jgss.MessageProp
Sets the QOP value.
setSupplementaryStates(boolean, boolean, boolean, boolean, int, String) - Method in class org.ietf.jgss.MessageProp
This method sets the state for the supplementary information flags and the minor status in MessageProp.
setUseSubjectCreds(boolean) - Method in class com.ibm.security.krb5.KerberosTokenConsumer
Forces the context to use the provided subject for the credentials
setUseSubjectCredsOnly(boolean) - Method in class com.ibm.security.krb5.KerberosTokenGenerator
Forces the context to use the provided subject for the credentials
STRING_TOKEN - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The Base64 encoded "String" of the AP_REQ or JGSS Token
SUBJECT - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The JAAS Subject that will be used to gain or populate the Client/Server credentials and TGT's.

T

toString() - Method in class javax.security.auth.kerberos.KerberosKey
DOCUMENT ME!
toString() - Method in class javax.security.auth.kerberos.KerberosPrincipal
 
toString() - Method in class javax.security.auth.kerberos.KerberosTicket
DOCUMENT ME!
toString() - Method in exception org.ietf.jgss.GSSException
Returns an internationalized textual representation of both the major and minor status codes.
toString() - Method in interface org.ietf.jgss.GSSName
Returns a textual representation of the GSSName object.
toString() - Method in class org.ietf.jgss.Oid
Returns a string representation of the oid's integer components in dot separated notation.

U

UNAUTHORIZED - Static variable in exception org.ietf.jgss.GSSException
Operation unauthorized error.
UNAVAILABLE - Static variable in exception org.ietf.jgss.GSSException
Operation unavailable error.
UNSEQ_TOKEN - Static variable in exception org.ietf.jgss.GSSException
A later token has already been processed.
unwrap(byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Used by the peer application to process tokens generated with the wrap call.
unwrap(InputStream, OutputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Used by the peer application to process tokens generated with the wrap call.

V

verifyMIC(byte[], int, int, byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Verifies the cryptographic MIC contained in the supplied token.
verifyMIC(InputStream, InputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Verifies the cryptographic MIC contained in the supplied token.

W

wrap(byte[], int, int, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Applies per-message security services over the established security context.
wrap(InputStream, OutputStream, MessageProp) - Method in interface org.ietf.jgss.GSSContext
Allows to apply per-message security services over the established security context.
WRAPPED - Static variable in class com.ibm.security.krb5.KerberosTokenConfig
The boolean option to state if the Token is and AP_REq(False) or a JGSS Wrapped Token(True).

A B C D E F G H I J K L M N O R S T U V W