org.apache.catalina.authenticator

Class SSLAuthenticator

Implemented Interfaces:
Authenticator, Contained, Lifecycle, MBeanRegistration, Valve

public class SSLAuthenticator
extends AuthenticatorBase

An Authenticator and Valve implementation of authentication that utilizes SSL certificates to identify client users.

Version:
$Revision: 1.12 $ $Date: 2004/02/27 14:58:41 $

Author:
Craig R. McClanahan

Field Summary

protected static String
info
Descriptive information about this implementation.

Fields inherited from class org.apache.catalina.authenticator.AuthenticatorBase

DEFAULT_ALGORITHM, SESSION_ID_BYTES, algorithm, cache, context, debug, digest, disableProxyCaching, entropy, info, lifecycle, random, randomClass, sm, sso, started

Fields inherited from class org.apache.catalina.valves.ValveBase

container, controller, debug, domain, info, mserver, oname, sm

Fields inherited from interface org.apache.catalina.Lifecycle

AFTER_START_EVENT, AFTER_STOP_EVENT, BEFORE_START_EVENT, BEFORE_STOP_EVENT, START_EVENT, STOP_EVENT

Method Summary

boolean
authenticate(HttpRequest request, HttpResponse response, LoginConfig config)
Authenticate the user by checking for the existence of a certificate chain, and optionally asking a trust manager to validate that we trust this user.
String
getInfo()
Return descriptive information about this Valve implementation.
void
start()
Initialize the database we will be using for client verification and certificate validation (if any).
void
stop()
Finalize the database we used for client verification and certificate validation (if any).

Methods inherited from class org.apache.catalina.authenticator.AuthenticatorBase

addLifecycleListener, associate, authenticate, findLifecycleListeners, generateSessionId, getAlgorithm, getCache, getContainer, getDebug, getDigest, getDisableProxyCaching, getEntropy, getInfo, getRandom, getRandomClass, getSession, getSession, invoke, log, log, reauthenticateFromSSO, register, removeLifecycleListener, setAlgorithm, setCache, setContainer, setDebug, setDisableProxyCaching, setEntropy, setRandomClass, start, stop

Methods inherited from class org.apache.catalina.valves.ValveBase

createObjectName, getContainer, getContainerName, getController, getDebug, getDomain, getInfo, getObjectName, getParentName, invoke, postDeregister, postRegister, preDeregister, preRegister, setContainer, setController, setDebug, setObjectName

Field Details

info

protected static final String info
Descriptive information about this implementation.

Method Details

authenticate

public boolean authenticate(HttpRequest request,
                            HttpResponse response,
                            LoginConfig config)
            throws IOException
Authenticate the user by checking for the existence of a certificate chain, and optionally asking a trust manager to validate that we trust this user.
Overrides:
authenticate in interface AuthenticatorBase

Parameters:
request - Request we are processing
response - Response we are creating
config - Login configuration describing how authentication should be performed


getInfo

public String getInfo()
Return descriptive information about this Valve implementation.
Specified by:
getInfo in interface Valve
Overrides:
getInfo in interface AuthenticatorBase


start

public void start()
            throws LifecycleException
Initialize the database we will be using for client verification and certificate validation (if any).
Specified by:
start in interface Lifecycle
Overrides:
start in interface AuthenticatorBase

Throws:
LifecycleException - if this component detects a fatal error that prevents this component from being used


stop

public void stop()
            throws LifecycleException
Finalize the database we used for client verification and certificate validation (if any).
Specified by:
stop in interface Lifecycle
Overrides:
stop in interface AuthenticatorBase

Throws:
LifecycleException - if this component detects a fatal error that prevents this component from being used


Copyright B) 2000-2003 Apache Software Foundation. All Rights Reserved.