Package org.apache.zookeeper.server.auth

Class DigestAuthenticationProvider

    • Constructor Detail

      • DigestAuthenticationProvider

        public DigestAuthenticationProvider()

    • Method Detail

      • isEnabled

        public static boolean isEnabled()

      • handleAuthentication

        public KeeperException.Code handleAuthentication​(ServerCnxn cnxn,
                                                 byte[] authData)
        Description copied from interface: AuthenticationProvider
        This method is called when a client passes authentication data for this scheme. The authData is directly from the authentication packet. The implementor may attach new ids to the authInfo field of cnxn or may use cnxn to send packets back to the client.
        Specified by:
        handleAuthentication in interface AuthenticationProvider
        Parameters:
        cnxn - the cnxn that received the authentication information.
        authData - the authentication data received.
        Returns:
        TODO

      • handleAuthentication

        public List<Id> handleAuthentication​(javax.servlet.http.HttpServletRequest request,
                                     byte[] authData)
        Description copied from interface: AuthenticationProvider
        This method is called when admin server command passes authentication data for this scheme.
        Specified by:
        handleAuthentication in interface AuthenticationProvider
        Parameters:
        request - the request that contains the authentication information.
        authData - the authentication data received.
        Returns:
        Ids the list of Id. Empty list means not authenticated

      • isAuthenticated

        public boolean isAuthenticated()
        Description copied from interface: AuthenticationProvider
        This method is used to check if the authentication done by this provider should be used to identify the creator of a node. Some ids such as hosts and ip addresses are rather transient and in general don't really identify a client even though sometimes they do.
        Specified by:
        isAuthenticated in interface AuthenticationProvider
        Returns:
        true if this provider identifies creators.

      • matches

        public boolean matches​(String id,
                       String aclExpr)
        Description copied from interface: AuthenticationProvider
        This method is called to see if the given id matches the given id expression in the ACL. This allows schemes to use application specific wild cards.
        Specified by:
        matches in interface AuthenticationProvider
        Parameters:
        id - the id to check.
        aclExpr - the expression to match ids against.
        Returns:
        true if the id can be matched by the expression.

      • getUserName

        public String getUserName​(String id)
        Description copied from interface: AuthenticationProvider
        id represents the authentication info which is set in server connection. id may contain both user name as well as password. This method should be implemented to extract the user name.
        Specified by:
        getUserName in interface AuthenticationProvider
        Parameters:
        id - authentication info set by client.
        Returns:
        String user name

      • main

        public static void main​(String[] args)
                 throws NoSuchAlgorithmException
        Call with a single argument of user:pass to generate authdata. Authdata output can be used when setting superDigest for example.
        Parameters:
        args - single argument of user:pass
        Throws:
        NoSuchAlgorithmException