Package org.apache.cassandra.auth
Class CassandraLoginModule
- java.lang.Object
-
- org.apache.cassandra.auth.CassandraLoginModule
-
- All Implemented Interfaces:
javax.security.auth.spi.LoginModule
public class CassandraLoginModule extends java.lang.Object implements javax.security.auth.spi.LoginModuleLoginModule which authenticates a user towards the Cassandra database using the internal authentication mechanism.
-
-
Constructor Summary
Constructors Constructor Description CassandraLoginModule()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description booleanabort()This method is called if the LoginContext's overall authentication failed.booleancommit()This method is called if the LoginContext's overall authentication succeeded (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules succeeded).voidinitialize(javax.security.auth.Subject subject, javax.security.auth.callback.CallbackHandler callbackHandler, java.util.Map<java.lang.String,?> sharedState, java.util.Map<java.lang.String,?> options)Initialize this LoginModule.booleanlogin()Authenticate the user, obtaining credentials from the CallbackHandler supplied in initialize.booleanlogout()Logout the user.
-
-
-
Method Detail
-
initialize
public void initialize(javax.security.auth.Subject subject, javax.security.auth.callback.CallbackHandler callbackHandler, java.util.Map<java.lang.String,?> sharedState, java.util.Map<java.lang.String,?> options)Initialize this LoginModule.- Specified by:
initializein interfacejavax.security.auth.spi.LoginModule- Parameters:
subject- the Subject to be authenticated.callbackHandler- a CallbackHandler for communicating with the end user (prompting for user names and passwords, for example)sharedState- shared LoginModule state. This param is unused.options- options specified in the login Configuration for this particular LoginModule. This param is unused
-
login
public boolean login() throws javax.security.auth.login.LoginExceptionAuthenticate the user, obtaining credentials from the CallbackHandler supplied in initialize. As long as the configured IAuthenticator supports the optional legacyAuthenticate method, it can be used here.- Specified by:
loginin interfacejavax.security.auth.spi.LoginModule- Returns:
- true in all cases since this LoginModule should not be ignored.
- Throws:
javax.security.auth.login.FailedLoginException- if the authentication fails.javax.security.auth.login.LoginException- if this LoginModule is unable to perform the authentication.
-
commit
public boolean commit() throws javax.security.auth.login.LoginExceptionThis method is called if the LoginContext's overall authentication succeeded (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules succeeded). If this LoginModule's own authentication attempt succeeded (checked by retrieving the private state saved by the login method), then this method associates a CassandraPrincipal with the Subject. If this LoginModule's own authentication attempted failed, then this method removes any state that was originally saved.- Specified by:
commitin interfacejavax.security.auth.spi.LoginModule- Returns:
- true if this LoginModule's own login and commit attempts succeeded, false otherwise.
- Throws:
javax.security.auth.login.LoginException- if the commit fails.
-
abort
public boolean abort() throws javax.security.auth.login.LoginExceptionThis method is called if the LoginContext's overall authentication failed. (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules did not succeed). If this LoginModule's own authentication attempt succeeded (checked by retrieving the private state saved by the login and commit methods), then this method cleans up any state that was originally saved.- Specified by:
abortin interfacejavax.security.auth.spi.LoginModule- Returns:
- false if this LoginModule's own login and/or commit attempts failed, true otherwise.
- Throws:
javax.security.auth.login.LoginException- if the abort fails.
-
logout
public boolean logout() throws javax.security.auth.login.LoginExceptionLogout the user. This method removes the principal that was added by the commit method.- Specified by:
logoutin interfacejavax.security.auth.spi.LoginModule- Returns:
- true in all cases since this LoginModule should not be ignored.
- Throws:
javax.security.auth.login.LoginException- if the logout fails.
-
-