Class SaslAuthenticator
java.lang.Object
org.apache.qpid.protonj2.engine.sasl.client.SaslAuthenticator
- All Implemented Interfaces:
SaslClientListener
Handles SASL traffic from the proton engine and drives the authentication process
-
Constructor Summary
ConstructorsConstructorDescriptionSaslAuthenticator(SaslCredentialsProvider credentials) Creates a new SASL Authenticator initialized with the given credentials provider instance.SaslAuthenticator(SaslMechanismSelector selector, SaslCredentialsProvider credentials) Creates a new client SASL Authenticator with the givenMechanismand client credentials provider instances. -
Method Summary
Modifier and TypeMethodDescriptionvoidhandleSaslChallenge(SaslClientContext context, ProtonBuffer challenge) Called when a SASL challenge frame has arrived and its effect applied, indicating the challenge sent by the 'server' peer.voidhandleSaslMechanisms(SaslClientContext context, Symbol[] mechanisms) Called when a SASL mechanisms frame has arrived and its effect applied, indicating the offered mechanisms sent by the 'server' peer.voidhandleSaslOutcome(SaslClientContext context, SaslOutcome outcome, ProtonBuffer additional) Called when a SASL outcome frame has arrived and its effect applied, indicating the outcome and any success additional data sent by the 'server' peer.saslComplete(EventHandler<SaslOutcome> saslCompleteEventHandler) Sets a completion handler that will be notified once the SASL exchange has completed.Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface org.apache.qpid.protonj2.engine.sasl.SaslClientListener
initialize
-
Constructor Details
-
SaslAuthenticator
Creates a new SASL Authenticator initialized with the given credentials provider instance. Because noMechanismselector is given the full set of supported SASL mechanisms will be chosen from when attempting to match one to the server offered SASL mechanisms.- Parameters:
credentials- The credentials that will be used when the SASL negotiation is in progress.
-
SaslAuthenticator
Creates a new client SASL Authenticator with the givenMechanismand client credentials provider instances. The configuredMechanismselector is used when attempting to match a SASLMechanismwith the server offered set of supported SASL mechanisms.- Parameters:
selector- TheSaslMechanismSelectorthat will be called upon to choose a server supported mechanism.credentials- The credentials that will be used when the SASL negotiation is in progress.
-
-
Method Details
-
saslComplete
Sets a completion handler that will be notified once the SASL exchange has completed. The notification includes theSaslOutcomevalue which indicates if authentication succeeded or failed.- Parameters:
saslCompleteEventHandler- TheEventHandlerthat will receive notification when SASL authentication has completed.- Returns:
- this
SaslAuthenticatorinstance.
-
handleSaslMechanisms
Description copied from interface:SaslClientListenerCalled when a SASL mechanisms frame has arrived and its effect applied, indicating the offered mechanisms sent by the 'server' peer. The client should respond to the mechanisms event by selecting one from the offered list and calling theSaslClientContext.sendChosenMechanism(Symbol, String, ProtonBuffer)method immediately or later using the same thread that triggered this event.In the event that the client implementation cannot proceed with SASL authentication it should call the
SaslClientContext.saslFailure(javax.security.sasl.SaslException)to fail the SASL negotiation and signal theEnginethat it should transition to a failed state.- Specified by:
handleSaslMechanismsin interfaceSaslClientListener- Parameters:
context- theSaslClientContextthat is to handle the mechanism selectionmechanisms- the mechanisms that the remote supports.- See Also:
-
handleSaslChallenge
Description copied from interface:SaslClientListenerCalled when a SASL challenge frame has arrived and its effect applied, indicating the challenge sent by the 'server' peer. The client should respond to the mechanisms event by selecting one from the offered list and calling theSaslClientContext.sendResponse(ProtonBuffer)method immediately or later using the same thread that triggered this event.In the event that the client implementation cannot proceed with SASL authentication it should call the
SaslClientContext.saslFailure(javax.security.sasl.SaslException)to fail the SASL negotiation and signal theEnginethat it should transition to a failed state.- Specified by:
handleSaslChallengein interfaceSaslClientListener- Parameters:
context- theSaslClientContextthat is to handle the SASL challenge.challenge- the challenge bytes sent from the SASL server.- See Also:
-
handleSaslOutcome
public void handleSaslOutcome(SaslClientContext context, SaslOutcome outcome, ProtonBuffer additional) Description copied from interface:SaslClientListenerCalled when a SASL outcome frame has arrived and its effect applied, indicating the outcome and any success additional data sent by the 'server' peer. The client can consider the SASL negotiations complete following this event. The client should respond appropriately to the outcome whose state can indicate that negotiations have failed and the server has not authenticated the client.In the event that the client implementation cannot proceed with SASL authentication it should call the
SaslClientContext.saslFailure(javax.security.sasl.SaslException)to fail the SASL negotiation and signal theEnginethat it should transition to a failed state.- Specified by:
handleSaslOutcomein interfaceSaslClientListener- Parameters:
context- theSaslClientContextthat is to handle the resulting SASL outcome.outcome- the outcome that was supplied by the SASL "server".additional- the additional data sent from the server, or null if none.- See Also:
-