SASLExternalMechanism.java

  1. /**
  2.  *
  3.  * Copyright the original author or authors
  4.  *
  5.  * Licensed under the Apache License, Version 2.0 (the "License");
  6.  * you may not use this file except in compliance with the License.
  7.  * You may obtain a copy of the License at
  8.  *
  9.  *     http://www.apache.org/licenses/LICENSE-2.0
  10.  *
  11.  * Unless required by applicable law or agreed to in writing, software
  12.  * distributed under the License is distributed on an "AS IS" BASIS,
  13.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  14.  * See the License for the specific language governing permissions and
  15.  * limitations under the License.
  16.  */
  17. package org.jivesoftware.smack.sasl.javax;

  19. /**
  20.  * Implementation of the SASL EXTERNAL mechanism.
  21.  *
  22.  * To effectively use this mechanism, Java must be configured to properly
  23.  * supply a client SSL certificate (of some sort) to the server. It is up
  24.  * to the implementer to determine how to do this.  Here is one method:
  25.  *
  26.  * Create a java keystore with your SSL certificate in it:
  27.  * keytool -genkey -alias username -dname "cn=username,ou=organizationalUnit,o=organizationalName,l=locality,s=state,c=country"
  28.  *
  29.  * Next, set the System Properties:
  30.  *  <ul>
  31.  *  <li>javax.net.ssl.keyStore to the location of the keyStore
  32.  *  <li>javax.net.ssl.keyStorePassword to the password of the keyStore
  33.  *  <li>javax.net.ssl.trustStore to the location of the trustStore
  34.  *  <li>javax.net.ssl.trustStorePassword to the password of the trustStore
  35.  *  </ul>
  36.  *
  37.  * Then, when the server requests or requires the client certificate, java will
  38.  * simply provide the one in the keyStore.
  39.  *
  40.  * Also worth noting is the EXTERNAL mechanism in Smack is not enabled by default.
  41.  * To enable it, the implementer will need to call SASLAuthentication.supportSASLMechanism("EXTERNAL");
  42.  *
  43.  * @author Jay Kline
  44.  */
  45. public class SASLExternalMechanism extends SASLJavaXMechanism  {

  47.     public static final String NAME = EXTERNAL;

  49.     @Override
  50.     public boolean authzidSupported() {
  51.       return true;
  52.     }

  54.     @Override
  55.     public String getName() {
  56.         return EXTERNAL;
  57.     }

  59.     @Override
  60.     public int getPriority() {
  61.         return 500;
  62.     }

  64.     @Override
  65.     public SASLExternalMechanism newInstance() {
  66.         return new SASLExternalMechanism();
  67.     }

  69.     @Override
  70.     public boolean requiresPassword() {
  71.         return false;
  72.     }
  73. }
Created with JaCoCo 0.8.6.202009150832