Wildfire 3.2.4 Javadoc

org.jivesoftware.wildfire.sasl
Class StrictAuthorizationPolicy

java.lang.Object
  extended by org.jivesoftware.wildfire.sasl.AbstractAuthorizationPolicy
      extended by org.jivesoftware.wildfire.sasl.StrictAuthorizationPolicy
All Implemented Interfaces:
AuthorizationProvider

public class StrictAuthorizationPolicy
extends AbstractAuthorizationPolicy
implements AuthorizationProvider

This policy will authorize any principal who:

  • Username of principal matches exactly the username of the JID
  • The user principal's realm matches exactly the realm of the server.
  • Note that the realm may not match the servername, and in fact for this policy to be useful it will not match the servername. RFC3920 Section 6.1, item 7 states that if the principal (authorization entity) is the same as the JID (initiating entity), its MUST NOT provide an authorization identity. In practice however, GSSAPI will provide both. (Note: Ive not done extensive testing on this)

    Author:
    Jay Kline

    Constructor Summary
    StrictAuthorizationPolicy()
               
     
    Method Summary
     boolean authorize(String username, String principal)
              Returns true if the principal is explicity authorized to the JID
     String description()
              Returns a description of the Policy
     String name()
              Returns the short name of the Policy
     
    Methods inherited from class java.lang.Object
    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
     

    Constructor Detail

    StrictAuthorizationPolicy

    public StrictAuthorizationPolicy()
    Method Detail

    authorize

    public boolean authorize(String username,
                             String principal)
    Returns true if the principal is explicity authorized to the JID

    Specified by:
    authorize in interface AuthorizationProvider
    Specified by:
    authorize in class AbstractAuthorizationPolicy
    Parameters:
    username - The username requested.
    principal - The principal requesting the username.
    Returns:
    true is the user is authorized to be principal

    name

    public String name()
    Returns the short name of the Policy

    Specified by:
    name in class AbstractAuthorizationPolicy
    Returns:
    The short name of the Policy

    description

    public String description()
    Returns a description of the Policy

    Specified by:
    description in class AbstractAuthorizationPolicy
    Returns:
    The description of the Policy.

    Wildfire 3.2.4 Javadoc

    Copyright © 2003-2007 Jive Software.