org.globus.myproxy
Class MyProxyServerAuthorization

java.lang.Object
  extended by org.globus.gsi.gssapi.auth.Authorization
      extended by org.globus.myproxy.MyProxyServerAuthorization

public class MyProxyServerAuthorization
extends org.globus.gsi.gssapi.auth.Authorization

Implements the MyProxy server authorization mechanism.


Constructor Summary
MyProxyServerAuthorization()
           
 
Method Summary
 void authorize(org.ietf.jgss.GSSContext context, java.lang.String host)
          Performs MyProxy server authorization checks.
 
Methods inherited from class org.globus.gsi.gssapi.auth.Authorization
generateAuthorizationException
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

MyProxyServerAuthorization

public MyProxyServerAuthorization()
Method Detail

authorize

public void authorize(org.ietf.jgss.GSSContext context,
                      java.lang.String host)
               throws org.globus.gsi.gssapi.auth.AuthorizationException
Performs MyProxy server authorization checks. The hostname of the server is compared with the hostname specified in the server's (topmost) certificate in the certificate chain. The hostnames must match exactly (in case-insensitive way). The service in the certificate may be "host" or "myproxy". AuthorizationException if the authorization fails. Otherwise, the function completes normally.

Specified by:
authorize in class org.globus.gsi.gssapi.auth.Authorization
Parameters:
context - the security context.
host - host address of the peer.
Throws:
org.globus.gsi.gssapi.auth.AuthorizationException - if the peer is not authorized to access/use the resource.


Copyright © 2012. All Rights Reserved.