krb5/auto/CrossRealm.java

	CrossRealm.java revision 678
0N/A/*
2273N/A * Copyright 2008 Sun Microsystems, Inc.  All Rights Reserved.
0N/A * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
0N/A *
0N/A * This code is free software; you can redistribute it and/or modify it
0N/A * under the terms of the GNU General Public License version 2 only, as
0N/A * published by the Free Software Foundation.
0N/A *
0N/A * This code is distributed in the hope that it will be useful, but WITHOUT
0N/A * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
0N/A * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
0N/A * version 2 for more details (a copy is included in the LICENSE file that
0N/A * accompanied this code).
0N/A *
0N/A * You should have received a copy of the GNU General Public License version
0N/A * 2 along with this work; if not, write to the Free Software Foundation,
0N/A * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
0N/A *
1472N/A * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
1472N/A * CA 95054 USA or visit www.sun.com if you need additional information or
1472N/A * have any questions.
0N/A */
0N/A
0N/A/*
1879N/A * @test
1879N/A * @bug 6706974
1879N/A * @summary Add krb5 test infrastructure
1879N/A */
1879N/Aimport java.io.FileOutputStream;
1879N/Aimport java.io.IOException;
1879N/Aimport java.security.Security;
1879N/Aimport javax.security.auth.callback.Callback;
1879N/Aimport javax.security.auth.callback.CallbackHandler;
1879N/Aimport javax.security.auth.callback.NameCallback;
1879N/Aimport javax.security.auth.callback.PasswordCallback;
1879N/Aimport javax.security.auth.callback.UnsupportedCallbackException;
1879N/Aimport org.ietf.jgss.GSSContext;
1879N/Aimport org.ietf.jgss.GSSManager;
1879N/Aimport org.ietf.jgss.GSSName;
1879N/Aimport sun.security.jgss.GSSUtil;
1879N/A
1879N/Apublic class CrossRealm implements CallbackHandler {
2073N/A    public static void main(String[] args) throws Exception {
2073N/A        startKDCs();
2073N/A        xRealmAuth();
2073N/A    }
2073N/A
2073N/A    static void startKDCs() throws Exception {
1879N/A        // Create and start the KDC
0N/A        KDC kdc1 = KDC.create("RABBIT.HOLE");
0N/A        kdc1.addPrincipal("dummy", "bogus".toCharArray());
0N/A        kdc1.addPrincipalRandKey("krbtgt/RABBIT.HOLE");
0N/A        kdc1.addPrincipal("krbtgt/SNAKE.HOLE", "sharedsec".toCharArray());
0N/A
0N/A        KDC kdc2 = KDC.create("SNAKE.HOLE");
0N/A        kdc2.addPrincipalRandKey("krbtgt/SNAKE.HOLE");
0N/A        kdc2.addPrincipal("krbtgt/RABBIT.HOLE", "sharedsec".toCharArray());
0N/A        kdc2.addPrincipalRandKey("host/www.snake.hole");
0N/A
0N/A        KDC.saveConfig("krb5-localkdc.conf", kdc1, kdc2,
0N/A                "forwardable=true",
0N/A                "[domain_realm]",
0N/A                ".snake.hole=SNAKE.HOLE");
0N/A        System.setProperty("java.security.krb5.conf", "krb5-localkdc.conf");
0N/A    }
0N/A
0N/A    static void xRealmAuth() throws Exception {
0N/A        Security.setProperty("auth.login.defaultCallbackHandler", "CrossRealm");
0N/A        System.setProperty("java.security.auth.login.config", "jaas-localkdc.conf");
0N/A        System.setProperty("javax.security.auth.useSubjectCredsOnly", "false");
0N/A        FileOutputStream fos = new FileOutputStream("jaas-localkdc.conf");
0N/A        fos.write(("com.sun.security.jgss.krb5.initiate {\n" +
0N/A                "    com.sun.security.auth.module.Krb5LoginModule\n" +
0N/A                "    required\n" +
0N/A                "    principal=dummy\n" +
0N/A                "    doNotPrompt=false\n" +
0N/A                "    useTicketCache=false\n" +
0N/A                "    ;\n" +
0N/A                "};").getBytes());
0N/A        fos.close();
0N/A
0N/A        GSSManager m = GSSManager.getInstance();
0N/A        m.createContext(
0N/A                m.createName("host@www.snake.hole", GSSName.NT_HOSTBASED_SERVICE),
0N/A                GSSUtil.GSS_KRB5_MECH_OID,
0N/A                null,
0N/A                GSSContext.DEFAULT_LIFETIME).initSecContext(new byte[0], 0, 0);
0N/A    }
0N/A
0N/A    @Override
0N/A    public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException {
0N/A        for (Callback callback : callbacks) {
0N/A            if (callback instanceof NameCallback) {
0N/A                ((NameCallback) callback).setName("dummy");
0N/A            }
0N/A            if (callback instanceof PasswordCallback) {
0N/A                ((PasswordCallback) callback).setPassword("bogus".toCharArray());
0N/A            }
0N/A        }
0N/A    }
3932N/A}
0N/A