24 */ 25 26 package com.sun.security.jgss; 27 28 /** 29 * Attribute types that can be specified as an argument of 30 * {@link com.sun.security.jgss.ExtendedGSSContext#inquireSecContext} 31 */ 32 @jdk.Exported 33 public enum InquireType { 34 /** 35 * Attribute type for retrieving the session key of an established 36 * Kerberos 5 security context. The returned object is an instance of 37 * {@link java.security.Key}, which has the following properties: 38 * <ul> 39 * <li>Algorithm: enctype as a string, where 40 * enctype is defined in RFC 3961, section 8. 41 * <li>Format: "RAW" 42 * <li>Encoded form: the raw key bytes, not in any ASN.1 encoding 43 * </ul> 44 * @deprecated as of 1.9, replaced by {@link #KRB5_GET_SESSION_KEY_EX} 45 * which returns an instance of 46 * {@link javax.security.auth.kerberos.EncryptionKey} 47 * that implements the {@link javax.crypto.SecretKey} interface and 48 * has similar methods with {@link javax.security.auth.kerberos.KerberosKey}. 49 */ 50 @Deprecated 51 KRB5_GET_SESSION_KEY, 52 /** 53 * Attribute type for retrieving the session key of an 54 * established Kerberos 5 security context. The return value is an 55 * instance of {@link javax.security.auth.kerberos.EncryptionKey}. 56 * 57 * @since 1.9 58 */ 59 KRB5_GET_SESSION_KEY_EX, 60 /** 61 * Attribute type for retrieving the service ticket flags of an 62 * established Kerberos 5 security context. The returned object is 63 * a boolean array for the service ticket flags, which is long enough 64 * to contain all true bits. This means if the user wants to get the 65 * <em>n</em>'th bit but the length of the returned array is less than 66 * <em>n</em>, it is regarded as false. 67 */ 68 KRB5_GET_TKT_FLAGS, 69 /** 70 * Attribute type for retrieving the authorization data in the 71 * service ticket of an established Kerberos 5 security context. 72 * Only supported on the acceptor side. 73 */ 74 KRB5_GET_AUTHZ_DATA, 75 /** 76 * Attribute type for retrieving the authtime in the service ticket 77 * of an established Kerberos 5 security context. The returned object 78 * is a String object in the standard KerberosTime format defined in 79 * RFC 4120 Section 5.2.3. 80 */ 81 KRB5_GET_AUTHTIME, 82 /** 83 * Attribute type for retrieving the KRB_CRED message that an initiator 84 * is about to send to an acceptor. The return type is an instance of 85 * {@link javax.security.auth.kerberos.KerberosCredMessage}. 86 * 87 * @since 1.9 88 */ 89 KRB5_GET_KRB_CRED, 90 } | 24 */ 25 26 package com.sun.security.jgss; 27 28 /** 29 * Attribute types that can be specified as an argument of 30 * {@link com.sun.security.jgss.ExtendedGSSContext#inquireSecContext} 31 */ 32 @jdk.Exported 33 public enum InquireType { 34 /** 35 * Attribute type for retrieving the session key of an established 36 * Kerberos 5 security context. The returned object is an instance of 37 * {@link java.security.Key}, which has the following properties: 38 * <ul> 39 * <li>Algorithm: enctype as a string, where 40 * enctype is defined in RFC 3961, section 8. 41 * <li>Format: "RAW" 42 * <li>Encoded form: the raw key bytes, not in any ASN.1 encoding 43 * </ul> 44 * @deprecated as of 9, replaced by {@link #KRB5_GET_SESSION_KEY_EX} 45 * which returns an instance of 46 * {@link javax.security.auth.kerberos.EncryptionKey} 47 * that implements the {@link javax.crypto.SecretKey} interface and 48 * has similar methods with {@link javax.security.auth.kerberos.KerberosKey}. 49 */ 50 @Deprecated 51 KRB5_GET_SESSION_KEY, 52 /** 53 * Attribute type for retrieving the session key of an 54 * established Kerberos 5 security context. The return value is an 55 * instance of {@link javax.security.auth.kerberos.EncryptionKey}. 56 * 57 * @since 9 58 */ 59 KRB5_GET_SESSION_KEY_EX, 60 /** 61 * Attribute type for retrieving the service ticket flags of an 62 * established Kerberos 5 security context. The returned object is 63 * a boolean array for the service ticket flags, which is long enough 64 * to contain all true bits. This means if the user wants to get the 65 * <em>n</em>'th bit but the length of the returned array is less than 66 * <em>n</em>, it is regarded as false. 67 */ 68 KRB5_GET_TKT_FLAGS, 69 /** 70 * Attribute type for retrieving the authorization data in the 71 * service ticket of an established Kerberos 5 security context. 72 * Only supported on the acceptor side. 73 */ 74 KRB5_GET_AUTHZ_DATA, 75 /** 76 * Attribute type for retrieving the authtime in the service ticket 77 * of an established Kerberos 5 security context. The returned object 78 * is a String object in the standard KerberosTime format defined in 79 * RFC 4120 Section 5.2.3. 80 */ 81 KRB5_GET_AUTHTIME, 82 /** 83 * Attribute type for retrieving the KRB_CRED message that an initiator 84 * is about to send to an acceptor. The return type is an instance of 85 * {@link javax.security.auth.kerberos.KerberosCredMessage}. 86 * 87 * @since 9 88 */ 89 KRB5_GET_KRB_CRED, 90 } |