Index (xrootd4j GSI authentication plugin 4.3.1 API)

A B C D E F G H I L M N O P R S T U V W _
All Classes All Packages

A

accept(ByteBuf) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializer
ASYNC_CIPHER_MODE - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: RSA algorithm, no block chaining mode (not a block-cipher) and PKCS1 padding, which is recommended to be used in conjunction with RSA
authenticate(AuthenticationRequest) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationHandler: dispatcher function that initializes the diffie-hellman key agreement session, checks the request for the correct protocol and calls the actual handler functions.

B

BucketData() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketData
BucketSerializer() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializer
BucketSerializerBuilder() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
bufferHandler - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
build() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
build(GSIBucket...) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketContainerBuilder
buildContainer() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketContainerBuilder
buildContainer() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler.CertRequestBuckets
buildContainer() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler.CertResponseBuckets
buildContainer() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler.CertRequestBuckets
buildContainer() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler.PxyreqResponseBuckets

C

cancelHandshake() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
cancelOutstandingProxyRequest() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
CERT_AUTH_KEY - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
CertChainValidatorProvider - Class in org.dcache.xrootd.plugins.authn.gsi: The intention here is to limit this class to one shared instance per domain.
CertChainValidatorProvider(Properties) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.CertChainValidatorProvider
CertRequestBuckets(String, Optional<Integer>) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler.CertRequestBuckets
CertRequestBuckets(GSIBucket, String, byte[], XrootdSecurityProtocol.BucketType, String, String, String) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler.CertRequestBuckets
CertResponseBuckets(GSIBucket, byte[], XrootdSecurityProtocol.BucketType, Optional<String>, Optional<String>, String, String) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler.CertResponseBuckets
certToPEM(X509Certificate) - Static method in class org.dcache.xrootd.plugins.authn.gsi.CertUtil: Encodes to PEM format with default X.509 certificate header/footer
CertUtil - Class in org.dcache.xrootd.plugins.authn.gsi: CertUtil - convenience methods for certificate processing
CertUtil() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.CertUtil
chainToPEM(Iterable<X509Certificate>) - Static method in class org.dcache.xrootd.plugins.authn.gsi.CertUtil
challenge - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
CHALLENGE_BYTES - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
checkCaIdentities(String[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
checkIdentity(X509Certificate, String) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
cipher - Variable in class org.dcache.xrootd.plugins.authn.gsi.RSASession
client - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
computeHash(MessageDigest, X500Principal) - Static method in class org.dcache.xrootd.plugins.authn.gsi.CertUtil: Computes the hash from the principal, using the passed-in digest (usually MD5).
computeMD5Hash(X500Principal) - Static method in class org.dcache.xrootd.plugins.authn.gsi.CertUtil: Convenience method to compute a openssl-compatible md5 hash
createCertificate(byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
createFactory(String, Properties) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationProvider
createFactory(String, Properties) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationProvider
createHandler() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationFactory
createHandler(ProxyDelegationClient) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationFactory
CredentialLoader - Class in org.dcache.xrootd.plugins.authn.gsi: Loads and stores credentials based on certificate .pems on the local disk.
CredentialLoader(Properties, X509CertChainValidator) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.CredentialLoader
credentialManager - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
CRYPTO_MODE - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
CRYPTO_MODE_NO_PAD - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler

D

decrypt(byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.DHBufferHandler
decrypt(byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.RSASession
decrypt(String, String, int, byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.DHSession
decryptMainBucketWithSessionKey(Map<XrootdSecurityProtocol.BucketType, GSIBucket>, String) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Assumes the dhSession has been finalized.
deserialize(XrootdSecurityProtocol.BucketType, ByteBuf) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils: Deserialize an XrootdBucket.
deserialize(XrootdSecurityProtocol.BucketType, ByteBuf) - Static method in class org.dcache.xrootd.plugins.authn.gsi.RawBucket
deserialize(XrootdSecurityProtocol.BucketType, ByteBuf) - Static method in class org.dcache.xrootd.plugins.authn.gsi.StringBucket
deserialize(XrootdSecurityProtocol.BucketType, ByteBuf) - Static method in class org.dcache.xrootd.plugins.authn.gsi.UnsignedIntBucket
deserializeBuckets(ByteBuf) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils: Deserialize the buckets sent by the client and put them into a EnumMap sorted by their header-information.
deserializeData(AuthenticationRequest) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils
deserializeData(InboundAuthenticationResponse) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils
deserializeNested(XrootdSecurityProtocol.BucketType, ByteBuf) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils: Deserialize the NestedBucketBuffer.
DHBufferHandler - Class in org.dcache.xrootd.plugins.authn.gsi: Uses established shared secret from a Diffie Hellman session to encrypt or decrypt the buffer.
DHBufferHandler(DHSession, String, String, int) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.DHBufferHandler
dhParams(boolean) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
dhSession - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
DHSession - Class in org.dcache.xrootd.plugins.authn.gsi: This class represents a Diffie-Hellman (DH) session.
DHSession(boolean, int) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.DHSession: Construct new Diffie-Hellman key exchange session
doOnAuthenticationResponse(ChannelHandlerContext, InboundAuthenticationResponse) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationHandler
doOnErrorResponse(ChannelHandlerContext, InboundErrorResponse) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationHandler
dump(StringBuilder, String, int) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucket: This usually will be called only if trace is enabled.
dump(StringBuilder, String, int) - Method in class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
dump(StringBuilder, String, int) - Method in class org.dcache.xrootd.plugins.authn.gsi.RawBucket: This usually will be called only if trace is enabled.
dump(StringBuilder, String, int) - Method in class org.dcache.xrootd.plugins.authn.gsi.StringBucket
dump(StringBuilder, String, int) - Method in class org.dcache.xrootd.plugins.authn.gsi.UnsignedIntBucket
dumpBuckets(StringBuilder, Collection<GSIBucket>, String) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils
dumpBytes(StringBuilder, byte[]) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils

E

encrypt(byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.DHBufferHandler
encrypt(byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.RSASession
encrypt(String, String, int, byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.DHSession
ENCRYPTION_KEY - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
extractChain(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Pull out the string content of the kXRS_x509 bucket and convert it into a cert chain.

F

finaliseKeyAgreement(String) - Method in class org.dcache.xrootd.plugins.authn.gsi.DHSession
finalizeDelegatedProxy(X509Certificate[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager: Attempts to store the new proxy.
finalizeSessionKey(Map<XrootdSecurityProtocol.BucketType, GSIBucket>, XrootdSecurityProtocol.BucketType) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: For the pre-4.9 protocol, the DH client params are sent in the clear (unsigned) in the kXRS_puk bucket.
findSessionIVLen(String) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
fromPEM(String, String, String) - Static method in class org.dcache.xrootd.plugins.authn.gsi.CertUtil: Decodes PEM by removing the given header and footer, and decodes the inner content with base64.

G

generateChallengeString() - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Generate a new challenge string to be used in server-client communication
getBucketMap() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketData
getBuckets() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketContainer
getCertChainValidator() - Method in class org.dcache.xrootd.plugins.authn.gsi.CertChainValidatorProvider
getCertChainValidator() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
getClientCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
getClientCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
getClientCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
getClientOpts() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
getClientOpts() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
getClientOpts() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
getContent() - Method in class org.dcache.xrootd.plugins.authn.gsi.RawBucket
getContent() - Method in class org.dcache.xrootd.plugins.authn.gsi.StringBucket
getContent() - Method in class org.dcache.xrootd.plugins.authn.gsi.UnsignedIntBucket
getDecrypter() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationHandler
getDecrypter() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
getDescription() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationFactory
getEncodedDHMaterial() - Method in class org.dcache.xrootd.plugins.authn.gsi.DHSession
getHostCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.CredentialLoader
getHostCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
getIssuerHashes() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
getLengthForRequest(GSIBucketContainer) - Static method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils
getName() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationFactory
getNestedBuckets() - Method in class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
getProtocol() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationHandler
getProtocol() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketData
getProtocol() - Method in class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
getProtocolVersion() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
getProtocolVersion() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
getProtocolVersion() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ServerRequestHandler
getProtocolVersion() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
getProtocolVersion() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ServerRequestHandler
getProxy() - Method in class org.dcache.xrootd.plugins.authn.gsi.CredentialLoader
getProxy() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
getSenderPublicKey() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
getSignedProxyRequest(byte[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager: Client-side method.
getSigverEncoder(XrootdTpcClient) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
getSize() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucket
getSize() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketContainer
getSize() - Method in class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
getSize() - Method in class org.dcache.xrootd.plugins.authn.gsi.RawBucket
getSize() - Method in class org.dcache.xrootd.plugins.authn.gsi.StringBucket
getSize() - Method in class org.dcache.xrootd.plugins.authn.gsi.UnsignedIntBucket
getStep() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketData
getStep() - Method in class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
getSubject() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationHandler
getSyncCipherMode() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
getSyncCipherMode() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
getSyncCipherMode() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ServerRequestHandler
getSyncCipherMode() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
getSyncCipherMode() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ServerRequestHandler
getType() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucket
getVersion() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketData
GSIAuthenticationFactory - Class in org.dcache.xrootd.plugins.authn.gsi: Authentication factory that returns GSI security handlers.
GSIAuthenticationFactory(Properties) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationFactory
GSIAuthenticationHandler - Class in org.dcache.xrootd.plugins.authn.gsi: Handler for xrootd-security message exchange based on the GSI protocol.
GSIAuthenticationHandler(GSICredentialManager) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationHandler
GSIAuthenticationProvider - Class in org.dcache.xrootd.plugins.authn.gsi
GSIAuthenticationProvider() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationProvider
GSIBucket - Class in org.dcache.xrootd.plugins.authn.gsi: An XrootdBucket is a serialized datatype (string, uint, binary, list) with an int32 header describing its contents.
GSIBucket(XrootdSecurityProtocol.BucketType) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIBucket
GSIBucketContainer - Class in org.dcache.xrootd.plugins.authn.gsi: Utility wrapper around bucket list.
GSIBucketContainer(List<GSIBucket>, int) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIBucketContainer
GSIBucketContainerBuilder - Class in org.dcache.xrootd.plugins.authn.gsi: Convenience utility for building bucket containers.
GSIBucketContainerBuilder() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIBucketContainerBuilder
GSIBucketUtils - Class in org.dcache.xrootd.plugins.authn.gsi: Utilities for deserializing, writing, and printing out GSI byte buckets.
GSIBucketUtils.BucketData - Class in org.dcache.xrootd.plugins.authn.gsi: The Xrootd GSI protocol passes handshake information in structs that are called "buckets".
GSIBucketUtils.BucketSerializer - Class in org.dcache.xrootd.plugins.authn.gsi
GSIBucketUtils.BucketSerializerBuilder - Class in org.dcache.xrootd.plugins.authn.gsi
GSIClientAuthenticationFactory - Class in org.dcache.xrootd.plugins.authn.gsi: Authentication factory that returns GSI security handlers to add to the third-party client channel pipeline.
GSIClientAuthenticationFactory(Properties) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationFactory
GSIClientAuthenticationHandler - Class in org.dcache.xrootd.plugins.authn.gsi: Client-side handler mirroring the server-side GSIAuthenticationHandler.
GSIClientAuthenticationHandler(GSICredentialManager) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationHandler
GSIClientAuthenticationProvider - Class in org.dcache.xrootd.plugins.authn.gsi
GSIClientAuthenticationProvider() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationProvider
GSIClientRequestHandler - Class in org.dcache.xrootd.plugins.authn.gsi
GSIClientRequestHandler(GSICredentialManager, XrootdTpcClient) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
GSIClientRequestHandler.CertRequestBuckets - Class in org.dcache.xrootd.plugins.authn.gsi
GSIClientRequestHandler.CertResponseBuckets - Class in org.dcache.xrootd.plugins.authn.gsi
GSICredentialManager - Class in org.dcache.xrootd.plugins.authn.gsi: The component which provides credential management and related support to the request handlers.
GSICredentialManager(Properties, CredentialLoader, X509CertChainValidator) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
GSIPost49ClientRequestHandler - Class in org.dcache.xrootd.plugins.authn.gsi.post49
GSIPost49ClientRequestHandler(GSICredentialManager, XrootdTpcClient) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
GSIPost49ClientRequestHandler.PxyreqResponseBuckets - Class in org.dcache.xrootd.plugins.authn.gsi.post49
GSIPost49ServerRequestHandler - Class in org.dcache.xrootd.plugins.authn.gsi.post49: Implementation of server side of GSI handshake according to XrootD 4.9+.
GSIPost49ServerRequestHandler(Subject, GSICredentialManager) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ServerRequestHandler
GSIPre49ClientRequestHandler - Class in org.dcache.xrootd.plugins.authn.gsi.pre49
GSIPre49ClientRequestHandler(GSICredentialManager, XrootdTpcClient) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
GSIPre49ServerRequestHandler - Class in org.dcache.xrootd.plugins.authn.gsi.pre49: Implementation of server side of GSI handshake prior to XrootD 4.9.
GSIPre49ServerRequestHandler(Subject, GSICredentialManager) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ServerRequestHandler
GSIRequestHandler - Class in org.dcache.xrootd.plugins.authn.gsi: Shared settings and functionality for processing both client and server GSI authentication requests.
GSIRequestHandler(GSICredentialManager) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
GSIServerRequestHandler - Class in org.dcache.xrootd.plugins.authn.gsi
GSIServerRequestHandler(Subject, GSICredentialManager) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
GSIServerRequestHandler.CertRequestBuckets - Class in org.dcache.xrootd.plugins.authn.gsi

H

handleAuthenticationError(InboundErrorResponse) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
handleAuthenticationError(InboundErrorResponse) - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
handleAuthenticationError(InboundErrorResponse) - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
handleCertReqStep() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler: Handle certreq step.
handleCertReqStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
handleCertReqStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ServerRequestHandler
handleCertReqStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ServerRequestHandler
handleCertReqStep(AuthenticationRequest, GSIBucketUtils.BucketData, boolean, XrootdSecurityProtocol.BucketType) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler: Handle the kXGC_certreq step.
handleCertStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
handleCertStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ServerRequestHandler: Handle the second step (reply by client to authmore).
handleCertStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ServerRequestHandler: Handle the second step (reply by client to authmore).
handleCertStep(InboundAuthenticationResponse, GSIBucketUtils.BucketData, ChannelHandlerContext) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
handleCertStep(InboundAuthenticationResponse, GSIBucketUtils.BucketData, ChannelHandlerContext) - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
handleCertStep(InboundAuthenticationResponse, GSIBucketUtils.BucketData, ChannelHandlerContext) - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
handleCertStep(InboundAuthenticationResponse, GSIBucketUtils.BucketData, ChannelHandlerContext, XrootdSecurityProtocol.BucketType, boolean, Optional<String>, Optional<String>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler: The processing of this step differs between versions only in these details: (A) the bucket containing DH params: pre-4.9 = kXRS_puk, 4.9 = kXRS_cipher (B) DH parameters are signed using the private key: pre-4.9 no, 4.9 yes (C) the public key of the client is included in a separate bucket: pre-4.9 no, 4.9 in kXRS_puk (D) a username bucket is included pre-4.9 no, 4.9 yes Otherwise, all the following must be done: - validate cipher and digest - extract and validate the server certificate - verify the rtag challenge sent previously - finalize the dh session from the dh params sent by server - create the main bucket with signed challenge, new challenge and serialized certificate of client - add buckets for cipher, digest, dhParams, and optionally publicKey and username.
handleSigPxyStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
handleSigPxyStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ServerRequestHandler: Decrypt main bucket, check signed rtag, and then use included signed certificate to finalize proxy (and send to the credential store).
handleSigPxyStep(AuthenticationRequest, GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ServerRequestHandler

I

initializeForDecryption(PublicKey) - Method in class org.dcache.xrootd.plugins.authn.gsi.RSASession: Prepare rsaCipher for decryption using received public key.
initializeForEncryption(PrivateKey) - Method in class org.dcache.xrootd.plugins.authn.gsi.RSASession: Prepare rsaCipher for encryption using local private key.
isCompleted() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationHandler
isDelegationOnly() - Method in class org.dcache.xrootd.plugins.authn.gsi.CredentialLoader
isDelegationOnly() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
isFinished(GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
isFinished(GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ServerRequestHandler
isFinished(GSIBucketUtils.BucketData) - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ServerRequestHandler
isRequestExpired() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler

L

lastRequest - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
loadClientCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
loadClientCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
loadClientCredential() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler
LOGGER - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIAuthenticationHandler
LOGGER - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
LOGGER - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
LOGGER - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
LOGGER - Static variable in class org.dcache.xrootd.plugins.authn.gsi.RSASession

M

MAX_TIME_SKEW - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Maximum request time skew.
maxDecryptionBlockSize - Variable in class org.dcache.xrootd.plugins.authn.gsi.RSASession
maxEncryptionBlockSize - Variable in class org.dcache.xrootd.plugins.authn.gsi.RSASession

N

NestedBucketBuffer - Class in org.dcache.xrootd.plugins.authn.gsi: Format of a NestedBucketBuffer: - int32 BucketType (usually kXRS_main) - int32 len - char[4] protocol (\0 padded) - int32 step (e.g.
NestedBucketBuffer(XrootdSecurityProtocol.BucketType, String, int, Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
noPadding - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler

O

org.dcache.xrootd.plugins.authn.gsi - package org.dcache.xrootd.plugins.authn.gsi
org.dcache.xrootd.plugins.authn.gsi.post49 - package org.dcache.xrootd.plugins.authn.gsi.post49
org.dcache.xrootd.plugins.authn.gsi.pre49 - package org.dcache.xrootd.plugins.authn.gsi.pre49

P

postProcessMainBucket(Map<XrootdSecurityProtocol.BucketType, GSIBucket>, Optional<String>, int) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Generate a new challenge string.
prepareSerializedProxyRequest(X509Certificate[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager: Server-side method.
prepend(X509Certificate, X509Certificate[]) - Static method in class org.dcache.xrootd.plugins.authn.gsi.CertUtil: Rebuild the cert chain by adding the new cert in first position.
processRSAVerification(Map<XrootdSecurityProtocol.BucketType, GSIBucket>, Optional<PublicKey>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
PROTO_PRE_DELEGATION - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
PROTO_WITH_DELEGATION - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
PROTOCOL - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
PROTOCOL_VERSION - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
PUBLIC_KEY_ALGORITHM - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: For use in encoding/decoding X509 public keys.
PUBLIC_KEY_FOOTER - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
PUBLIC_KEY_HEADER - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
PxyreqResponseBuckets(GSIBucket) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler.PxyreqResponseBuckets

R

RANDOM - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
RawBucket - Class in org.dcache.xrootd.plugins.authn.gsi: A bucket containing a header plus a number of bytes.
RawBucket(XrootdSecurityProtocol.BucketType, byte[]) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.RawBucket
rsaSession - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
RSASession - Class in org.dcache.xrootd.plugins.authn.gsi: This class is necessitated by the fact that the new GSI protocol requires encryption and decryption of the arbitrarily long Diffie-Hellman encoded parameters.
RSASession() - Constructor for class org.dcache.xrootd.plugins.authn.gsi.RSASession

S

sendAuthenticationRequest(ChannelHandlerContext) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationHandler
serialize(ByteBuf) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucket
serialize(ByteBuf) - Method in class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
serialize(ByteBuf) - Method in class org.dcache.xrootd.plugins.authn.gsi.RawBucket
serialize(ByteBuf) - Method in class org.dcache.xrootd.plugins.authn.gsi.StringBucket
serialize(ByteBuf) - Method in class org.dcache.xrootd.plugins.authn.gsi.UnsignedIntBucket
SESSION_IV_DELIM - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Random session IV.
SESSION_IV_LEN - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
setClient(XrootdTpcClient) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientAuthenticationHandler
setIssuerHashesFromCredential(X509Credential) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
setPaddedKey(boolean) - Method in class org.dcache.xrootd.plugins.authn.gsi.DHSession
setProxyDelegationClient(ProxyDelegationClient) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSICredentialManager
setSessionIVLen(int) - Method in class org.dcache.xrootd.plugins.authn.gsi.DHSession
StringBucket - Class in org.dcache.xrootd.plugins.authn.gsi: A bucket containing a header plus a String.
StringBucket(XrootdSecurityProtocol.BucketType, String) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.StringBucket
subject - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
SUPPORTED_CIPHER_ALGORITHM - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: we limit ourselves to AES-128 with CBC blockmode.
SUPPORTED_DIGESTS - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
SYNC_CIPHER_BLOCKSIZE - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Blocksize in bytes
SYNC_CIPHER_MODE_PADDED - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Sync cipher mode supported by the server.
SYNC_CIPHER_MODE_UNPADDED - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
SYNC_CIPHER_NAME - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler

T

toPEM(byte[], String, String) - Static method in class org.dcache.xrootd.plugins.authn.gsi.CertUtil: Encodes to PEM.
toString() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucket
toString() - Method in class org.dcache.xrootd.plugins.authn.gsi.NestedBucketBuffer
toString() - Method in class org.dcache.xrootd.plugins.authn.gsi.RawBucket
toString() - Method in class org.dcache.xrootd.plugins.authn.gsi.StringBucket
toString() - Method in class org.dcache.xrootd.plugins.authn.gsi.UnsignedIntBucket

U

UnsignedIntBucket - Class in org.dcache.xrootd.plugins.authn.gsi: A bucket containing a header plus an unsigned integer.
UnsignedIntBucket(XrootdSecurityProtocol.BucketType, int) - Constructor for class org.dcache.xrootd.plugins.authn.gsi.UnsignedIntBucket
updateLastRequest() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
usePadded() - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
usePadded() - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
usePadded() - Method in class org.dcache.xrootd.plugins.authn.gsi.pre49.GSIPre49ClientRequestHandler

V

validateCertificate(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
validateCiphers(String[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
validateCiphers(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
validateCiphers(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
validateCiphers(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.post49.GSIPost49ClientRequestHandler
validateCryptoMode(String) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
validateDigests(String[]) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler
validateDigests(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIClientRequestHandler
validateDigests(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIServerRequestHandler
verifySignedRTag(Map<XrootdSecurityProtocol.BucketType, GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: From the main bucket extract the challenge tag signed by the sender.
VERSION_KEY - Static variable in class org.dcache.xrootd.plugins.authn.gsi.GSIRequestHandler: Sec response keys

W

withBuckets(List<GSIBucket>) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
withProtocol(String) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
withRequestId(Integer) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
withStat(Integer) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
withStep(int) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
withStepName(String) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
withStreamId(Integer) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder
withTitle(String) - Method in class org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketSerializerBuilder

_

_type - Variable in class org.dcache.xrootd.plugins.authn.gsi.GSIBucket

A B C D E F G H I L M N O P R S T U V W _
All Classes All Packages