Uses of Class
org.dcache.xrootd.plugins.authn.gsi.GSIBucketUtils.BucketData
-
Packages that use GSIBucketUtils.BucketData Package Description org.dcache.xrootd.plugins.authn.gsi org.dcache.xrootd.plugins.authn.gsi.post49 org.dcache.xrootd.plugins.authn.gsi.pre49 -
-
Uses of GSIBucketUtils.BucketData in org.dcache.xrootd.plugins.authn.gsi
Methods in org.dcache.xrootd.plugins.authn.gsi that return GSIBucketUtils.BucketData Modifier and Type Method Description static GSIBucketUtils.BucketDataGSIBucketUtils. deserializeData(AuthenticationRequest request)static GSIBucketUtils.BucketDataGSIBucketUtils. deserializeData(InboundAuthenticationResponse response)Methods in org.dcache.xrootd.plugins.authn.gsi with parameters of type GSIBucketUtils.BucketData Modifier and Type Method Description abstract XrootdResponse<AuthenticationRequest>GSIServerRequestHandler. handleCertReqStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)protected XrootdResponse<AuthenticationRequest>GSIServerRequestHandler. handleCertReqStep(AuthenticationRequest request, GSIBucketUtils.BucketData data, boolean signDHParams, XrootdSecurityProtocol.BucketType dhParamBucketType)Handle the kXGC_certreq step.abstract OutboundAuthenticationRequestGSIClientRequestHandler. handleCertStep(InboundAuthenticationResponse response, GSIBucketUtils.BucketData data, io.netty.channel.ChannelHandlerContext ctx)protected OutboundAuthenticationRequestGSIClientRequestHandler. handleCertStep(InboundAuthenticationResponse response, GSIBucketUtils.BucketData data, io.netty.channel.ChannelHandlerContext ctx, XrootdSecurityProtocol.BucketType dhParamBucket, boolean signDhParams, java.util.Optional<java.lang.String> publicKeyPem, java.util.Optional<java.lang.String> userName)The processing of this step differs between versions only in these details: (A) the bucket containing DH params: pre-4.9 = kXRS_puk, 4.9 = kXRS_cipher (B) DH parameters are signed using the private key: pre-4.9 no, 4.9 yes (C) the public key of the client is included in a separate bucket: pre-4.9 no, 4.9 in kXRS_puk (D) a username bucket is included pre-4.9 no, 4.9 yes Otherwise, all the following must be done: - validate cipher and digest - extract and validate the server certificate - verify the rtag challenge sent previously - finalize the dh session from the dh params sent by server - create the main bucket with signed challenge, new challenge and serialized certificate of client - add buckets for cipher, digest, dhParams, and optionally publicKey and username.abstract XrootdResponse<AuthenticationRequest>GSIServerRequestHandler. handleCertStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)abstract XrootdResponse<AuthenticationRequest>GSIServerRequestHandler. handleSigPxyStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)abstract booleanGSIServerRequestHandler. isFinished(GSIBucketUtils.BucketData data) -
Uses of GSIBucketUtils.BucketData in org.dcache.xrootd.plugins.authn.gsi.post49
Methods in org.dcache.xrootd.plugins.authn.gsi.post49 with parameters of type GSIBucketUtils.BucketData Modifier and Type Method Description XrootdResponse<AuthenticationRequest>GSIPost49ServerRequestHandler. handleCertReqStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)OutboundAuthenticationRequestGSIPost49ClientRequestHandler. handleCertStep(InboundAuthenticationResponse response, GSIBucketUtils.BucketData data, io.netty.channel.ChannelHandlerContext ctx)XrootdResponse<AuthenticationRequest>GSIPost49ServerRequestHandler. handleCertStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)Handle the second step (reply by client to authmore).XrootdResponse<AuthenticationRequest>GSIPost49ServerRequestHandler. handleSigPxyStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)Decrypt main bucket, check signed rtag, and then use included signed certificate to finalize proxy (and send to the credential store).booleanGSIPost49ServerRequestHandler. isFinished(GSIBucketUtils.BucketData data) -
Uses of GSIBucketUtils.BucketData in org.dcache.xrootd.plugins.authn.gsi.pre49
Methods in org.dcache.xrootd.plugins.authn.gsi.pre49 with parameters of type GSIBucketUtils.BucketData Modifier and Type Method Description XrootdResponse<AuthenticationRequest>GSIPre49ServerRequestHandler. handleCertReqStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)OutboundAuthenticationRequestGSIPre49ClientRequestHandler. handleCertStep(InboundAuthenticationResponse response, GSIBucketUtils.BucketData data, io.netty.channel.ChannelHandlerContext ctx)XrootdResponse<AuthenticationRequest>GSIPre49ServerRequestHandler. handleCertStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)Handle the second step (reply by client to authmore).XrootdResponse<AuthenticationRequest>GSIPre49ServerRequestHandler. handleSigPxyStep(AuthenticationRequest request, GSIBucketUtils.BucketData data)booleanGSIPre49ServerRequestHandler. isFinished(GSIBucketUtils.BucketData data)
-