Example 1 with CreateKdcServer
use of org.apache.directory.server.annotations.CreateKdcServer in project wildfly by wildfly.
the class NoReplayKdcServer method createKdcServer.
// Private methods -------------------------------------------------------
/**
* Creates and starts {@link KdcServer} instance based on given configuration.
*
* @param createKdcServer
* @param directoryService
* @param startPort
* @return
*/
private static KdcServer createKdcServer(CreateKdcServer createKdcServer, DirectoryService directoryService, int startPort, String bindAddress) {
if (createKdcServer == null) {
return null;
}
KerberosConfig kdcConfig = new KerberosConfig();
kdcConfig.setServicePrincipal(createKdcServer.kdcPrincipal());
kdcConfig.setPrimaryRealm(createKdcServer.primaryRealm());
kdcConfig.setMaximumTicketLifetime(createKdcServer.maxTicketLifetime());
kdcConfig.setMaximumRenewableLifetime(createKdcServer.maxRenewableLifetime());
kdcConfig.setPaEncTimestampRequired(false);
KdcServer kdcServer = new NoReplayKdcServer(kdcConfig);
kdcServer.setSearchBaseDn(createKdcServer.searchBaseDn());
CreateTransport[] transportBuilders = createKdcServer.transports();
if (transportBuilders == null) {
// create only UDP transport if none specified
UdpTransport defaultTransport = new UdpTransport(bindAddress, AvailablePortFinder.getNextAvailable(startPort));
kdcServer.addTransports(defaultTransport);
} else if (transportBuilders.length > 0) {
for (CreateTransport transportBuilder : transportBuilders) {
String protocol = transportBuilder.protocol();
int port = transportBuilder.port();
int nbThreads = transportBuilder.nbThreads();
int backlog = transportBuilder.backlog();
final String address = bindAddress != null ? bindAddress : transportBuilder.address();
if (port == -1) {
port = AvailablePortFinder.getNextAvailable(startPort);
startPort = port + 1;
}
if (protocol.equalsIgnoreCase("TCP")) {
Transport tcp = new TcpTransport(address, port, nbThreads, backlog);
kdcServer.addTransports(tcp);
} else if (protocol.equalsIgnoreCase("UDP")) {
UdpTransport udp = new UdpTransport(address, port);
kdcServer.addTransports(udp);
} else {
throw new IllegalArgumentException(I18n.err(I18n.ERR_689, protocol));
}
}
}
CreateChngPwdServer[] createChngPwdServers = createKdcServer.chngPwdServer();
if (createChngPwdServers.length > 0) {
CreateChngPwdServer createChngPwdServer = createChngPwdServers[0];
ChangePasswordConfig config = new ChangePasswordConfig(kdcConfig);
config.setServicePrincipal(createChngPwdServer.srvPrincipal());
ChangePasswordServer chngPwdServer = new ChangePasswordServer(config);
for (CreateTransport transportBuilder : createChngPwdServer.transports()) {
Transport t = createTransport(transportBuilder, startPort);
startPort = t.getPort() + 1;
chngPwdServer.addTransports(t);
}
chngPwdServer.setDirectoryService(directoryService);
kdcServer.setChangePwdServer(chngPwdServer);
}
kdcServer.setDirectoryService(directoryService);
// Launch the server
try {
kdcServer.start();
} catch (Exception e) {
e.printStackTrace();
}
return kdcServer;
}
Also used :
UdpTransport(org.apache.directory.server.protocol.shared.transport.UdpTransport)
KerberosConfig(org.apache.directory.server.kerberos.KerberosConfig)
CreateTransport(org.apache.directory.server.annotations.CreateTransport)
ChangePasswordServer(org.apache.directory.server.kerberos.changepwd.ChangePasswordServer)
IOException(java.io.IOException)
LdapInvalidDnException(org.apache.directory.api.ldap.model.exception.LdapInvalidDnException)
ChangePasswordConfig(org.apache.directory.server.kerberos.ChangePasswordConfig)
CreateChngPwdServer(org.apache.directory.server.annotations.CreateChngPwdServer)
TcpTransport(org.apache.directory.server.protocol.shared.transport.TcpTransport)
CreateTransport(org.apache.directory.server.annotations.CreateTransport)
UdpTransport(org.apache.directory.server.protocol.shared.transport.UdpTransport)
TcpTransport(org.apache.directory.server.protocol.shared.transport.TcpTransport)
Transport(org.apache.directory.server.protocol.shared.transport.Transport)
KdcServer(org.apache.directory.server.kerberos.kdc.KdcServer)
CreateKdcServer(org.apache.directory.server.annotations.CreateKdcServer)
Example 2 with CreateKdcServer
use of org.apache.directory.server.annotations.CreateKdcServer in project wildfly by wildfly.
the class KerberosServerSetupTask method createLdap1.
//@formatter:off
@CreateDS(name = "JBossDS-KerberosServerSetupTask", factory = org.jboss.as.test.integration.ldap.InMemoryDirectoryServiceFactory.class, partitions = { @CreatePartition(name = "jboss", suffix = "dc=jboss,dc=org", contextEntry = @ContextEntry(entryLdif = "dn: dc=jboss,dc=org\n" + "dc: jboss\n" + "objectClass: top\n" + "objectClass: domain\n\n"), indexes = { @CreateIndex(attribute = "objectClass"), @CreateIndex(attribute = "dc"), @CreateIndex(attribute = "ou") }) }, additionalInterceptors = { KeyDerivationInterceptor.class })
@CreateLdapServer(transports = { @CreateTransport(protocol = "LDAP", port = LDAP_PORT), @CreateTransport(protocol = "LDAPS", port = LDAPS_PORT) }, certificatePassword = "secret")
@CreateKdcServer(primaryRealm = KERBEROS_PRIMARY_REALM, kdcPrincipal = "krbtgt/" + KERBEROS_PRIMARY_REALM + "@" + KERBEROS_PRIMARY_REALM, searchBaseDn = "dc=jboss,dc=org", transports = { @CreateTransport(protocol = "UDP", port = KERBEROS_PORT), @CreateTransport(protocol = "TCP", port = KERBEROS_PORT) })
public //@formatter:on
void createLdap1(ManagementClient managementClient, final String hostname) throws Exception {
final Map<String, String> map = new HashMap<String, String>();
final String cannonicalHost = NetworkUtils.formatPossibleIpv6Address(Utils.getCannonicalHost(managementClient));
map.put("hostname", cannonicalHost);
map.put("realm", KERBEROS_PRIMARY_REALM);
directoryService1 = DSAnnotationProcessor.getDirectoryService();
final String ldifContent = StrSubstitutor.replace(IOUtils.toString(KerberosServerSetupTask.class.getResourceAsStream(KerberosServerSetupTask.class.getSimpleName() + ".ldif"), "UTF-8"), map);
LOGGER.trace(ldifContent);
final SchemaManager schemaManager = directoryService1.getSchemaManager();
try {
for (LdifEntry ldifEntry : new LdifReader(IOUtils.toInputStream(ldifContent))) {
directoryService1.getAdminSession().add(new DefaultEntry(schemaManager, ldifEntry.getEntry()));
}
} catch (Exception e) {
e.printStackTrace();
throw e;
}
final ManagedCreateLdapServer createLdapServer = new ManagedCreateLdapServer((CreateLdapServer) AnnotationUtils.getInstance(CreateLdapServer.class));
FileOutputStream fos = new FileOutputStream(KEYSTORE_FILE);
IOUtils.copy(getClass().getResourceAsStream(KEYSTORE_FILENAME), fos);
fos.close();
createLdapServer.setKeyStore(KEYSTORE_FILE.getAbsolutePath());
fixTransportAddress(createLdapServer, cannonicalHost);
ldapServer1 = ServerAnnotationProcessor.instantiateLdapServer(createLdapServer, directoryService1);
krbServer1 = KDCServerAnnotationProcessor.getKdcServer(directoryService1, KERBEROS_PORT, cannonicalHost);
ldapServer1.start();
}
Also used :
LdifReader(org.apache.directory.api.ldap.model.ldif.LdifReader)
ManagedCreateLdapServer(org.jboss.as.test.integration.security.common.ManagedCreateLdapServer)
HashMap(java.util.HashMap)
FileOutputStream(java.io.FileOutputStream)
DefaultEntry(org.apache.directory.api.ldap.model.entry.DefaultEntry)
SchemaManager(org.apache.directory.api.ldap.model.schema.SchemaManager)
LdifEntry(org.apache.directory.api.ldap.model.ldif.LdifEntry)
CreateDS(org.apache.directory.server.core.annotations.CreateDS)
ManagedCreateLdapServer(org.jboss.as.test.integration.security.common.ManagedCreateLdapServer)
CreateLdapServer(org.apache.directory.server.annotations.CreateLdapServer)
CreateKdcServer(org.apache.directory.server.annotations.CreateKdcServer)
Aggregations
CreateKdcServer (org.apache.directory.server.annotations.CreateKdcServer)2
FileOutputStream (java.io.FileOutputStream)1
IOException (java.io.IOException)1
HashMap (java.util.HashMap)1
DefaultEntry (org.apache.directory.api.ldap.model.entry.DefaultEntry)1
LdapInvalidDnException (org.apache.directory.api.ldap.model.exception.LdapInvalidDnException)1
LdifEntry (org.apache.directory.api.ldap.model.ldif.LdifEntry)1
LdifReader (org.apache.directory.api.ldap.model.ldif.LdifReader)1
SchemaManager (org.apache.directory.api.ldap.model.schema.SchemaManager)1
CreateChngPwdServer (org.apache.directory.server.annotations.CreateChngPwdServer)1
CreateLdapServer (org.apache.directory.server.annotations.CreateLdapServer)1
CreateTransport (org.apache.directory.server.annotations.CreateTransport)1
CreateDS (org.apache.directory.server.core.annotations.CreateDS)1
ChangePasswordConfig (org.apache.directory.server.kerberos.ChangePasswordConfig)1
KerberosConfig (org.apache.directory.server.kerberos.KerberosConfig)1
ChangePasswordServer (org.apache.directory.server.kerberos.changepwd.ChangePasswordServer)1
KdcServer (org.apache.directory.server.kerberos.kdc.KdcServer)1
TcpTransport (org.apache.directory.server.protocol.shared.transport.TcpTransport)1
Transport (org.apache.directory.server.protocol.shared.transport.Transport)1
UdpTransport (org.apache.directory.server.protocol.shared.transport.UdpTransport)1
