提交 98c21618 编写于 作者: W weijun

6785456: Read Kerberos setting from Windows environment variables

Reviewed-by: valeriep
上级 7a33f3a6
...@@ -1079,12 +1079,39 @@ public class Config { ...@@ -1079,12 +1079,39 @@ public class Config {
/** /**
* Gets default realm. * Gets default realm.
* @throws KrbException where no realm can be located
* @return the default realm, always non null
*/ */
public String getDefaultRealm() throws KrbException { public String getDefaultRealm() throws KrbException {
Exception cause = null;
String realm = getDefault("default_realm", "libdefaults"); String realm = getDefault("default_realm", "libdefaults");
if ((realm == null) && useDNS_Realm()) { if ((realm == null) && useDNS_Realm()) {
// use DNS to locate Kerberos realm // use DNS to locate Kerberos realm
try {
realm = getRealmFromDNS(); realm = getRealmFromDNS();
} catch (KrbException ke) {
cause = ke;
}
}
if (realm == null) {
realm = java.security.AccessController.doPrivileged(
new java.security.PrivilegedAction<String>() {
@Override
public String run() {
String osname = System.getProperty("os.name");
if (osname.startsWith("Windows")) {
return System.getenv("USERDNSDOMAIN");
}
return null;
}
});
}
if (realm == null) {
KrbException ke = new KrbException("Cannot locate default realm");
if (cause != null) {
ke.initCause(cause);
}
throw ke;
} }
return realm; return realm;
} }
...@@ -1092,17 +1119,48 @@ public class Config { ...@@ -1092,17 +1119,48 @@ public class Config {
/** /**
* Returns a list of KDC's with each KDC separated by a space * Returns a list of KDC's with each KDC separated by a space
* *
* @param realm the realm for which the master KDC is desired * @param realm the realm for which the KDC list is desired
* @return the list of KDCs * @throws KrbException if there's no way to find KDC for the realm
* @return the list of KDCs separated by a space, always non null
*/ */
public String getKDCList(String realm) throws KrbException { public String getKDCList(String realm) throws KrbException {
if (realm == null) { if (realm == null) {
realm = getDefaultRealm(); realm = getDefaultRealm();
} }
Exception cause = null;
String kdcs = getDefault("kdc", realm); String kdcs = getDefault("kdc", realm);
if ((kdcs == null) && useDNS_KDC()) { if ((kdcs == null) && useDNS_KDC()) {
// use DNS to locate KDC // use DNS to locate KDC
try {
kdcs = getKDCFromDNS(realm); kdcs = getKDCFromDNS(realm);
} catch (KrbException ke) {
cause = ke;
}
}
if (kdcs == null) {
kdcs = java.security.AccessController.doPrivileged(
new java.security.PrivilegedAction<String>() {
@Override
public String run() {
String osname = System.getProperty("os.name");
if (osname.startsWith("Windows")) {
String logonServer = System.getenv("LOGONSERVER");
if (logonServer != null
&& logonServer.startsWith("\\\\")) {
logonServer = logonServer.substring(2);
}
return logonServer;
}
return null;
}
});
}
if (kdcs == null) {
KrbException ke = new KrbException("Cannot locate KDC");
if (cause != null) {
ke.initCause(cause);
}
throw ke;
} }
return kdcs; return kdcs;
} }
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册