View Javadoc
1   /*
2    * ====================================================================
3    * Licensed to the Apache Software Foundation (ASF) under one
4    * or more contributor license agreements.  See the NOTICE file
5    * distributed with this work for additional information
6    * regarding copyright ownership.  The ASF licenses this file
7    * to you under the Apache License, Version 2.0 (the
8    * "License"); you may not use this file except in compliance
9    * with the License.  You may obtain a copy of the License at
10   *
11   *   http://www.apache.org/licenses/LICENSE-2.0
12   *
13   * Unless required by applicable law or agreed to in writing,
14   * software distributed under the License is distributed on an
15   * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
16   * KIND, either express or implied.  See the License for the
17   * specific language governing permissions and limitations
18   * under the License.
19   * ====================================================================
20   *
21   * This software consists of voluntary contributions made by many
22   * individuals on behalf of the Apache Software Foundation.  For more
23   * information on the Apache Software Foundation, please see
24   * <http://www.apache.org/>.
25   *
26   */
27  package org.apache.hc.client5.http.impl.auth;
28  
29  import org.apache.hc.client5.http.DnsResolver;
30  import org.apache.hc.client5.http.auth.StandardAuthScheme;
31  import org.apache.hc.core5.annotation.Experimental;
32  import org.ietf.jgss.GSSException;
33  import org.ietf.jgss.Oid;
34  
35  /**
36   * SPNEGO (Simple and Protected GSSAPI Negotiation Mechanism) authentication
37   * scheme.
38   * <p>
39   * Please note this class is considered experimental and may be discontinued or removed
40   * in the future.
41   * </p>
42   *
43   * @since 4.2
44   *
45   * @deprecated Do not use. The GGS based experimental authentication schemes are no longer
46   * supported. Consider using Basic or Bearer authentication with TLS instead.
47   *
48   * @see BasicScheme
49   * @see BearerScheme
50   */
51  @Deprecated
52  @Experimental
53  public class SPNegoScheme extends GGSSchemeBase {
54  
55      private static final String SPNEGO_OID = "1.3.6.1.5.5.2";
56  
57      /**
58       * @since 5.0
59       */
60      public SPNegoScheme(final org.apache.hc.client5.http.auth.KerberosConfig config, final DnsResolver dnsResolver) {
61          super(config, dnsResolver);
62      }
63  
64      public SPNegoScheme() {
65          super();
66      }
67  
68      @Override
69      public String getName() {
70          return StandardAuthScheme.SPNEGO;
71      }
72  
73      @Override
74      protected byte[] generateToken(final byte[] input, final String serviceName, final String authServer) throws GSSException {
75          return generateGSSToken(input, new Oid(SPNEGO_OID), serviceName, authServer);
76      }
77  
78      @Override
79      public boolean isConnectionBased() {
80          return true;
81      }
82  
83  }