Service principle represents a some service/server. E.g. :- ftp/ [email protected], echo/[email protected]
Kerberos has the concept of a realm. Realm is a place where we can store user identifications and service identifications. In a kerberos environment we refer those as User principles and service principles. Our IS Integrated LDAP is going to act as an authentication server. (AS). Then customers can add users and services to LDAP and use Kerberos protocol to authenticate users against services defined in LDAP (Also they can implement mutual authentication. In which services can be authenticated against users.). This is related to KDC implementation based on ApacheDS. Actually i wanted you to schedule an architectural meeting for this. But i need some time to finish final pieces of this. Thanks AmilaJ On Thu, Oct 21, 2010 at 11:25 AM, Srinath Perera <[email protected]> wrote: > Hi Amila, > > What does a service principal does? > > --Srinath > > On Wed, Oct 20, 2010 at 9:35 AM, Amila Jayasekara <[email protected]> wrote: > > Hi All, > > I am planning to make some changes to UserStoreManager.java interface. I > > will be adding new methods to manage service principles. This is > necessary > > to complete KDC implementation. > > > > Following are the methods, > > > > /** > > * This will add a new server principle. The server priciple name has > to > > take following > > * format - ftp\wso2.example.com > > * @param serverName Name of the server principle. > > * @param credentials Password. > > * @param serverDescription Small description about the server. > > * @param requirePasswordChange Specifies whether to change the > password > > * @throws UserStoreException If an error occurred, when adding a > server > > principle. > > */ > > void addServicePrinciple(String serverName, Object credentials, > String > > serverDescription, > > boolean requirePasswordChange) > > throws UserStoreException; > > > > /** > > * Update password of the service principle. > > * @param serverName Name of the server to modify. > > * @param newCredentials New password. > > * @param oldCredential Old password. > > * @throws UserStoreException If an error occurred, when updating a > > server principle. > > */ > > void updateServicePrinciplePassword(String serverName, Object > > newCredentials, Object oldCredential) > > throws UserStoreException; > > > > /** > > * Deletes the given service principle. > > * @param serverName Name of the server principle to delete. > > * @throws UserStoreException If an error occurred, when deleting a > > server principle. > > */ > > void deleteServicePrinciple(String serverName) throws > > UserStoreException; > > > > /** > > * Lists available service principles. > > * @param filter Filter used to select service principles. > > * @param maxItemLimit Maximum limit that should return per > iteration. > > * @return A list of service principles encapsulated by > > ServicePrinciple. > > * @throws UserStoreException If an error occurred while retreiving > > service principles. > > */ > > ServicePrinciple[] listServicePrinciples(String filter, int > > maxItemLimit) throws UserStoreException; > > > > If you have any objections, please let me know. > > > > Thanks > > AmilaJ > > > > _______________________________________________ > > Carbon-dev mailing list > > [email protected] > > https://wso2.org/cgi-bin/mailman/listinfo/carbon-dev > > > > > > > > -- > ============================ > Srinath Perera, Ph.D. > Senior Software Architect, WSO2 Inc. > Visiting Lecturer, University of Moratuwa > Member, Apache Software Foundation > Member, Lanka Software Foundation > Blog: http://srinathsview.blogspot.com/ > > _______________________________________________ > Carbon-dev mailing list > [email protected] > https://wso2.org/cgi-bin/mailman/listinfo/carbon-dev >
_______________________________________________ Carbon-dev mailing list [email protected] https://wso2.org/cgi-bin/mailman/listinfo/carbon-dev
